-
Notifications
You must be signed in to change notification settings - Fork 0
Authentication
Security is very important and thus N-graphStore can be locked up. You have 3 methods to secure N-graphStore.
- None (which is obviously only if you want to test it)
- Basic (Using basic authentication to login users)
- Form (Update API is only reachable by csrf token or using the frontend) (DEFAULT)
N-graphStore provides a small User managment system where admins and users can be added and removed.
Updates and Uploads are User protected (But you can also protect the sparql endpoint).
Creating and Deleting Users can only be done by admins. One admin may never delete another admin.
The initial admin has the credentials:
User: admin
Password: &*#uphsd8906823o&*F^SDAG8o
!!! You should obviously change the password immediatly !!!
Every password is hashed to SHA256 first and then will be encrypted with bcrypt using 11 rounds so even if the database gets lost, it would be hart to decrypt the passwords (as long as users do not use 'password' and such)