To connect with KiVi with security enabled, an application certificate is needed. This certificate has to be provided to the KiVi API application to authenticate and authorize itself with KiVi. This certificate is also used to encode the network communication.
LeanXcale uses the following concept for its structure:
Database: name of the database where all the tables are created
Schema: under this schema, some tables may be created. These tables will only be accessible by the certificates that have access to this schema. Note that schemas are named after the SQL users by default.
To create a valid certificate for an application that uses the KiVi interface, the following is required:
Create the user using the administration console, lxConsole. This has to be done with the following command. This command creates the user alice to use the database db. This step can be skipped if you already have a user created.
$ lxConsole addUser alice iAm@dmin db
After creating the user, the certificate can be created. The following command shows an example to create the certificate application1 giving it permissions to access the tables created by the user alice. The command returns a string with the full path to the new certificate created. With this certificate, the application application1 has access to all the tables of the user alice.
$ lxConsole createCert application1 alice /home/ubuntu/lxs/conf/certificates/application1.kcf
The application that uses this certificate will have permissions to all the tables created by the alice user.