stackoom
  简体   繁体   中英

How to securely connect to PostgreSQL database, with Ruby?

 原文  2016-04-16 17:09:02       ruby/ postgresql/ security

Question

I feel uncomfortable saving my password in a file: 

require 'pg'
conn = PG::Connection.open(host: 'server.example.com', password: 'hello_everyone')

Also, is there a way to determine or ensure that the transmission is encrypted? I am just worried about the implications of running my app locally, when it must connect to a remote database (I am worried about all the data, including the authentication credentials, being sent in the clear).

1 answers

solution1
 1  2016-04-16 17:55:36

Regarding the password :

I would recommend setting it in an ENV variable. Take a look at dotenv gem . Basically, you are going to be able to do something like: 

require 'pg'
conn = PG::Connection.open(host: ENV['database_host'], password: ENV['database_password'])

The values that are loaded into ENV will be stored in a file ( .env ) which you should not commit.

Regarding data encryption

You should take a look at SSH tunneling to connect to the remote DB.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question How to Connect the Ruby to the Postgresql? How to connect to Postgresql from Ruby On Rails App How to connect to a Firestore database with Ruby Unable to connect to postgresQL with Ruby Securely insert into database using just Ruby How to connect postgresql database on remote server rails how to connect remote oracle database using Ruby? How to connect MS SQL database to Ruby How to connect to MySQL database in silverlight using ruby? Ruby/PG - Cannot connect to PostgreSQL
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM