@Jonathan and Stefano,, Thank you for your replies.
I understand that a user may go around my wrapper to request the URL from
geoserver, but my next step was to restrict this situation. I am also
looking for mechanisms where geoserver may be tied to a particular
port/secure channel (may be certificates), in that case possible "go
around" can be blocked.
Let me know if you have suggestions.
Thanks
Sachin
PS: I was earlier trying to modify the authentication mechanism of
geoserver to suit my requirements (CAS), but it seemed to be too involving
process.
On Thu, Apr 25, 2013 at 4:59 AM, Jonathan Moules <
[email protected]> wrote:
> Hi Sachin,
> Maybe I'm not understanding your requirements correctly, but GeoServer's
> Layer Preview just uses WMS and WFS requests. You can easily duplicate it
> yourself using OpenLayers - http://openlayers.org/dev/examples/.
> Restricting user's access can be done by the web-app but logically should
> be done within GeoServer itself (otherwise someone knowing what they're
> doing could simply make the request directly to GeoServer, going around
> your "wrapper").
>
> Jonathan
>
>
>
> On 25 April 2013 06:36, Sachin Hirve <[email protected]> wrote:
>
>> Hi,
>>
>> As far as I know, with current geoserver version, it is possible to
>> preview a layer without logging-in, but by directly entering a URL (with
>> service, layer and co-ordinates information) in the browser.
>>
>> I am wondering if it is possible to create a web-app wrapper around
>> geoserver, which would allow user to request to view a layer by specifying
>> complete URL (as described above)? I am only trying to introduce this web
>> interface between geoserver and user, so that I can introduce my own choice
>> of authentication to restrict even read requests (layer preview) for
>> authenticated users, while making minimum possible changes in geoserver.
>>
>> Please let me know if you have any suggestions/information about the
>> possible steps. Your help is highly appreciated.
>>
>> Thanks
>> Sachin
>>
>>
>> ------------------------------------------------------------------------------
>> Try New Relic Now & We'll Send You this Cool Shirt
>> New Relic is the only SaaS-based application performance monitoring
>> service
>> that delivers powerful full stack analytics. Optimize and monitor your
>> browser, app, & servers with just a few lines of code. Try New Relic
>> and get this awesome Nerd Life shirt!
>> http://p.sf.net/sfu/newrelic_d2d_apr
>> ____________ _________________________ __________
>> Geoserver-users mailing list
>> [email protected]
>> https://lists.sourceforge.net/lists/listinfo/geoserver-users
>>
>>
>
>
> This transmission is intended for the named addressee(s) only and may
> contain sensitive or protectively marked material up to RESTRICTED and
> should be handled accordingly. Unless you are the named addressee (or
> authorised to receive it for the addressee) you may not copy or use it, or
> disclose it to anyone else. If you have received this transmission in error
> please notify the sender immediately. All email traffic sent to or from us,
> including without limitation all GCSX traffic, may be subject to recording
> and/or monitoring in accordance with relevant legislation.
>
------------------------------------------------------------------------------
Try New Relic Now & We'll Send You this Cool Shirt
New Relic is the only SaaS-based application performance monitoring service
that delivers powerful full stack analytics. Optimize and monitor your
browser, app, & servers with just a few lines of code. Try New Relic
and get this awesome Nerd Life shirt! http://p.sf.net/sfu/newrelic_d2d_apr
_______________________________________________
Geoserver-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/geoserver-users
