How i can set password on my db ?

[Mojtaba Hajivandian]

Hi,

How i can set password on my db ? 

or there is any way to protect my data from users ?

[k...@networkedplanet.com]

Hi

BrightstarDB itself offers no authentication / authorization mechanism. For applications using BrightstarDB as an embedded database, authentication and authorization need to be implemented at the application level.

Of course, the BrightstarService executable is an example of an application using BrightstarDB as an embedded database but the WCF services we are currently using for server/client communication are not configured to require authentication (it might be possibe to reconfigure them, but it would require a few changes to the underlying code for the client library). However, my plan is to replace that with a REST service in which case I will be updating both client and server to optionally require HTTP authentication and support role-based authorization as well as to optionally require an HTTPS connection, so the next release of BrightstarDB should have a much better story about client/server access control.

Cheers

Kal

[Markus Essl]

Hi!

I was looking for that too. It is quite a security risk as this could leak information that team members should have. For me, it is not required to have separate user accounts. It would be sufficient to have one shared secret key (or possibly a client certificate). Right now, I intend to use IP based restrictions in the firewall to allow access, but this is far from optimal. Do you have any hints how to configure that? What about the SPARQL endpoint - does the client api use the SPARQL endpoint (as it is an IIS service, I would now how to configure that for security). Or is that endpoint for third party access only?

Anyways, I am hoping for the next version. I am just getting started with it, but so far I'm quite impressed.

Markus

[Khalil Ahmed]

Hi Markus,

For IP based restrictions, I'm not sure but my guess would be that if you use IIS to host the WCF service then you can configure IIS to do the IP restriction rather than having to do it in the WCF config, and that will probably be way easier. 

Depending on what you want to allow team members to do, it might be better to start with the simple SPARQL service code that is contained in BrightstarDB samples and add the necessary authentication/authorization code to that. That would give you a secured SPARQL endpoint for queries, but as you note, the current BrightstarDB client code doesn't use REST or SPARQL protocol for its interaction - it only uses WCF, so you would need to write or use a different library. The DotNetRDF library (which is part of the BrightstarDB build) gives you a nice wrapper around SPARQL, or you could just use GET or POST operations following the SPARQL Protocol documentation and then make use of the XDocument extension methods in BrightstarDB to access the SPARQL XML results.

Cheers

Kal

--
You received this message because you are subscribed to the Google Groups "BrightstarDB Users" group.
To unsubscribe from this group and stop receiving emails from it, send an email to brightstardb-us...@googlegroups.com.
For more options, visit https://groups.google.com/groups/opt_out.

--
Kal Ahmed
Director, Networked Planet Limited
e: kal....@networkedplanet.com
w: www.networkedplanet.com