How to best secure MongoDB database url in Node.js app
Question
I have an API built on MongoDB and Node.js. In my app.js I have a database url that I need to include, with a password in the url. Is there a secure way to define this url as a variable in another file for when it is deployed? I will likely be using Heroku to deploy this.
app.js
const express = require("express");
const cors = require("cors");
const bodyParser = require("body-parser");
const product = require("./routes/product.route"); // Imports routes for the products
const app = express();
// Set up mongoose connection
const mongoose = require("mongoose");
// Change db url for new apps
let dev_db_url = "URL FOR MONGODB DATABASE TO BE SECURE";
const mongoDB = process.env.MONGODB_URI || dev_db_url;
mongoose.connect(mongoDB, { useNewUrlParser: true, useUnifiedTopology: true, useFindAndModify: false });
mongoose.Promise = global.Promise;
const db = mongoose.connection;
db.on("error", console.error.bind(console, "MongoDB connection error:"));
1 answers
solution1
2 ACCPTED 2020-03-29 02:44:11
由于您使用的是 Heroku,因此存储凭据的最佳方法是将它们定义为配置变量,然后可以从 Node.js 中的process.env访问它们。
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.
Related Question
Node.js/MongoDB: How can I use module.exports to pass a localhost database url to server.js file?
Node.js : how to know if a value is in a collection of a MongoDB database?
How to print data, retrieved from mongoDB database in Node.js?
node.js - how to switch a database in mongodb driver?
How secure is node.js and its server?
mongoDB database location in node.js
MongoDB not updating in node.js app?
What is the best way to use mongoDB with node.js?
How to use MongoDB with promises in Node.js?
How to handle async with MongoDB and node.js?
Related Tags