Skip to content
Start building
Back

Is it really needed for Appwrite to have access to the DB root user?

  • 0
  • Self Hosted
View on Discord
D5
22 Mar, 2024, 15:40

From what I'm seeing Appwrite has an env var for MariaDB called _APP_DB_ROOT_PASS, but there are other variables for a custom DB user and password, so the thing is if is really needed for appwrite to have access to both the root user and an aditional user specified with the _APP_DB_PASS variable

TL;DR
Developers are discussing if Appwrite really needs access to the DB root user, considering an empty password situation. The general consensus is that a strong password should be set, even if Appwrite itself does not use the root password. It is suggested to set the MariaDB root password upfront and specify an additional user and password using the `_APP_DB_PASS` variable.
Binyamin
22 Mar, 2024, 15:44

Appwrite itself never uses that variable as can be seen in the docker-compose.yml file

TypeScript
...
      - _APP_DB_HOST
      - _APP_DB_PORT
      - _APP_DB_SCHEMA
      - _APP_DB_USER
      - _APP_DB_PASS
...
Binyamin
22 Mar, 2024, 15:44

The only reason is to set the MariaDB root password in case it needed

Binyamin
22 Mar, 2024, 15:45

And, it's best to set it upfront

D5
22 Mar, 2024, 15:48

So I should leave that password in blank?

Binyamin
22 Mar, 2024, 15:49

No, just put a very strong password

D5
22 Mar, 2024, 15:56

Obviously from the database side I will put a very strong password. The thing is that if I should specify or not that password in the env var. From what I understood, it's not needed specifying the root password, right?

Binyamin
22 Mar, 2024, 15:57

In that case, you can get a warning that you'll need to allow an empty password.

Reply

Reply to this thread by joining our Discord

Reply on Discord

Recommended threads

Need support?

Join our Discord

Get community support by joining our Discord server.

Join Discord

Get premium support

Join Appwrite Pro and get email support from our team.

Learn more