[Mapbender-users] How to enable secure WMS layer visualization through Mapbender3
Astrid Emde
astrid.emde at wheregroup.com
Mon May 11 09:53:07 PDT 2015
Hallo Naresh,
the owsproxy checkbox for WMS is for the following use:
* You can access services which are not accessable from outside or
afford user credentials. Mapbender3 will handle the request and parse
the image/inforesult to the user outside.
We had discussions about the showing of the service url which is passed
to owsproxy. I agree that it should be hidden and encryted maybe whith
md5. Some other opinions are that it can be displayed as you should not
be able to access it anyway.
At the moment you can't avoid users seeing the address and layers for
owsproxy enabled.
Do you need both?
* hiding service address
* hiding layer names
You are welcome to support the programming of the encryption.
Best regards Astrid Emde
Am 2015-05-11 10:29, schrieb naresh:
> Dear ALL,
>
> I have configured Mapbender3 in windows8 machine 64 bit. Using GUI
> created the new application and added the WMS layers through Layer set
> , selected the option proxy and added the user credentials for view.
> When I Opened the application with credentials layers are loading
> fine and wms requests can be seen as follows from browser
>
> http://localhost/mapbender3/app_dev.php/owsproxy/?url=http%3A%2F%2F192.168.180.150%3A8080%2Fgeoserver%2Fwms%3FSERVICE%3DWMS%26_signature%3D41%253ANwPvRxmwjo898lUpbVq4cPChQNk&TRANSPARENT=TRUE&FORMAT=image%2Fpng&SERVICE=WMS&VERSION=1.1.1&REQUEST=GetMap&STYLES=&LAYERS=boundaries%3AINDIA_STATE_250K&SRS=EPSG%3A4326&BBOX=63.823233641633,-0.59814766473471,71.95067476302,7.5292934566531&WIDTH=256&HEIGHT=256
>
> But from above request we can get to know URL of the server and layer
> name,And these can be used to access the WMS layer out side the map
> bender application. So wms layer is not secured ,people can access the
> wms request by seeing the details from browser. How to avoid this? or
> is it possible with mapbender3 client can sends wms requests which can
> not be understandable by users.
>
> Thanks&Regards,
> Naresh
>
> On 4/25/2015 12:31 AM, mapbender_users-request at lists.osgeo.org wrote:
>> Send Mapbender_users mailing list submissions to
>> mapbender_users at lists.osgeo.org
>>
>> To subscribe or unsubscribe via the World Wide Web, visit
>> http://lists.osgeo.org/mailman/listinfo/mapbender_users
>> or, via email, send a message with subject or body 'help' to
>> mapbender_users-request at lists.osgeo.org
>>
>> You can reach the person managing the list at
>> mapbender_users-owner at lists.osgeo.org
>>
>> When replying, please edit your Subject line so it is more specific
>> than "Re: Contents of Mapbender_users digest..."
>>
>>
>> Today's Topics:
>>
>> 1. Fwd: Mapbender_users Digest, Vol 101, Issue 5 (naresh)
>>
>>
>> ----------------------------------------------------------------------
>>
>> Message: 1
>> Date: Fri, 24 Apr 2015 13:56:04 +0530
>> From: naresh <naresh_n at nrsc.gov.in>
>> To: mapbender_users at lists.osgeo.org
>> Subject: [Mapbender-users] Fwd: Mapbender_users Digest, Vol 101, Issue
>> 5
>> Message-ID: <5539FE1C.2070104 at nrsc.gov.in>
>> Content-Type: text/plain; charset="windows-1252"; Format="flowed"
>>
>> Dear Sir,
>>
>> Please add my mail id .
>>
>> Thanks&Regards,
>> Naresh
>>
>>
>>
>> -------- Forwarded Message --------
>> Subject: Mapbender_users Digest, Vol 101, Issue 5
>> Date: Thu, 23 Apr 2015 12:02:01 -0700
>> From: mapbender_users-request at lists.osgeo.org
>> Reply-To: mapbender_users at lists.osgeo.org
>> To: mapbender_users at lists.osgeo.org
>>
>>
>>
>> Send Mapbender_users mailing list submissions to
>> mapbender_users at lists.osgeo.org
>>
>> To subscribe or unsubscribe via the World Wide Web, visit
>> http://lists.osgeo.org/mailman/listinfo/mapbender_users
>> or, via email, send a message with subject or body 'help' to
>> mapbender_users-request at lists.osgeo.org
>>
>> You can reach the person managing the list at
>> mapbender_users-owner at lists.osgeo.org
>>
>> When replying, please edit your Subject line so it is more specific
>> than "Re: Contents of Mapbender_users digest..."
