<div dir="ltr"><div><div>I tested basic protection whit .htaccess file in the directory. This require user/password for access with a browser but defining a wfs server like <a href="http://my_host/cgi-bin/qgis_mapserv.fcgi?map=/var/www/Test01/mymap.qgs">http://my_host/cgi-bin/qgis_mapserv.fcgi?map=/var/www/Test01/mymap.qgs</a> in qgis desktop can acces without restrictions to the map file.<br>
<br></div>Here my http configuration:<br><br></div>file .htaccess in directory /var/www/Test01 (to protect)<br><pre>AuthType Basic
<span class="" id="line-2-2"></span>AuthName "Authentication Required"
<span class="" id="line-3-1"></span>AuthUserFile "/etc/apache2/htpasswd"
<span class="" id="line-4-1"></span>Require valid-user</pre>modification in apache config file<br><div><pre><Directory "/var/www/Test01">
<span class="" id="line-2-3"></span> AllowOverride AuthConfig
<span class="" id="line-3-2"></span> # The Options below is an example. Use what you deem is necessary.
<span class="" id="line-4-2"></span> Options MultiViews Indexes SymLinksIfOwnerMatch IncludesNoExec
<span class="" id="line-5-1"></span> Order allow,deny
<span class="" id="line-6-1"></span> Allow from all
<span class="" id="line-7-1"></span></Directory></pre><br></div></div><div class="gmail_extra"><br><br><div class="gmail_quote">2013/9/29 aperi2007 <span dir="ltr"><<a href="mailto:aperi2007@gmail.com" target="_blank">aperi2007@gmail.com</a>></span><br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">the authentication usually in the wfs/wms systems is in the web server front-end.<div><div class="h5"><br>
<br>
On 29/09/2013 00:00, Antonio Vico wrote:<br>
</div></div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div><div class="h5">
Hi all,<br>
<br>
I am testing a "Qgis stack" for a project. I want use Qgis server for WMS and WFS services, Qgis desktop for digitalize data and Qgis web client for share.<br>
<br>
To do this I use a postgresql/postgis backend and this is my architecture:<br>
<br>
I store data in a postgresql/postgis database in a remote server with different users (and different privileges) that contains qgis server too.<br>
For share information I create a qgis project (mymap.qgs for example) that add several layers connecting directly to the database sharing fields that I want (with user and password according to the database) and put this qgis project to share in qgis server in a WFS service. (Direct connexion to the database in remote clients is not possible due the internet connexion speed and the amount of data).<br>
<br>
Open remotely this wfs service from qgis desktop work fine: qgis desktop can connect remotely to the wfs service ( http:/myserver/cgi-bin/qgis_<u></u>mapserv.cgi?map=/paht/to/<u></u>mymap.qgs ) without problems and I can add/modify data in database, but there is my problem: Someone can connect to the wfs service (http:/myserver/cgi-bin/qgis_<u></u>mapserv.cgi?map=/paht/to/<u></u>mymap.qgs has not restriction) and acces to the data without any identification.<br>
<br>
In qgis projects properties i can't find authentication propierties for WMS/WFS services and the question is<br>
<br>
Can I put some authentication system in qgis server for wfs service?<br>
<br>
If yes, how to?<br>
<br>
<br></div></div>
______________________________<u></u>_________________<br>
Qgis-user mailing list<br>
<a href="mailto:Qgis-user@lists.osgeo.org" target="_blank">Qgis-user@lists.osgeo.org</a><br>
<a href="http://lists.osgeo.org/mailman/listinfo/qgis-user" target="_blank">http://lists.osgeo.org/<u></u>mailman/listinfo/qgis-user</a><br>
</blockquote>
<br>
______________________________<u></u>_________________<br>
Qgis-user mailing list<br>
<a href="mailto:Qgis-user@lists.osgeo.org" target="_blank">Qgis-user@lists.osgeo.org</a><br>
<a href="http://lists.osgeo.org/mailman/listinfo/qgis-user" target="_blank">http://lists.osgeo.org/<u></u>mailman/listinfo/qgis-user</a><br>
</blockquote></div><br></div>