The devDependency wait-on was updated from 3.1.0 to 3.2.0.

🚨 View failing branch.

This version is covered by your current version range and after updating it in your project the build failed.

wait-on is a devDependency of this project. It might not break your production code or affect downstream projects, but probably breaks your build or test tools, which may prevent deploying or publishing.

 --tcpTimeout
Maximum time in ms for tcp connect, default 300ms

Your Greenkeeper Bot 🌴

Encountered an error using mock-couch as db server. The request body was missing, so I dig deeper and found out that you are using different body sending parameters.

CREATE uses "json: doc", UPDATE uses "JSON.stringify(doc), paraseBody: true"
check the image

When I "hack" the UPDATE method and send "json: doc", everything looks okay.

What are your thoughts on this?

As mentioned in issue redgeoff/replicate-couchdb-cluster#42 replicate-couchdb-cluster isn't able to replicate CouchDBs with special cahracters due to a limitation of URL encoding CouchDB DB names in the slouch dependancy likely in this file https://github.com/redgeoff/replicate-couchdb-cluster/blob/master/scripts/cluster.js

It's likely that in addition to slashes, other special characters like + in DBs name are also problematic. URL encoding all DB names is likely to solve this problem.

Should there be a default timeout so that if the request hangs on the CouchDB end, it will be eventually be considered dead and can be retried?

As it stands, there's no facility for listing all databases on a CouchDB server in slouch.

Version 4.1.2 of chai just got published.

This version is covered by your current version range and after updating it in your project the build failed.

As chai is “only” a devDependency of this project it might not break production or downstream projects, but “only” your build or test tools – preventing new deploys or publishes.

I recommend you give this issue a high priority. I’m sure you can resolve this 💪

Your Greenkeeper Bot 🌴

☝️ Greenkeeper’s updated Terms of Service will come into effect on April 6th, 2018.

Version 5.0.2 of mocha was just published.

This version is covered by your current version range and after updating it in your project the build failed.

mocha is a devDependency of this project. It might not break your production code or affect downstream projects, but probably breaks your build or test tools, which may prevent deploying or publishing.

Your Greenkeeper Bot 🌴

1. Split into request and response entries with a "debug id" so that you can see when the request is made even if a response has not yet arrived
2. Add timestamps to the request and response logs

Version 5.0.1 of mocha was just published.

This version is covered by your current version range and after updating it in your project the build failed.

mocha is a devDependency of this project. It might not break your production code or affect downstream projects, but probably breaks your build or test tools, which may prevent deploying or publishing.

Your Greenkeeper Bot 🌴

Sorry, tried to find some means of contact but none found. I found slouch which could have been what I needed but it's not maintained as I see.

However, I really just have a very simple question that vexes me and I thought may be you could possibly want to share some knowledge regarding interacting with couchDB.

My issue is to have a webpage that is hosted on another domain and be able to log in and interact with several couchDB servers using cookie authentication. I have set the CORS to accept the domain of my webpage, and I have credentials: 'include' in the header but I still get unauthorised whatever I do. For example, I want to list _all_dbs. Making that call with basic authentication works. making it from curl works with cookies. Just from the browser it just won't. I have asked Jan on the couchDB slack channel and he suggests having the site on the same domain to not have to deal with the pest of CORS, but offered no solution to having it cross domains. It should be possible, I understand slouch could do this, and pouchDB can. so there is some trick that eludes me.

Any help at all would be very appreciated. Sorry for using an issue to communicate to you, I did not find any other contact channel!

cheers, Jon

Any plan for adding support for CouchDB 3.0? In particular partitioned database?

Slouch currently supports adding attachments via a base64 encoded value in the _attachments attribute of a doc. Use the work commented out at https://github.com/redgeoff/slouch/blob/master/scripts/attachment.js#L10 to enable a method of uploading attachments that are binary data.

In my testing, it appears that the binary upload is either broken at the request/browserify layer or is not in the format expected by CouchDB. If the issue is at the request layer then we may want to use something like needlejs for just these binary uploads.

