Reputation: 55
How to secure Neo4j browser
Is it possible to secure the neo4j browser so users can only execute specific queries? I would like to provide generally open access to the browser, but not allow users to delete.
Upvotes: 0
Views: 141
Answers (1)
Reputation: 30397
Neo4j 3.1.x security features include role based permissions. As a browser user must log in with a username and password, it is also subject to this security model.
The authentication and authorization section of the Neo4j operations guide should be helpful to you. The section describing native roles already available to you gives a good visual of what is allowed per role.
It sounds like the reader native role is the one that would make sense for browser users, as deletion requires write permissions.
Finer grained permissions are possible, but based entirely upon user defined procedures, so nowhere near as simple as using the provided native roles and permissions.
However, if certain users should only be able to run a limited set of well-defined queries, then custom roles and user defined procedures should do the trick.
Upvotes: 2
Related Questions
- What are the credentials for Neo4j browser
- Neo4j HTTPS only?
- Node level security in neo4j
- Neo4j web interface security
- What advanced security options exist for Neo4j?
- Neo4J force HTTPS
- Securing the data accessed by Neo4j queries
- How to secure access to neo4j remote shell?
- neo4j: authentication - only allow reading cypher queries
- How to secure Neo4J replication?