>>
>>
>> Today's Topics:
>>
>> 1. app_dev.php is not opening (naresh)
>> 2. Re: app_dev.php is not opening (Astrid Emde)
>>
>>
>> ----------------------------------------------------------------------
>>
>> Message: 1
>> Date: Thu, 23 Apr 2015 14:48:57 +0530
>> From: naresh <naresh_n at nrsc.gov.in>
>> To: mapbender_users at lists.osgeo.org
>> Subject: [Mapbender-users] app_dev.php is not opening
>> Message-ID: <5538B901.3090204 at nrsc.gov.in>
>> Content-Type: text/plain; charset="utf-8"; Format="flowed"
>>
>> Dear ALL,
>>
>> I have installed Mapbender3.0.4.1 on windows xp machine. I have
>> followed the steps given in
>> http://doc.mapbender3.org/en/book/installation.html#installation-example-for-windows.
>> When i am visiting the link http://localhost/mapbender/app_dev.php ->
>> the page is not showing it is keep on loading. How to run/open the
>> application.
>>
>> The following info may be helpful to understand the issue
>>
>> 1. http://localhost/mapbender3/config.php showing the following
>> message.
>>
>> Your configuration looks good to run Symfony.
>>
>> * Configure your Symfony Application online
>> <http://localhost/mapbender3/app_dev.php/_configurator/>
>> * Bypass configuration and go to the Welcome page
>> <http://localhost/mapbender3/app_dev.php/>
>>
>> Even if we click on above hyper links the page was not loading.
>> 2. while executing the command php.exe app/console init:acl it is
>> shown
>> the message Aborting: The table with name 'postgres:acl_classes'
>> already
>> exists
>>
>> 3. Attached parameter.yml and config.yml file. ( where i have changed
>> the paramers).
>>
>> Please give suggestion/advise how to fix the issue and explore further
>> map bender option
>>
>>
>> Thanks&Regards,
>> Naresh
>>
>>
>> -------------- next part --------------
>> An HTML attachment was scrubbed...
>> URL:
>> <http://lists.osgeo.org/pipermail/mapbender_users/attachments/20150423/70074188/attachment-0001.html>
>> -------------- next part --------------
>> imports:
>> - { resource: parameters.yml }
>> - { resource: security.yml }
>>
>> framework:
>> #esi: ~
>> translator: { fallback: %fallback_locale% }
>> secret: %secret%
>> router:
>> resource: "%kernel.root_dir%/config/routing.yml"
>> strict_requirements: %kernel.debug%
>> form: true
>> csrf_protection: true
>> validation: { enable_annotations: true }
>> templating: { engines: ['twig'] } #assets_version:
>> SomeVersionScheme
>> default_locale: %locale%
>> session:
>> cookie_httponly: true
>> cookie_secure: %cookie_secure%
>> cookie_lifetime: %cookie_lifetime%
>>
>>
>> # Twig Configuration
>> twig:
>> debug: %kernel.debug%
>> strict_variables: %kernel.debug%
>> globals:
>> fom: %fom%
>> form:
>> resources:
>> - 'FOMCoreBundle:Form:fields.html.twig'
>>
>> # Assetic Configuration
>> assetic:
>> debug: %kernel.debug%
>> use_controller: true
>> ruby: %ruby_path%
>> filters:
>> cssrewrite: ~
>> sass: ~
>> compass:
>> bin: %compass_path%
>> no_line_comments: true
>> style: compressed
>> load_paths:
>> -
>> "%kernel.root_dir%/../mapbender/src/Mapbender/CoreBundle/Resources/public/sass"
>>
>> # Doctrine Configuration
>> doctrine:
>> dbal:
>> driver: %database_driver%
>> host: %database_host%
>> port: %database_port%
>> dbname: %database_name%
>> path: %database_path%
>> user: %database_user%
>> password: %database_password%
>> charset: UTF8
>>
>> orm:
>> auto_generate_proxy_classes: %kernel.debug%
>> auto_mapping: true
>>
>> # Swiftmailer Configuration
>> swiftmailer:
>> transport: %mailer_transport%
>> host: %mailer_host%
>> username: %mailer_user%
>> password: %mailer_password%
>> spool: { type: memory }
>>
>> # FOM Manager Configuration
>> fom_manager:
>> route_prefix: /manager
>>
>> # FOM User Configuration
>> fom_user:
>> selfregister: false
>> reset_password: true
>> max_registration_time: 1
>> max_reset_time: 1
>> mail_from_address: wizard at oz.net
>> mail_from_name: Wizard of Oz
>> profile_entity: FOM\UserBundle\Entity\BasicProfile
>> profile_formtype: FOM\UserBundle\Form\Type\BasicProfileType
>> profile_template: FOMUserBundle:User:basic_profile.html.twig
>> self_registration_groups:
>> - Self Registered
>> - Demo Group
>>
>> # OWSProxy Configuration
>> ows_proxy3_core:
>> logging: true
>> obfuscate_client_ip: true
>> proxy:
>> host: 172.16.0.11
>> port: 8080
>> connecttimeout: 60
>> timeout: 90
>> user:naresh
>> password:bhuvan
>> # noproxy:
>> # - host_a
>> # - host_b
>>
>> # Mapbender Configuration
>> mapbender_core:
>> sass_assets: false
>> -------------- next part --------------
>> parameters:
>> database_driver: pdo_pgsql
>> database_host: localhost
>> database_port: 5432
