The whole security doc needs some love, this is on my TODO list
Christian
2013/1/23 Alessio Fabiani
> +1 here.
>
> Having al SSL filter on the chain seems to be a very good improvement,
> especially on REST responses which send clear text and is possible in some
> cases to have back the store p
+1 here.
Having al SSL filter on the chain seems to be a very good improvement,
especially on REST responses which send clear text and is possible in some
cases to have back the store passwords in clear.
Had a quick look at the code, the headers look fine, javadoc on methods
fine and there are te
+0
On the face of it, I am all for improvements and better control on
security but I dont think I have engaged enough with the recent
enhancements to judge this one.
Notice: This email and any attachments are confidential. If received in error
please destroy and immediately notify us. Do not c
Hey Christian,
Looked over this commit and it looks good. No issues here.
-Justin
On Thu, Jan 17, 2013 at 5:43 AM, Christian Mueller wrote:
> Hi Justin, the core code is available for review.
>
>
> https://github.com/mcrmcr/geoserver-1/commit/3a648f8465f33a8c924d2c9ec00f0e3bec5c938a
>
> Tests
0
Regards,
Simone Giannecchini
==
Our support, Your Success! Visit http://opensdi.geo-solutions.it for
more information.
==
Ing. Simone Giannecchini
@simogeo
Founder/Director
GeoSolutions S.A.S.
Via Poggio alle Viti 1187
55054 Massarosa (LU)
Italy
phone: +39 0584 962313
fax: +39 0584 166027
Hi Justin, the core code is available for review.
https://github.com/mcrmcr/geoserver-1/commit/3a648f8465f33a8c924d2c9ec00f0e3bec5c938a
Tests are passing. The important classes are
GeoServerSSLFilter
GeoServerRequestMatcher
I will start working on the admin GUI now.
2013/1/16 Justin Deoliv
Sounds good Christian. I will try to review as soon as the patch is
available.
On Tue, Jan 15, 2013 at 10:51 PM, Christian Mueller wrote:
> @Andrea: No, there is no new pattern language, this is only an example.
> The admin has to deal with simple ANT patterns.
>
> @Justin
> GSIP 91 could be nam
+0 on the proposal from me :-)
I have my monday slightly earlier than you, and need to complete the release
promptly (or try again the next weekend).
--
Jody Garnett
On Wednesday, 16 January 2013 at 11:02 PM, Christian Mueller wrote:
> Thanks for the hint, in this situation I will try to f
Thanks for the hint, in this situation I will try to finish the core code
until Friday and hope for a review from Justin. Fortunately, Justin is 8
hours behind me :-)
I think the admin GUI is not so critical and I try to finish until Sunday.
Cheers
Christian
2013/1/16 Andrea Aime
> On Wed, Ja
On Wed, Jan 16, 2013 at 6:51 AM, Christian Mueller wrote:
> @Andrea: No, there is no new pattern language, this is only an example.
> The admin has to deal with simple ANT patterns.
>
Ok, works for me, +1 (pending review of the patch
>
> @Justin
> GSIP 91 could be named "GSIP 82, part II". It i
+0
GSIP sounds good but I do not really know much about this area.
-Jukka Rahkonen-
Lähettäjä: Christian Mueller [mailto:mcrmc...@gmail.com]
Lähetetty: 16. tammikuuta 2013 7:51
Vastaanottaja: Justin Deoliveira
Kopio: geoserver-devel; Andrea Aime
Aihe: Re: [Geoserver-devel] Call for vote GSIP-91
@Andrea: No, there is no new pattern language, this is only an example. The
admin has to deal with simple ANT patterns.
@Justin
GSIP 91 could be named "GSIP 82, part II". It is the successor for
completing chain configuration logic. This will be the last major rework in
the security core code. I w
Hey Christian,
How does this relate to GSIP-82?
Also, is there a patch i can check out?
-Justin
On Tue, Jan 15, 2013 at 11:16 AM, Andrea Aime
wrote:
> On Tue, Jan 15, 2013 at 5:03 PM, Christian Mueller wrote:
>
>> Exactly this is the problem. On the top of the page you can manage
>> individua
On Tue, Jan 15, 2013 at 5:03 PM, Christian Mueller wrote:
> Exactly this is the problem. On the top of the page you can manage
> individual authentication filters. (add,remove,edit). I want to have the
> same logic/look and feel for authentication chains. Until now, we have a
> fixed set of chain
Exactly this is the problem. On the top of the page you can manage
individual authentication filters. (add,remove,edit). I want to have the
same logic/look and feel for authentication chains. Until now, we have a
fixed set of chains and I want to add flexibility. This is the hard part.
The additi
On Mon, Jan 14, 2013 at 10:30 AM, Christian Mueller wrote:
> The GSIP is here
>
>
> http://geoserver.org/display/GEOS/GSIP+91+-+Enhance+authentication+filter+chain+configuration
>
> This is the last round concerning authentication filter chains and I want
> to bring it in during the open developme
The GSIP is here
http://geoserver.org/display/GEOS/GSIP+91+-+Enhance+authentication+filter+chain+configuration
This is the last round concerning authentication filter chains and I want
to bring it in during the open development phase for 2.3.x. (This week)
Thanks
Christian
--
17 matches
Mail list logo
