Security Basics

Terminology

  • Realms are administrative domains and act as a namespace for all resources in Bondy i.e. all Users, Groups and Grants live within a Realm.
  • Authentication is the process of identifying a user.
  • Authorization is verifying whether a user has access to perform the requested operation.
  • Groups can have permissions assigned to them, but cannot be authenticated.
  • Users can be authenticated and authorized; permissions (authorization) may be granted directly or via group membership.
  • Sources are used to define authentication mechanisms. A user cannot be authenticated to Riak until a source is defined.

Enabling Security

CURL
WAMP
1
curl -X "PUT" "http://localhost:18081/realms/com.myapp.realm/security_enabled" \
2
-H 'Content-Type: application/json; charset=utf-8' \
3
-H 'Accept: application/json; charset=utf-8'
4
5
Copied!

Disabling Security

CURL
WAMP
1
curl -X "DELETE" "http://localhost:18081/realms/com.myapp.realm/security_enabled" \
2
-H 'Content-Type: application/json; charset=utf-8' \
3
-H 'Accept: application/json; charset=utf-8'
Copied!