>> database_name: mapbender
>> database_path:
>> database_user: postgres
>> database_password: bhuvan
>>
>> mailer_transport: smtp
>> mailer_host: localhost
>> mailer_user:
>> mailer_password: ~
>>
>> # locale en, de, it, es are available
>> fallback_locale: en
>> locale: en
>> secret: ThisTokenIsNotSoSecretChangeIt
>>
>> fom:
>> server_name: Mapbender3
>> server_version: 3.0.4.1
>> server_logo: bundles/mapbendercore/image/logo_mb3.png
>>
>> # framework :
>> http://symfony.com/doc/2.1/reference/configuration/framework.html#cookie-lifetime
>> cookie_secure: false
>> cookie_lifetime: 3600
>>
>> # activate sass_assets and define the compass_path, ruby_path,
>> if you want to work with compass and edit sass files
>> # if not leave sass_assets: false
>> sass_assets: false
>> compass_path: ~
>> ruby_path: ~
>>
>> ------------------------------
>>
>> Message: 2
>> Date: Thu, 23 Apr 2015 13:41:12 +0200
>> From: Astrid Emde <astrid.emde at wheregroup.com>
>> To: mapbender_users at lists.osgeo.org
>> Subject: Re: [Mapbender-users] app_dev.php is not opening
>> Message-ID: <5538DA58.9070501 at wheregroup.com>
>> Content-Type: text/plain; charset="iso-8859-1"
>>
>> Hello Naresh,
>>
>> I think you tried to open the following link with mapbender3. You have
>> firebug for your browser? You could check whether you get an error
>> message there.
>> http://localhost/mapbender3/app_dev.php
>>
>> Please have a look in you apache log-file too.
>>
>> These are the first advises I can give.
>>
>> Best regards Astrid
>>
>>
>> Am 23.04.2015 11:18, schrieb naresh:
>>> Dear ALL,
>>>
>>> I have installed Mapbender3.0.4.1 on windows xp machine. I have
>>> followed the steps given in
>>> http://doc.mapbender3.org/en/book/installation.html#installation-example-for-windows.
>>> When i am visiting the link http://localhost/mapbender/app_dev.php ->
>>> the page is not showing it is keep on loading. How to run/open the
>>> application.
>>>
>>> The following info may be helpful to understand the issue
>>>
>>> 1. http://localhost/mapbender3/config.php showing the following
>>> message.
>>>
>>> Your configuration looks good to run Symfony.
>>>
>>> * Configure your Symfony Application online
>>> <http://localhost/mapbender3/app_dev.php/_configurator/>
>>> * Bypass configuration and go to the Welcome page
>>> <http://localhost/mapbender3/app_dev.php/>
>>>
>>> Even if we click on above hyper links the page was not loading.
>>> 2. while executing the command php.exe app/console init:acl it is
>>> shown the message Aborting: The table with name
>>> 'postgres:acl_classes'
>>> already exists
>>>
>>> 3. Attached parameter.yml and config.yml file. ( where i have
>>> changed
>>> the paramers).
>>>
>>> Please give suggestion/advise how to fix the issue and explore
>>> further
>>> map bender option
>>>
>>>
>>> Thanks&Regards,
>>> Naresh
>>>
>>>
>>>
>>>
>>> _______________________________________________
>>> Mapbender_users mailing list
>>> Mapbender_users at lists.osgeo.org
>>> http://lists.osgeo.org/mailman/listinfo/mapbender_users
>>
>
>
> Please do not print this email unless it is absolutely necessary.
>
> The information contained in this electronic message and any
> attachments to this message are intended for the exclusive use of the
> addressee(s) and may contain proprietary, confidential or privileged
> information. If you are not the intended recipient, you should not
> disseminate, distribute or copy this e-mail. Please notify the sender
> immediately and destroy all copies of this message and any
> attachments. _______________________________________________
> Mapbender_users mailing list
> Mapbender_users at lists.osgeo.org
> http://lists.osgeo.org/mailman/listinfo/mapbender_users
--
Mit freundlichen Grüßen
Astrid Emde
GIS-Consultant
-----------------------------------
Aufwind durch Wissen!
Qualifizierte OpenSource-Schulungen
bei der www.foss-academy.eu
-----------------------------------
Astrid Emde
WhereGroup GmbH & Co.KG
Eifelstraße 7
53119 Bonn
Germany
Fon: +49(0)228 90 90 38 - 19
Fax: +49(0)228 90 90 38 - 11
astrid.emde at wheregroup.com
www.wheregroup.com
Folgen Sie der WhereGroup auf twitter:
http://twitter.com/WhereGroup_com
Amtsgericht Bonn, HRA 6788
-------------------------------
Komplementärin:
WhereGroup Verwaltungs GmbH
vertreten durch:
Olaf Knopp, Peter Stamm
-------------------------------
pgp-public key:
http://pgp.mit.edu:11371/pks/lookup?search=0x06DA52D72D515284
Signierte und/oder verschlüsselte Nachrichten sind sehr willkommen
Signed and/or encrypted mail is highly appreciated
More information about the Mapbender_users
mailing list