原文出自:http://www.mkyong.com/mongodb/java-authentication-access-to-mongodb/
返回目录:http://ysj5125094.iteye.com/blog/2192754
Java MongoDB : Authentication example
By default, MongoDB is run in trust environment (authentication with a username and password is NOT required). In this tutorial, we will show you how to start MongoDB in secure mode / enable authentication, and connect with the Java MongoDB driver.
译:默认情况下,MongoDB 运行在一个信任的环境里(是不需要用户名和密码认证的)。在本教程中,我们将向你展示如何在安全模式下启动MongoDB / 启用身份验证,并通过Java程序连接MongoDB。
1. Start MongoDB in Secure Mode
Start MongoDB with --auth
option, now, MongoDB need username and password to perform any database / collection operations.
译:启动MongoDB -- auth 选项,现在,MongoDB需要用户名和密码才能执行任何database/collection 操作。
mongod --auth
Later, we need to connect to the database “testdb”, so add a user for testing later.
译:接下来,我们需要连接数据库"testdb",所以添加一个测试用户。
> use admin > db.addUser("admin","password") > use testdb > db.addUser("mkyong","password")
To enable MongoDB authentication, you must first add a user to the special “admin” database, please refer to this MongoDB authentication example for detail guide.
译:使MongoDB的认证,你必须首先添加一个特殊的用户“admin”,请参阅此MongoDB实例验证详细指南。
2. Java + MongoDB Authentication example
If MongoDB is started in secure mode, below “insert” operation is no longer valid, and prompts “need to login” error message.
译:如果MongoDB已经运行在安全模块中,那么"insert"操作不再有效,并提示"需要登录"错误消息。
Mongo mongo = new Mongo("localhost", 27017); DB db = mongo.getDB("testdb"); DBCollection table = db.getCollection("user"); BasicDBObject document = new BasicDBObject(); document.put("name", "mkyong"); table.insert(document);
com.mongodb.CommandResult$CommandFailure: command failed [getlasterror]: { "serverUsed" : "localhost/127.0.0.1:27017" , "errmsg" : "need to login" , "ok" : 0.0} at com.mongodb.CommandResult.getException(CommandResult.java:88) at com.mongodb.CommandResult.throwOnError(CommandResult.java:134) at com.mongodb.DBTCPConnector._checkWriteError(DBTCPConnector.java:142) at com.mongodb.DBTCPConnector.say(DBTCPConnector.java:183) at com.mongodb.DBTCPConnector.say(DBTCPConnector.java:155) at com.mongodb.DBApiLayer$MyCollection.insert(DBApiLayer.java:270) at com.mongodb.DBApiLayer$MyCollection.insert(DBApiLayer.java:226) at com.mongodb.DBCollection.insert(DBCollection.java:75) at com.mongodb.DBCollection.insert(DBCollection.java:59) at com.mongodb.DBCollection.insert(DBCollection.java:104) at com.mkyong.core.App.main(App.java:40)
Now, using db.authenticate()
to perform the authentication, a return value of true = success, false = fail.
译:现在,使用db.authenticate()进认证,会得到一个返回值 true = 成功, false = 失败。
package com.mkyong.core; import java.net.UnknownHostException; import java.util.Date; import com.mongodb.BasicDBObject; import com.mongodb.DB; import com.mongodb.DBCollection; import com.mongodb.Mongo; import com.mongodb.MongoException; /** * Java + MongoDB in Secure Mode * */ public class JavaMongoDBAuthExample { public static void main(String[] args) { try { Mongo mongo = new Mongo("localhost", 27017); DB db = mongo.getDB("testdb"); boolean auth = db.authenticate("testdb", "password".toCharArray()); if (auth) { DBCollection table = db.getCollection("user"); BasicDBObject document = new BasicDBObject(); document.put("name", "mkyong"); table.insert(document); System.out.println("Login is successful!"); } else { System.out.println("Login is failed!"); } System.out.println("Done"); } catch (UnknownHostException e) { e.printStackTrace(); } catch (MongoException e) { e.printStackTrace(); } } }
References
- Java MongoDB authentication example
- JIRA – DB.authenticate() should use a char[] for the password
- MongoDB Java Authentication example
- MongoDB Security Practices and Management