[email protected] a écrit : > As far as I see, you want to implement a proxy authentication. My idea > is to redesign the geoserver security subsystem to make your job easier. > A use case with my proposed components could be > > 1) Proxy identifying module (using a SAML ticket for example) > 2) Fetch roles from LDAP using the SAML token > 3) Geoserver ensures access control (using XAMCL as an example) > > There are a lot more possibilities, of course. If I start with a > proposal, I can give you a ping. > > Christian
Thanks for this answer, Christian. That's exactly what we're trying to obtain. We saw you white paper @geoserver.org. A powerful authentication and access control system would be a great opportunity for georchestra. Camptocamp developped a security proxy (http://repository.georchestra.org/svn-georchestra/security-proxy/) to share the current user/groups. They patched geoserver 1.7.x to make it work. Now, we'd like to do the same with geoserver 2.x mainstream, without patch. To get the whole picture : the modules are the map viewer and querier, the extractor (ie custom data downloader), geonetwork, the CMS (liferay) and of course geoserver. (sorry for the Gmane post and ad) ------------------------------------------------------------------------------ Sell apps to millions through the Intel(R) Atom(Tm) Developer Program Be part of this innovative community and reach millions of netbook users worldwide. Take advantage of special opportunities to increase revenue and speed time-to-market. Join now, and jumpstart your future. http://p.sf.net/sfu/intel-atom-d2d _______________________________________________ Geoserver-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/geoserver-users
