Hi all According to https://docs.geoserver.org/stable/en/user/security/usergrouprole/roles.html, there are 4 reserved role names:
- ROLE_ADMINISTRATOR—Provides access to all operations and resources - ROLE_GROUP_ADMIN—Special role for administrating user groups - ROLE_AUTHENTICATED—Assigned to every user authenticating successfully - ROLE_ANONYMOUS—Assigned if anonymous authentication is enabled and user does not log on I understand and have used these, except for ROLE_GROUP_ADMIN. *(I have also configured the workspace/layer level admin mode in Layer Security (ref: https://docs.geoserver.org/latest/en/user/security/layer.html#access-modes <https://docs.geoserver.org/latest/en/user/security/layer.html#access-modes>) which gives a user access to the configuration of the specified workspace, and I believe this has nothing to do with ROLE_GROUP_ADMIN )* When I configure a test user with ROLE_GROUP_ADMIN: [image: image.png] I see that the *Administrator for groups* combo box is greyed out - is that correct? Should I be able to select which of multiple groups this user can administer? And when this user logs into the web admin interface, they get no additional functionality: [image: image.png] Can someone please explain to me how this "Special role for administrating user groups" works? Is it only applicable to the REST interface? Thank you Peter
_______________________________________________ Geoserver-users mailing list Please make sure you read the following two resources before posting to this list: - Earning your support instead of buying it, but Ian Turton: http://www.ianturton.com/talks/foss4g.html#/ - The GeoServer user list posting guidelines: http://geoserver.org/comm/userlist-guidelines.html If you want to request a feature or an improvement, also see this: https://github.com/geoserver/geoserver/wiki/Successfully-requesting-and-integrating-new-features-and-improvements-in-GeoServer Geoserver-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/geoserver-users
