Hi Matteo, > I wouldn't like to allow geofence to access the ldap of openam,
I was pointing to the LDAP module only to show you a module that implements the required interfaces toward a data source for users and groups :) > so if it > possible to use the embedded version in a cluster installation.? If you need to use a clustered GeoServer, you should use a standalone GeoFence; in this way all the GeoServer instances will share the same rulesets. The embedded GeoFence engine uses an internal DB to store the rules, and at the moment there isn't a mechanism to keep in synch the various GeoFence DBs for the different instances in the cluster. Cheers, Emanuele Alle 23:55:54 di Friday 17 March 2017, Matteo Cusmai ha scritto: > Hi Tajarol, > thanks a lot for the quick replay. > > I wouldn't like to allow geofence to access the ldap of openam, so if it > possible to use the embedded version in a cluster installation.? > > Furthermore, I would like to know if Oauth2 is the best way to secure > geoserver. > > thanks a lot, > Matteo. > > > On 8 Mar 2017 17:28, "Emanuele Tajariol" <[email protected]> wrote: > > Hi Matteo, > > if you are going to use the embedded version of GeoFence, there should not > be > any problem, since in that configuration GeoFence relies entirely on the > users > and usergroups provided by GeoServer; so, once GeoServer recognises users > and > groups from an external source, it will feed them in GeoFence when needed. > > If you are using GeoFence as a standalone application, you'll need to > implement the DAOs in GeoFence for reading users and groups from the openam > services. You may find it useful to take the LDAP module as an example, > since > it implements the DAOs for reading users and groups from an LDAP directory. > > Cheers, > Emanuele > > Alle 10:48:53 di Tuesday 7 March 2017, Matteo Cusmai ha scritto: > > Hi all, > > I am going to secure my geoserver by using openam as oauth2 > > authentication server. Is it possible to use users stored in openam to > > create rules in geofence? > > > > Regards, > > Matteo. > > > > > > > > Matteo Cusmai > -- == GeoServer Professional Services from the experts! Visit http://goo.gl/NWWaa2 for more information. == Ing. Emanuele Tajariol Technical Lead GeoSolutions S.A.S. Via di Montramito 3/A 55054 Massarosa (LU) Italy phone: +39 0584 962313 fax: +39 0584 1660272 mob: +39 380 2116282 http://www.geo-solutions.it http://twitter.com/geosolutions_it ------------------------------------------------------- ------------------------------------------------------------------------------ Check out the vibrant tech community on one of the world's most engaging tech sites, Slashdot.org! http://sdm.link/slashdot _______________________________________________ Geoserver-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/geoserver-users
