Hi Manas Not sure if I can solve your problem, but some facts you should know.
The authkey module is not tested/integrated into the new sucurity subsystem and a chance to do this is on GeoServer 2.3 series (for my part, if I can find some time or a sponsor). I assume you removed the anonymous filter from the filter chain and you have a basic auth filter on these chains. The last authentication filter on a chain determines how to challenge for credentials. Assuming this configuration, GeoServer sends back a basic auth challenge to the browser. After entering username/credentials, the browser should send the http auth header for each request. The behaviour you described is correct. If you look at the documentation http://docs.geoserver.org/stable/en/user/community/authkey/index.html the first paragraph states that there is no basic auth support. I assume, authkey works only with an anonymous filter and an authkey URL parameter passed in the first request, but I am not sure here. Hope that helps Zitat von Jody Garnett <[email protected]>: > Best ask on the user list, the security system has been changed for > GeoServer 2.2 and we are all learning how to make use of it. > > If you would like direct email support, the website has a number of > server providers (such as my employer) - perhaps there is an > organisation in your area? > > -- > Jody Garnett > > > On Wednesday, 12 December 2012 at 8:27 AM, manas kar wrote: > >> Hi Jody, >> >> I am very new to java programming and more so in spring security >> so my question might be lame. >> >> I was wondering if I could get some help or guidance regarding how >> to use authkey with geoserver. >> >> I have a geoserver installation that works fine with authkey if I >> choose anonymous authentication in the filter chain. >> As soon as I turn on basic authentication, the browser asks for >> credentials before the authkey module is even hit. >> >> My requirement is to make OGC calls to go via authkey and then >> basic authentication. >> >> Is there a out of the box way to do it or I shall have to write a >> custom AuthenticationFilter and put it before basic in the filter >> chain? >> >> Thanks in advance. > > ---------------------------------------------------------------- This message was sent using IMP, the Internet Messaging Program. ------------------------------------------------------------------------------ LogMeIn Rescue: Anywhere, Anytime Remote support for IT. Free Trial Remotely access PCs and mobile devices and provide instant support Improve your efficiency, and focus on delivering more value-add services Discover what IT Professionals Know. Rescue delivers http://p.sf.net/sfu/logmein_12329d2d _______________________________________________ Geoserver-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/geoserver-users
