Hi Christian / Andrea (sorry for not replying sooner)
Thanks for your replies. I currently have the default filter chain set
as follows:
Proxy
Basic
Anonymous
The only other options are form authentication and rememberme.
Once the header has been sent (when requesting getcapabilities) any
subsequent getmap requests are fine but the getfeatureinfo request fails
if there are any layers that need authentication visible on the map.
Andrea's suggestion that the GET request isn't keeping the header/cookie
sounds about right. I could route each getfeatureinfo request through a
proxy to add the header in the same way as I do for the getcapabilities
but I was hoping there might be another way.
The version of GeoServer is 2.2.4
Thanks for the help
Tom
From: Christian Mueller [mailto:[email protected]]
Sent: 18 May 2013 10:18
To: Andrea Aime
Cc: Thomas Colley; GeoServer Mailing List List
Subject: Re: [Geoserver-users] Geoserver Header Auth
As Andrea already mentioned, the header has to be present in each
request but only if the security filter chain does not allow to create
an HTTP session. (Out of the box, HTTP session creation is only allowed
for the "web" filter chain).
If you allow HTTP session creation on the "default" filter chain, you
need to send the header only once, subsequent calls will use a session
cookie.
Cheers
Christian
2013/5/14 Andrea Aime <[email protected]>
On Tue, May 14, 2013 at 9:07 AM, Thomas Colley
<[email protected]> wrote:
Is this expected behaviour? I was expecting either all requests
to fail after the initial GetCapabilities or that once authenticated
geoserver would 'remember' the header and everything would work.
Hum, not sure, but normally GetFeatureInfo is done as an ajax request.
Wondering if the header is kept when you follow the ajax code path?
Afaik the header should still be present in each request.
Cheers
Andrea
--
==
GeoServer training in Milan, 6th & 7th June 2013! Visit
http://geoserver.geo-solutions.it <http://geoserver.geo-solutions.it/>
for more information.
==
Ing. Andrea Aime
@geowolf
Technical Lead
GeoSolutions S.A.S.
Via Poggio alle Viti 1187
55054 Massarosa (LU)
Italy
phone: +39 0584 962313 <tel:%2B39%200584%20962313>
fax: +39 0584 1660272 <tel:%2B39%200584%201660272>
mob: +39 339 8844549 <tel:%2B39%20%C2%A0339%208844549>
http://www.geo-solutions.it
http://twitter.com/geosolutions_it
-------------------------------------------------------
------------------------------------------------------------------------
------
AlienVault Unified Security Management (USM) platform delivers complete
security visibility with the essential security capabilities. Easily and
efficiently configure, manage, and operate all of your security controls
from a single console and one unified framework. Download a free trial.
http://p.sf.net/sfu/alienvault_d2d
_______________________________________________
Geoserver-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/geoserver-users
--
DI Christian Mueller MSc (GIS), MSc (IT-Security)
OSS Open Source Solutions GmbH
------------------------------------------------------------------------------
AlienVault Unified Security Management (USM) platform delivers complete
security visibility with the essential security capabilities. Easily and
efficiently configure, manage, and operate all of your security controls
from a single console and one unified framework. Download a free trial.
http://p.sf.net/sfu/alienvault_d2d
_______________________________________________
Geoserver-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/geoserver-users
