Users, Sign in with authentication

cocoa · August 31, 2023, 4:35am

Hello everyone,

I would need support on access configuration and security.

I have a cluster consisting of three docker conatiners , each running an instance of crateDb on three different hosts.

The configuration file is the default and is inside the container.

At the moment anyone who connects via browser to port 4200 is able to log in with administrator privileges (user crate), although I have created differen users with the DQL privilege only.

CrateDB reached via browser does not ask for username and password.

My questions are:

Is it possible to force the user ‘crate’ to have a password ?
how can I make CrateDB ask anyone accessing port 4200 to authenticate ?
Can I do this using only SQL commands via ‘crash’ or web UI ?

Thank you for your help.

Luca

hernanc · September 6, 2023, 7:20am

Hi,
Just wanted to link a newer thread on this topic in case anyone comes across this in the future:
Why Cratedb admits access to everyone as default user with all privileges ? Probable security issue? - CrateDB - CrateDB Community

Topic		Replies	Views
Why CrateDB admits access to everyone as default user with all privileges? Probable security issue? CrateDB	6	355	September 9, 2023
User Permissions Questions CrateDB	1	710	June 27, 2019
Password for crate user CrateDB	1	1445	May 3, 2019
When attempting to log in using JDBC I get an error Documentation	5	975	April 23, 2021
Jmeter JDBC Connection to CrateDB CrateDB	10	2465	March 15, 2022

Users, Sign in with authentication

Related Topics