Hi everybody,
to implement authentication in Geoserver for a customer I would need to use
the J2EEAuthenticationFilter to inherit the user from an Apache frontend,
but also to assign roles to that user using a GeoServerRoleService (in
particular a new one fetching roles from LDAP).
Currently the J2EEAuthenticationFilter uses the GeoServerRoleService to get
a list of all roles and then filters them using
request.isUserInRole(<role>), but in my use case no roles are assigned by
the frontend, so I would need to use service.getRolesForUser(username)
instead, to let the GeoServerRoleService assign roles to recognized users.
For this to be implemented I would need to
change J2EEAuthenticationFilter a bit. I was thinking to add a
configuration option to decide whether roles are taken from the container
(as they are now, this could be the default), the GeoServerRoleService or
both.
What do you think?
Can I proceed? Is there any other way to get this behaviour using the
existing filters?
Regards,
Mauro
--
==
Our support, Your Success! Visit http://opensdi.geo-solutions.it for more
information.
==
Dott. Mauro Bartolomeoli
@mauro_bart
Senior Software Engineer
GeoSolutions S.A.S.
Via Poggio alle Viti 1187
55054 Massarosa (LU)
Italy
phone: +39 0584 962313
fax: +39 0584 1660272
http://www.geo-solutions.it
http://twitter.com/geosolutions_it
-------------------------------------------------------
------------------------------------------------------------------------------
October Webinars: Code for Performance
Free Intel webinars can help you accelerate application performance.
Explore tips for MPI, OpenMP, advanced profiling, and more. Get the most from
the latest Intel processors and coprocessors. See abstracts and register >
http://pubads.g.doubleclick.net/gampad/clk?id=60134791&iu=/4140/ostg.clktrk
_______________________________________________
Geoserver-devel mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/geoserver-devel
