Is it really needed for Appwrite to have access to the DB root user?

From what I'm seeing Appwrite has an env var for MariaDB called _APP_DB_ROOT_PASS, but there are other variables for a custom DB user and password, so the thing is if is really needed for appwrite to have access to both the root user and an aditional user specified with the _APP_DB_PASS variable

TL;DR

Developers are discussing if Appwrite really needs access to the DB root user, considering an empty password situation. The general consensus is that a strong password should be set, even if Appwrite itself does not use the root password. It is suggested to set the MariaDB root password upfront and specify an additional user and password using the `_APP_DB_PASS` variable.

Appwrite itself never uses that variable as can be seen in the docker-compose.yml file

TypeScript

...
      - _APP_DB_HOST
      - _APP_DB_PORT
      - _APP_DB_SCHEMA
      - _APP_DB_USER
      - _APP_DB_PASS
...

The only reason is to set the MariaDB root password in case it needed

And, it's best to set it upfront

So I should leave that password in blank?

No, just put a very strong password

Obviously from the database side I will put a very strong password. The thing is that if I should specify or not that password in the env var. From what I understood, it's not needed specifying the root password, right?

In that case, you can get a warning that you'll need to allow an empty password.

Reply to this thread by joining our Discord

Reply on Discord

Need support?

Join our Discord

Get community support by joining our Discord server.

Join Discord

Get premium support

Join Appwrite Pro and get email support from our team.

Learn more

Recommended threads

Need support?

Join our Discord

Get premium support