Is there ReadOnly REST API key to a MongoLab database, or is it always ReadWrite

2018-06-21 17:33:26

In MongoLab you generate an API key and then anyone can access your database using REST API.

Usual case is to use the REST api directly from Ajax clients.

But this gives anyone complete write access to your database, which is security hole.

Is there a way to generate an API key which will give READ ONLY access to the database

Currently, all API keys have read and write access to the databases associated with the user's account. If you need to expose a read-only API we recommend building your own with one of the many frameworks available like Express or Sinatra.

链接地址: http://www.djcxy.com/p/61014.html

上一篇: Objective C示例代码？

下一篇: 是否有只读的REST API密钥到MongoLab数据库，还是总是ReadWrite