Your _users
database should be secure, so that only admins can read or alter the structure of the database. Let's quickly test this:
1. Open Terminal.
2. Try to read the user document again by running the following command. Again, replace
your_username
with the username of the service admin that you just created:curl localhost:5984/_users/org.couchdb.user:your_username
3. Terminal will respond with the following:
{"error":"unauthorized","reason":"You are not authorized to access this db."}
With the CouchDB instance out of Admin Party mode, the authentication module stepped in to make sure that anonymous users couldn't read the database.
Note
We'll add more security to the databases down the road, but this is one of the simplest ways to add security to a database.
If you were to play around with the command line again, you would be restricted by doing anything with the _users
database, but you would also notice...