When running Raven.Server.exe by default admin panel is visible at IP:PORT address. How can I restrict access to this panel for specific users only?
问题:
回答1:
Steve, we are running RavenDB as a windows service and use windows authentication to control access. If you want to use Windows Authentication, you can setup the configuration to only allow access by a windows group. That way you can restrict access to users by controlling who is in the windows group.
<add key="Raven/Authorization/Windows/RequiredGroups" value="WindowsDomain\RavenDBG"/>
<add key="Raven/AnonymousAccess" value="None"/>
回答2:
Steve, RavenDB uses windows authentication by default and there is no exception for the management studio. You can switch to OAuth if you like, and this will also apply for the management studio. So in case you want to stick with ravens default Windows Authentication, just set anonymous access to none and make sure only the users you like have have access to ravens data folder. I suggest you double check this if you're running in a domain environment, since it will be likely that domain users are granted access if not explicitly disabled.