CouchDB spits out errors like "Database does not exist" without the name of a DB. This isn't very useful when there are a lot of requests or Slouch is being used from a high level. Let's modify https://github.com/redgeoff/slouch/blob/master/scripts/enhanced-request.js#L55 to insert the URL into the error. The code at https://github.com/redgeoff/spiegel/blob/master/src/utils.js#L28 can be used to censor the password--it may even be a good idea to place this censorPassword() function in the sporks layer.

Version 3.5.2 of bluebird was just published.

This version is covered by your current version range and after updating it in your project the build failed.

bluebird is a direct dependency of this project, and it is very likely causing it to break. If other packages depend on yours, this update is probably also breaking those in turn.

Your Greenkeeper Bot 🌴

The dependency sporks was updated from 1.0.0 to 1.0.1.

🚨 View failing branch.

This version is covered by your current version range and after updating it in your project the build failed.

sporks is a direct dependency of this project, and it is very likely causing it to break. If other packages depend on yours, this update is probably also breaking those in turn.

Your Greenkeeper Bot 🌴

I am trying to implement one-database-per-user with a service on my express app using slouch, it looks like that:

const Slouch = require('couch-slouch')
const config = require('./config')

const slouch = new Slouch(config.couchDb.url)

module.exports = {
  createDb(user) {
    const dbName = `${config.couchDbBaseName}_${user.email}`
    return slouch.user.createSession({
      username: config.couchDb.username,
      password: config.couchDb.password
    })
    .then(response => slouch.user.create(user.email, user.dbpwd))
    .then(response => slouch.db.create(dbName))
    .then(response => slouch.security.set(dbName, {
        admins: { names: [], roles: [] },
        members: { names: [user.email], roles: [] }
      })
    )
  }
}

I was hoping some magic would happen and the cookie from the createSession response would be sent with the next commands. But although the user creation works (maybe my db lets anyone create users? oops), the following slouch.db.create call is failing with 'unauthorized'. If there a way to get through this?

As per

authenticate() and authenticated() are not working properly in the browser. For now, we have to fake the responses as it appears that the session cookie is not being propagated from the session post to the session get.

It's a pain to have to specify the database name every function call. Is there a way to configure this during instantiation so that you don't have to type it every time?

☝️ Greenkeeper’s updated Terms of Service will come into effect on April 6th, 2018.

Version 2.84.0 of request was just published.

This version is covered by your current version range and after updating it in your project the build failed.

request is a direct dependency of this project, and it is very likely causing it to break. If other packages depend on yours, this update is probably also breaking those in turn.

Your Greenkeeper Bot 🌴

☝️ Greenkeeper’s updated Terms of Service will come into effect on April 6th, 2018.

Version 1.0.2 of gofur was just published.

This version is covered by your current version range and after updating it in your project the build failed.

gofur is a devDependency of this project. It might not break your production code or affect downstream projects, but probably breaks your build or test tools, which may prevent deploying or publishing.

Your Greenkeeper Bot 🌴

The devDependency wait-on was updated from 4.0.0 to 4.0.1.

🚨 View failing branch.

This version is covered by your current version range and after updating it in your project the build failed.

wait-on is a devDependency of this project. It might not break your production code or affect downstream projects, but probably breaks your build or test tools, which may prevent deploying or publishing.

Your Greenkeeper Bot 🌴

The devDependency mocha was updated from 6.1.0 to 6.1.1.

🚨 View failing branch.

This version is covered by your current version range and after updating it in your project the build failed.

mocha is a devDependency of this project. It might not break your production code or affect downstream projects, but probably breaks your build or test tools, which may prevent deploying or publishing.

Your Greenkeeper Bot 🌴

As per https://stackoverflow.com/a/10359837/2831606, if we are not using persistent cookies (allow_persistent_cookies=false) then CouchDB can change/refresh our cookie during any request. If this happens, we should update the locally stored cookie. The code to set the cookie would look something like this

Like

Although it exist here on github, on npm it doesn't seem to have the latest updates.
https://www.npmjs.com/package/couch-slouch

        database.doc.all "dbname", {
          startkey: "\"alpha\"",
          endkey: "\"bravo\ufff0\"",
          include_docs: true
        }
        .each (row) => ...

