07-17, 16:30–17:00 (Europe/Sarajevo), CA01
The presentation will provide a comprehensive introduction to GeoServer's own authentication and authorization subsystems. The authentication part will cover the various supported authentication protocols (e.g. basic/digest authentication) and identity providers (such as local config files, databases, LDAP servers, OAuth2/OpenID), covering also cases in which the same source may play both roles (OAuth2, OpenId connect).
It will explain how to combine various authentication mechanisms in a single comprehensive authentication tool, as well as provide examples of custom authentication plugins for GeoServer, integrating it in a home-grown security architecture. We’ll then move on to authorization, describing the GeoServer pluggable authorization mechanism, and comparing it with an external proxy-based solution. We will explain the default service and data security system, reviewing its benefits and limitations.
Finally, we’ll explore the advanced authorization provider, GeoFence. The different levels of integration with GeoServer will be presented, from the simple and seamless direct integration to the more sophisticated external setup. Finally, we’ll explore GeoFence’s powerful authorization rules using:
- The current user and its roles.
- The OGC services, workspace, layer, and layer group.
- CQL read and write filters.
- Attribute selection.
- Cropping raster and vector data to areas of interest.
2 - background knowledge helpful
Select at least one general theme that best defines your proposal –Data access, collection & sharing, State of software, or new features
I make my conference contribution available under the CC BY 4.0 license. The conference contribution comprises the abstract, the text contribution for the conference proceedings, the presentation materials as well as the video recording and live transmission of the presentation – yes
Open source enthusiast with strong experience in Java development and GIS. Personal interest range from high performance software, managing large data volumes, software testing and quality, spatial data analysis algorithms, map rendering.
Full time open source developer on GeoServer and GeoTools, regular presenter at F0SS4G.
Received the Sol Katz's OSGeo award in 2017.
- State of GeoServer
- OGC APIs with GeoServer: implementation, availability, and next steps
- Serving earth observation data with GeoServer: COG, STAC, OpenSearch and more...
- Publishing INSPIRE and other rich data models in GeoServer made easy with Smart Data Loader and Features Templating
- GeoServer 3 Status Report: How We Got Here, How It’s Going
- Certified GeoServer: status of OGC service and format compliance
- Vector tiles and GeoServer: dynamic vector tiles server, XYZ services, and base maps
- Processing and publishing Maritime AIS data with GeoServer and Databricks in Azure