[Geoserver-users] please answer the question to help me, i have a problem with geoserver

GeoServer GeoServer User
1

Hello
Please help me, i have a problem in authentication with jdbc users and roles
that saved in database.
i use users and roles that saved in postgresql database to connect to
geoserver, and use jdbc users/groups service and jdbc roles service and jdbc
authentication provider to connect database.
The connection url in all jdbc services is correct and work.
But when use this method, unknown users can login to geoserver!
for example, the user 'example' dose not exist in users table in database
but can login to geoserver like a user!!
for every users in database, the password dose not check when login into
geoserver!!!
Please help me,

--
View this message in context: http://osgeo-org.1560.x6.nabble.com/please-answer-the-question-to-help-me-i-have-a-problem-with-geoserver-tp5254486.html
Sent from the GeoServer - User mailing list archive at Nabble.com.

2

Hi Ahmad

The JDBC authentication provider verifies the credentials using a simple connect to the database. I think this is not what you want.

Please remove the JDBC authentication provider and try again.

Cheers
Christian

···

On Fri, Mar 4, 2016 at 9:01 PM, ahmad@anonymised.com <ahmadnaghavi2@anonymised.com> wrote:

Hello
Please help me, i have a problem in authentication with jdbc users and roles
that saved in database.
i use users and roles that saved in postgresql database to connect to
geoserver, and use jdbc users/groups service and jdbc roles service and jdbc
authentication provider to connect database.
The connection url in all jdbc services is correct and work.
But when use this method, unknown users can login to geoserver!
for example, the user ‘example’ dose not exist in users table in database
but can login to geoserver like a user!!
for every users in database, the password dose not check when login into
geoserver!!!
Please help me,


View this message in context: http://osgeo-org.1560.x6.nabble.com/please-answer-the-question-to-help-me-i-have-a-problem-with-geoserver-tp5254486.html
Sent from the GeoServer - User mailing list archive at Nabble.com.

Geoserver-users mailing list
Geoserver-users@anonymised.comsts.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/geoserver-users

DI Christian Mueller MSc (GIS), MSc (IT-Security)
OSS Open Source Solutions GmbH

3

Hello christian, thank you for reply
Your idea is not work, delete jdbc authentication provider cuase no any one login to geoserver…
Dose this problem is a bug for geoserver?

···

On Fri, Mar 4, 2016 at 9:01 PM, ahmad@anonymised.com <[hidden email]> wrote:

Hello
Please help me, i have a problem in authentication with jdbc users and roles
that saved in database.
i use users and roles that saved in postgresql database to connect to
geoserver, and use jdbc users/groups service and jdbc roles service and jdbc
authentication provider to connect database.
The connection url in all jdbc services is correct and work.
But when use this method, unknown users can login to geoserver!
for example, the user ‘example’ dose not exist in users table in database
but can login to geoserver like a user!!
for every users in database, the password dose not check when login into
geoserver!!!
Please help me,


View this message in context: http://osgeo-org.1560.x6.nabble.com/please-answer-the-question-to-help-me-i-have-a-problem-with-geoserver-tp5254486.html
Sent from the GeoServer - User mailing list archive at Nabble.com.

Geoserver-users mailing list
[hidden email]
https://lists.sourceforge.net/lists/listinfo/geoserver-users

DI Christian Mueller MSc (GIS), MSc (IT-Security)
OSS Open Source Solutions GmbH

4

Hi Ahmad

Login as admin and check the following things:

Under Security–>Settings is a drop down box called “Active role service”. This has to be your jdbc role service.

Look at Security–>Authentication search for “authentication providers”. There is one called default. Click on this provider to get on the edit page. Check if “User Group Service” is the name of your jdbc user group service.

Finally, at the bottom of Security–>Authentication you will see “Provider Chain”. There is a list box called “Select”. There should be one entry named “default”

Thats it.

Cheers

···

On Sun, Mar 6, 2016 at 12:34 PM, ahmad@anonymised.com. <ahmadnaghavi2@anonymised.com> wrote:

Hello christian, thank you for reply
Your idea is not work, delete jdbc authentication provider cuase no any one login to geoserver…
Dose this problem is a bug for geoserver?

On Mar 5, 2016 8:53 AM, “Christian Mueller-3 [via OSGeo.org]” <[hidden email]> wrote:

Hi Ahmad

The JDBC authentication provider verifies the credentials using a simple connect to the database. I think this is not what you want.

Please remove the JDBC authentication provider and try again.