Is this by design? This isn't the case for PouchDB. The extra escaped quotes are ugly.

(sorry for the coffeescript!)

Option to use generators to iterate through stream iterators. Probably need to wait for async iterators: https://github.com/tc39/proposal-async-iteration

Comment out the following until we document exactly what error is thrown?

https://github.com/redgeoff/slouch/blob/master/scripts/db.js#L23

🚨 You need to enable Continuous Integration on all branches of this repository. 🚨

To enable Greenkeeper, you need to make sure that a commit status is reported on all branches. This is required by Greenkeeper because we are using your CI build statuses to figure out when to notify you about breaking changes.

Since we did not receive a CI status on the greenkeeper/initial branch, we assume that you still need to configure it.

If you have already set up a CI for this repository, you might need to check your configuration. Make sure it will run on all new branches. If you don’t want it to run on every branch, you can whitelist branches starting with greenkeeper/.

We recommend using Travis CI, but Greenkeeper will work with every other CI service as well.

Once you have installed CI on this repository, you’ll need to re-trigger Greenkeeper’s initial Pull Request. To do this, please delete the greenkeeper/initial branch in this repository, and then remove and re-add this repository to the Greenkeeper integration’s white list on Github. You'll find this list on your repo or organiszation’s settings page, under Installed GitHub Apps.

The dependency bluebird was updated from 3.5.3 to 3.5.4.

🚨 View failing branch.

This version is covered by your current version range and after updating it in your project the build failed.

bluebird is a direct dependency of this project, and it is very likely causing it to break. If other packages depend on yours, this update is probably also breaking those in turn.

Your Greenkeeper Bot 🌴

Can we get request removed as it is unmaintained has known security vulnerabilities.

PVR0429040/PVR0429046 for CVE-2023-28155 in request

The devDependency gofur was updated from 1.1.0 to 1.1.1.

🚨 View failing branch.

This version is covered by your current version range and after updating it in your project the build failed.

gofur is a devDependency of this project. It might not break your production code or affect downstream projects, but probably breaks your build or test tools, which may prevent deploying or publishing.

Your Greenkeeper Bot 🌴

Problem is that all is using GET when it should use a POST. I've tried to fix it, but it's not right. If I figure it out I can send a pull request.

☝️ Greenkeeper’s updated Terms of Service will come into effect on April 6th, 2018.

Version 1.0.3 of gofur was just published.

This version is covered by your current version range and after updating it in your project the build failed.

gofur is a devDependency of this project. It might not break your production code or affect downstream projects, but probably breaks your build or test tools, which may prevent deploying or publishing.

Your Greenkeeper Bot 🌴

Right now, slouch doesn't seem to provide support for document retrieval using the POST /{db}/_find endpoint in the CouchDB API (see https://docs.couchdb.org/en/latest/api/database/find.html) or something similar.

It would be good if the ability to find documents based on some queries instead of just the ID could be added.

As per https://github.com/redgeoff/slouch/blob/master/circle.yml#L50: replication and a number of other things doen't appear to be working with the official couchdb 1.6.1 docker image. We'll probably need to build a custom image for these tests.

Why are we leaving first 8 characters of view id when calling a couchdb view in here?

Something appears to have broken in the npm run browser-test flow even though there have been no changes to the Slouch code or its dependencies.

See https://app.circleci.com/pipelines/github/redgeoff/slouch/65/workflows/b0d731d2-0da8-4046-bc5b-91bd84962f9c/jobs/461

Version 2.87.0 of request was just published.

This version is covered by your current version range and after updating it in your project the build failed.

request is a direct dependency of this project, and it is very likely causing it to break. If other packages depend on yours, this update is probably also breaking those in turn.

Your Greenkeeper Bot 🌴

At https://github.com/redgeoff/slouch/blob/master/scripts/enhanced-request.js?utf8=%E2%9C%93#L128