Dear all, We are experiencing problems with the getLegendGraphic request when using an external style at a secure url. To fetch the external style the authorization header must be forwarded. For the getMap request it works nicely using the authorisation forwarding feature implemented in https://osgeo-org.atlassian.net/browse/GEOS-10501
We expected that other requests would also work but the authorization header forwarding appears to be only implemented for the getMap request. In order to generate the correct legend it is important that this also works for the getLegendGraphic request. We would like to fix this, is it ok to create an issue to fix this or were there other motives to not forward the header for these requests. Steps to reproduce: You will need a shapefile and an associated sld stored in a secured external location. Build & start geoserver locally login to localhost:8080/geoserver/web/ (admin, geoserver) go to security -> url checks and switch the checks off or create a proper regex for the external style server. go to services -> wms -> Allowed Style URLs for Authorization headers forwarding -> add the host of the external style server create a store for instance using a shapefile download shape file attached to this task stores -> new store> shapefile layers -> new layer -> select [layer ]-> publish store the layer test the layer send get requests with an authorization header and perform following request: does not work: http://localhost:8080/geoserver/test/wms?service=WMS&version=1.1.0&REQUEST=GetLegendGraphic&VERSION=1.3.0&FORMAT=image/png&WIDTH=20&HEIGHT=20&layer=test%3test&bbox=-179.99999999999997%2C-90.0%2C180.0%2C83.623596000000080&srs=EPSG%3A4326&styles=&format=image/png&SLD=[url_to_external_sld] Best regards, Jasper
_______________________________________________ Geoserver-devel mailing list Geoserver-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/geoserver-devel