Cheers
Christian

Geoserver-users mailing list
[hidden email]
https://lists.sourceforge.net/lists/listinfo/geoserver-users

If you reply to this email, your message will be added to the discussion below:
http://osgeo-org.1560.x6.nabble.com/please-answer-the-question-to-help-me-i-have-a-problem-with-geoserver-tp5254486p5254520.html
To unsubscribe from please answer the question to help me, i have a problem with geoserver, click here.
NAML

View this message in context: Re: please answer the question to help me, i have a problem with geoserver

Sent from the GeoServer - User mailing list archive at Nabble.com.

Geoserver-users mailing list
Geoserver-users@anonymised.comsts.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/geoserver-users

On Fri, Mar 4, 2016 at 9:01 PM, ahmad@anonymised.com <[hidden email]> wrote:

Hello
Please help me, i have a problem in authentication with jdbc users and roles
that saved in database.
i use users and roles that saved in postgresql database to connect to
geoserver, and use jdbc users/groups service and jdbc roles service and jdbc
authentication provider to connect database.
The connection url in all jdbc services is correct and work.
But when use this method, unknown users can login to geoserver!
for example, the user ‘example’ dose not exist in users table in database
but can login to geoserver like a user!!
for every users in database, the password dose not check when login into
geoserver!!!
Please help me,


View this message in context: http://osgeo-org.1560.x6.nabble.com/please-answer-the-question-to-help-me-i-have-a-problem-with-geoserver-tp5254486.html
Sent from the GeoServer - User mailing list archive at Nabble.com.

Geoserver-users mailing list
[hidden email]
https://lists.sourceforge.net/lists/listinfo/geoserver-users

DI Christian Mueller MSc (GIS), MSc (IT-Security)
OSS Open Source Solutions GmbH

DI Christian Mueller MSc (GIS), MSc (IT-Security)
OSS Open Source Solutions GmbH

5

Hello,
Thanks christian

This method works.
if i face with a problem again, i will let you know

···

On Sun, Mar 6, 2016 at 12:34 PM, ahmad@anonymised.com… <[hidden email]> wrote:

Hello christian, thank you for reply
Your idea is not work, delete jdbc authentication provider cuase no any one login to geoserver…
Dose this problem is a bug for geoserver?

On Mar 5, 2016 8:53 AM, “Christian Mueller-3 [via OSGeo.org]” <[hidden email]> wrote:

Hi Ahmad

The JDBC authentication provider verifies the credentials using a simple connect to the database. I think this is not what you want.

Please remove the JDBC authentication provider and try again.

Cheers
Christian

Geoserver-users mailing list
[hidden email]
https://lists.sourceforge.net/lists/listinfo/geoserver-users

If you reply to this email, your message will be added to the discussion below:
http://osgeo-org.1560.x6.nabble.com/please-answer-the-question-to-help-me-i-have-a-problem-with-geoserver-tp5254486p5254520.html
To unsubscribe from please answer the question to help me, i have a problem with geoserver, click here.
NAML

View this message in context: Re: please answer the question to help me, i have a problem with geoserver

Sent from the GeoServer - User mailing list archive at Nabble.com.

Geoserver-users mailing list
[hidden email]
https://lists.sourceforge.net/lists/listinfo/geoserver-users

DI Christian Mueller MSc (GIS), MSc (IT-Security)
OSS Open Source Solutions GmbH

On Fri, Mar 4, 2016 at 9:01 PM, ahmad@anonymised.com <[hidden email]> wrote:

Hello
Please help me, i have a problem in authentication with jdbc users and roles
that saved in database.
i use users and roles that saved in postgresql database to connect to
geoserver, and use jdbc users/groups service and jdbc roles service and jdbc
authentication provider to connect database.
The connection url in all jdbc services is correct and work.
But when use this method, unknown users can login to geoserver!
for example, the user ‘example’ dose not exist in users table in database
but can login to geoserver like a user!!
for every users in database, the password dose not check when login into
geoserver!!!
Please help me,


View this message in context: http://osgeo-org.1560.x6.nabble.com/please-answer-the-question-to-help-me-i-have-a-problem-with-geoserver-tp5254486.html
Sent from the GeoServer - User mailing list archive at Nabble.com.

Geoserver-users mailing list
[hidden email]
https://lists.sourceforge.net/lists/listinfo/geoserver-users

DI Christian Mueller MSc (GIS), MSc (IT-Security)
OSS Open Source Solutions GmbH