[Neo4j] Blocking access to the Neo4j web admin interface
tali.wang at gmail.com
Thu Sep 8 15:34:31 CEST 2011
since neo4j just uses jetty, i think the simple solution would be add
option in neo4j shell script:
-Djetty.host=127.0.0.1 to make it only listen to local request. then
use ssh tunnel to expose service to designated machines.
On Thu, Sep 8, 2011 at 2:18 PM, Peter Neubauer
<peter.neubauer at neotechnology.com> wrote:
> Hi there,
> you can block access to it by blocking the access to the URL
> (localhost:.../webadmin) and even /db/manage. That requires probably
> to set up apache and mod_proxy in front of the Neo4j server, but I
> think that is a good idea in production scenarios anyway.
> /peter neubauer
> GTalk: neubauer.peter
> Skype peter.neubauer
> Phone +46 704 106975
> LinkedIn http://www.linkedin.com/in/neubauer
> Twitter http://twitter.com/peterneubauer
> http://www.neo4j.org - Your high performance graph database.
> http://startupbootcamp.org/ - Öresund - Innovation happens HERE.
> http://www.thoughtmade.com - Scandinavia's coolest Bring-a-Thing party.
> On Thu, Sep 8, 2011 at 3:08 PM, carze <CArze at som.umaryland.edu> wrote:
>> I'm making use of the Neo4j REST API to power a website and was wondering if
>> there was any way to block access to the web admin interface. Currently the
>> DB is in read-only mode but the web admin panel is accessibly by anyone who
>> can stumble upon the URL.
>> View this message in context: http://neo4j-community-discussions.438527.n3.nabble.com/Blocking-access-to-the-Neo4j-web-admin-interface-tp3319626p3319626.html
>> Sent from the Neo4j Community Discussions mailing list archive at Nabble.com.
>> Neo4j mailing list
>> User at lists.neo4j.org
> Neo4j mailing list
> User at lists.neo4j.org
More information about the User