[Geoserver-devel] Geofence admin rule

GeoServer GeoServer Developer
1

Hi,
I could not solve this two problems with the posts on the user-mailing list so I need to try this now. Thanks in advance!

On a geoserver 2.9.0 with an installed geofence plugin, I do have additional admin pages to add "geofence data rules" and "geofence admin rules". I found nice descriptions how to add "geofence data rules" with the rest api. But I was not able to create "geofence admin rule". The documentations led me somehow to enable "admin" when creating the user, but this seems not to be the same as adding a "geofence admin rule" through the geoservers web-ui.

So how do I add a "geofence admin rule" using Rest?

(See: http://osgeo-org.1560.x6.nabble.com/Editing-Geofence-Admin-Rules-with-REST-tt5271576.html#a5279573)

Another thing is that I am not able to delete a rest-access rule. Maybe you can point me to the solutions. For details see: http://osgeo-org.1560.x6.nabble.com/Remove-rest-access-rule-with-rest-tt5280023.html

2

Hi,

I didn't implement the REST interface for 'geofence-server' module, so maybe someone else can give you a better answer.

GeoFence admin rules will allow you to control which user or roles can manage a workspace configuration and GeoFence
rules will allow you to control access to the different resources (layers and styles for example).

By checking the source code it seems to me that is not possible to create 'admin rules' using the REST interface,
there is only REST entry points for managing roles, users and rules:
https://github.com/geoserver/geoserver/tree/master/src/community/geofence-server/src/main/java/org/geoserver/geofence/rest

Implementing a REST entry point for admin rules should not be to difficult, it should be pretty similar to the rules REST entry
point but rely on the admin rules service:
https://github.com/geoserver/geofence/blob/master/src/services/core/services-api/src/main/java/org/geoserver/geofence/services/AdminRuleAdminService.java

Regards,

Nuno Oliveira

Le jeudi 11 août 2016 à 22:15 +0200, EPNext a écrit :

Hi,
I could not solve this two problems with the posts on the user-mailing
list so I need to try this now. Thanks in advance!

On a geoserver 2.9.0 with an installed geofence plugin, I do have
additional admin pages to add "geofence data rules" and "geofence admin
rules". I found nice descriptions how to add "geofence data rules" with
the rest api. But I was not able to create "geofence admin rule". The
documentations led me somehow to enable "admin" when creating the user,
but this seems not to be the same as adding a "geofence admin rule"
through the geoservers web-ui.

So how do I add a "geofence admin rule" using Rest?

(See:
http://osgeo-org.1560.x6.nabble.com/Editing-Geofence-Admin-Rules-with-REST-tt5271576.html#a5279573)

Another thing is that I am not able to delete a rest-access rule. Maybe
you can point me to the solutions. For details see:
http://osgeo-org.1560.x6.nabble.com/Remove-rest-access-rule-with-rest-tt5280023.html

------------------------------------------------------------------------------
What NetFlow Analyzer can do for you? Monitors network bandwidth and traffic
patterns at an interface-level. Reveals which users, apps, and protocols are
consuming the most bandwidth. Provides multi-vendor support for NetFlow,
J-Flow, sFlow and other flows. Make informed decisions using capacity
planning reports. http://sdm.link/zohodev2dev
_______________________________________________
Geoserver-devel mailing list
Geoserver-devel@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/geoserver-devel

--

GeoServer Professional Services from the experts!
Visit http://goo.gl/it488V for more information.

Nuno Miguel Carvalho Oliveira
@nmcoliveira
Software Engineer

GeoSolutions S.A.S.
Via di Montramito 3/A
55054 Massarosa (LU)
Italy

phone: +39 0584 962313
fax: +39 0584 1660272
mob: +39 333 8128928

http://www.geo-solutions.it
http://twitter.com/geosolutions_it

-------------------------------------------------------

AVVERTENZE AI SENSI DEL D.Lgs. 196/2003
Le informazioni contenute in questo messaggio di posta elettronica e/o nel/i file/s allegato/i sono
da considerarsi strettamente riservate. Il loro utilizzo è consentito esclusivamente al destinatario del messaggio, per le finalità indicate
nel messaggio stesso. Qualora riceviate questo messaggio senza esserne il destinatario, Vi preghiamo cortesemente di darcene notizia via e
-mail e di procedere alla distruzione del messaggio stesso, cancellandolo dal Vostro sistema. Conservare il messaggio stesso, divulgarlo
anche in parte, distribuirlo ad altri soggetti, copiarlo, od utilizzarlo per finalità diverse, costituisce comportamento contrario ai
principi dettati dal D.Lgs. 196/2003.

The information in this message and/or attachments, is intended solely for the attention and use of
the named addressee(s) and may be confidential or proprietary in nature or covered by the provisions of privacy act (Legislative Decree
June, 30 2003, no.196 - Italy's New Data Protection Code).Any use not in accord with its purpose, any disclosure, reproduction, copying,
distribution, or either dissemination, either whole or partial, is strictly forbidden except previous formal approval of the named
addressee(s). If you are not the intended recipient, please contact immediately the sender by telephone, fax or e-mail and delete the
information in this message that has been received in error. The sender does not give any warranty or accept liability as the content,
accuracy or completeness of sent messages and accepts no responsibility for changes made after they were sent or for other risks which
arise as a result of e-mail transmission, viruses, etc.