Eliminate default authentication

[fdrsuisse]

Hi, in order to use the APIs the default authentication in the file etc/security.yml is admin/changeit , according to the link https://softinstigate.atlassian.net/wiki/spaces/RH/pages/13369378/Enable+and+Configure+Security Is it possible to eliminate the default authentication ? Best Regards, Francesco

[ujibang]

Hi Francesco,

yes you can obviously remove the admin user from the security.yml file.

You can also disable or replace the authentication manager implementation with the following configuration option:

idm:    
    implementation-class: org.restheart.security.impl.SimpleFileIdentityManager
    conf-file: ./etc/security.yml

Please note that the documentation on confluence https://softinstigate.atlassian.net/ is deprecated. For updated documentation, always refer to https://restheart.org/learn/

[fdrsuisse]

Hi Andrea I removed the admin user from the "security.yml" file. users:

- userid: user
  password: changeit
  roles: [users]
- userid: user2
  password: changeit
  roles: [users]

In the "restheart.yml" :

http-listener: true http-host: 10.4.17.205 http-port: 8080

In the "restheart.yml" I have the section: idm: implementation-class: org.restheart.security.impl.SimpleFileIdentityManager conf-file: ./etc/security.yml
When I launch : curl -i 'http://10.4.17.205:8080/sth_carouge/sth_x002ftpg?count' HTTP/1.1 401 Unauthorized Connection: keep-alive Thanks in advance, Francesco

[ujibang]

if you want no authorization (all requests are executed) just comment out idm and am sections from configuration file

[fdrsuisse]

Hi Andrea, many thanks for your support. It works. You can close the issue. Best Regards, Francesco