This is an interesting discussion as layer security is an issue with us. One fundamental issue for us is the question of whether a requester is from an IP within our organisation, or from outside. We prefer not to have user login and instead just look at IP. Internal applications use a java library call to determine whether in or out, and IT manage the master database of IP address range (ipV4 and ipv6) that it uses(which is quite a long list of ranges). I see that geofence can use IPv4 rules but it also looks like you would have a lot rules to cover the address range and two place then to maintain the IP range.
I wondered about proxied access to geoserver where the ip of caller is used to set a role, but wonder about performance in this. Have other people got bright ideas on better ways to manage this situation? Really want to avoid user logins. Notice: This email and any attachments are confidential. If received in error please destroy and immediately notify us. Do not copy or disclose the contents. ------------------------------------------------------------------------------ Dive into the World of Parallel Programming. The Go Parallel Website, sponsored by Intel and developed in partnership with Slashdot Media, is your hub for all things parallel software development, from weekly thought leadership blogs to news, videos, case studies, tutorials and more. Take a look and join the conversation now. http://goparallel.sourceforge.net/ _______________________________________________ Geoserver-devel mailing list Geoserver-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/geoserver-devel
