Node.js + MongoDB - MongoDB adds database permission authentication

background

The permission verification mechanism (user) is not added during MongoDB initialization. As a result, the database is vulnerable to attack and deletion, for example, 😭

The solution

Change the default port number of MongoDB.

Modify the mongod. Conf port number configuration

Two: Add users to the MongoDB database

Enable database security options

Change the mongod. Conf configuration:

security:
  authorization: enabled
Copy the code

Add users to the database
- Switch to the database you want to operate on
- Db. CreateUser ({user: “username”, PWD: “password”, roles: [role]}) for roles such as readWrite and dbOwner, see the official website
- The auth (” username “, “PWD”)
- Restarting the mongodb service

The mongodb connection of the server needs to be changed accordingly. Take Node. js as an example to use MongoClient to connect to mongodb

let MongoClient = require('mongodb').MongoClient; / / own link address let url = 'mongo: / / 127.0.0.1:27017 /? gssapiServiceName=mongodb'; MongoClient.connect( url, { authSource: 'sword', auth: { user: 'username', password: '*******', }, }, callback );Copy the code

Node.js MongoDB Driver API

mo4tech.com (Moment For Technology) is a global community with thousands techies from across the global hang out!Passionate technologists, be it gadget freaks, tech enthusiasts, coders, technopreneurs, or CIOs, you would find them all here.

Node.js + MongoDB — MongoDB adds database permission authentication

background

The solution

Change the default port number of MongoDB.

Two: Add users to the MongoDB database

Node.js + MongoDB — MongoDB adds database permission authentication

background

The solution

Change the default port number of MongoDB.

Two: Add users to the MongoDB database

Related Posts

Source analysis of RocketMQ CommitLog message storage mechanism

Graphs – 1. An overview

Golang package time