Hi all,
I’ve developed a web application using geoserver with an Oracle Spatial database.
The problem is that I´ve to publish the geoserver address and I don’t want people to modify my database.
Is there a way to restrict users adresses to GeoServer, so only the users I authorize (intranet and privileged users) can access to GeoServer capabilities???
If not, and if so, is there a way to restrict WFS capabilities only in the layers I want to so these “bad-users” can’t modify my data???
Thank you in advance.
Regards,
Patrick
Patrick O'Brian ha scritto:
Hi all,
I've developed a web application using geoserver with an Oracle Spatial database.
The problem is that I´ve to publish the geoserver address and I don't want people to modify my database.
Is there a way to restrict users adresses to GeoServer, so only the users I authorize (intranet and privileged users) can access to GeoServer capabilities???
If not, and if so, is there a way to restrict WFS capabilities only in the layers I want to so these "bad-users" can't modify my data???
Yes, the security subsystem prototype included in GeoServer 1.6.0 allows
you to do exactly that, add a simple role based security to services.
It allows you to enable certain service calls (like Transaction) only
for some authenticated users. Beware, this is limited to services, you
cannot limit access to a specific dataset.
Anyways, here is some information about the configuration:
http://docs.codehaus.org/display/GEOSDEV/Geoserver+security+implementation%2C+initial+version
Hope this helps
Cheers
Andrea