molgenis
Latest
Latest
  • Introduction
    • What is MOLGENIS
    • Try out MOLGENIS
    • Quick start (docker)
  • Find, view, query
    • Using the navigator
    • Using the search-all
    • Using the dataexplorer
    • Setup authentication
  • Data management
    • EMX format
    • Using expressions in EMX
    • Quickly import data
    • Advanced data import
    • Modify metadata
    • Questionnaires
    • Downloading data
    • MagmaScript expressions (mapping service)
    • Pseudonymisation
  • Access control
    • Users
    • Groups and roles
    • Finegrained permissions
    • Set permissions on row level (RLS)
  • Data processing
    • Scripts
    • R
    • Schedule jobs
  • Configuration
    • Settings
    • Customize MOLGENIS
    • Localization
    • Apps in MOLGENIS
    • Creating themes
    • Migration
    • Auditing
  • Interoperability
    • Swagger specification
    • Data API
    • Metadata API
    • REST api v1
    • REST api v2
    • Files api
    • Import api
    • Permission api
    • Python-api client
    • R-api client
    • Beacon api
    • FAIR api
    • RSQL operators
    • Biobank Directory
  • For developers
    • Developing MOLGENIS
    • Developing frontend in MOLGENIS
    • Developing Apps in MOLGENIS
    • Using an IDE (Intellij)
    • Technologies
    • Dynamic decorators
    • Running the integration tests
    • Jobs
    • Security
  • Deploy MOLGENIS
    • Using RPM
    • Technical Migration
Powered by GitBook
On this page
  • ElasticSearch
  • Firewall settings
  • macbook
  1. For developers

Security

When you deploy molgenis to a server, the server's firewall will shield the services from unauthorized access.

When you're running on a development machine, you'll want to disallow access to the database and ElasticSearch index you are running to non-localhost clients.

ElasticSearch

Provide the following configuration items as Runtime Properties when running from your IDE tomcat or when running integration tests in maven:

-Des.discovery.zen.ping.multicast.enabled=false -Des.network.host=localhost

Firewall settings

If your firewall settings are based on the executables you run, instead on ports you open/close:

Disallow java, and postgres to open incoming connections in your firewall.

macbook

On macbook, you can do this as follows

  • Apple, System preferences, Security and privacy,

    • FileVault -> turn it on!

    • Firewall -> turn it on, go to Firewall options

      • Java processes, all of them -> Block incoming connections

      • postgres -> Block incoming connections

      • Automatically allow signed software to receive incoming connections -> uncheck

PreviousJobsNextDeploy MOLGENIS

Last updated 5 years ago