[Geoserver-devel] [JIRA] (GEOS-10918) Layer preview list empty if authorization rule is specific for a single layer

Giovanni Spigoni created an issue

GeoServer / BugGEOS-10918

Layer preview list empty if authorization rule is specific for a single layer

Issue Type:

BugBug

Affects Versions:

2.22.2

Assignee:

Unassigned

Components:

Configuration, web, website

Created:

30/Mar/23 6:21 PM

Environment:

  • Operating system: RHEL 9
  • Tomcat 9

Priority:

MediumMedium

Reporter:

Giovanni Spigoni

The page “Layer Preview” of the geoserver webapp displays an empty list if the user accessing the page, has a role matching a sigle-layer rule.
Therefore, if an autorisation rule is specified for a single layer (e.g. myWorkspace.myLayer.r) and the authenticated user has the role that match this rule, then the layer preview list will be displayed empty. Even if the user has the authorisation to read other workspaces configured with other rules (e.g. otherWorkspace.**.r**), the layer preview list will be empty. Only if the user’s roles match a rule that overrides the single-layer rule (e.g. myWorkspace..r) then the layer preview list will be displayed correctly.

Please note that this error only involves the “Layer Preview“ page. The authorisations for the layers provided by wms o wfs services are applied properly.

I faced this error with different kind of users and different kind of authentications. I tried both with users and roles defined locally on the geoserver and with users and roles provided by Active Directory.

Add Comment

Add Comment

Get Jira notifications on your phone! Download the Jira Cloud app for Android or iOS


This message was sent by Atlassian Jira (v1001.0.0-SNAPSHOT#100219-sha1:6a6077b)

Atlassian logo