[GeoNode-users] Security Integration Optimization section - GeoNode in Production
Simone Dalmasso
simone.dalmasso at gmail.com
Tue Jun 6 23:27:00 PDT 2017
Since the version 2.6 geoserver is using oauth2 i order to authenticate and
authorize users.
It is good for production too.
Il giorno mer 7 giu 2017 alle 06:56 Naresh N <naresh919 at gmail.com> ha
scritto:
> Dear Simone,
> Thanks for responding. That means in production environment there is no
> requirement of database level security of Geoserver? . If we are not
> configuring authorization of Geoserver with database level, will this
> create any possible attacks to Geoserver by user?
>
> Thanks&Regards,
> Naresh
>
> On Tue, Jun 6, 2017 at 5:21 PM, Simone Dalmasso <simone.dalmasso at gmail.com
> > wrote:
>
>> Hi, sorry, that is not needed anymore in GeoNode and we will update the
>> doc soon.
>>
>> Best
>>
>> 2017-06-06 13:49 GMT+02:00 Naresh N <naresh919 at gmail.com>:
>>
>>> Dear All,
>>> Please see the my post and Kindly help to resolve the issue
>>>
>>> On Mon, Jun 5, 2017 at 4:45 PM, Naresh N <naresh919 at gmail.com> wrote:
>>>
>>>> Dear All,
>>>>
>>>> *ISSUE-1*
>>>> I have deployed GeNode in RHEL 7.2 64 bit machine. Now I am
>>>> configuring for production environment by following the steps mentioned in
>>>> http://docs.geonode.org/en/master/tutorials/advanced/geonode_production/production.html
>>>> .
>>>> But not able to complete the *Security Integration Optimization
>>>> section* steps. The following is the issue
>>>>
>>>> *WEB-INF/classes/org/geonode/security/geonode_authorize_layer.sql*
>>>> not able to found in my system. And also not able to fine geoserver.xml
>>>>
>>>> Please help me to over come this issue.
>>>>
>>>>
>>>> *ISSUE-2 :*
>>>> To understand the Database security, I have deployed GeoNode 2.4 in
>>>> Windows and here i could able to find the file
>>>> *geonode_authorize_layer.sql. * But when I executed this file though
>>>> pgadmin-3(Geonode database) it showed following error
>>>>
>>>> ERROR: "$1" is declared CONSTANT
>>>> CONTEXT: compilation of PL/pgSQL function "geonode_authorize_layer"
>>>> near line 23
>>>> ( if (user_name IS NULL or user_name = '') then
>>>> user_name = 'AnonymousUser';
>>>> end if;)
>>>>
>>>> Then I have modified the code - one temp variable is declared in
>>>> Declare setion and the above code is modified like as follows
>>>> ( if (user_name IS NULL or user_name = '') then temp =
>>>> 'AnonymousUser'; else temp=user_nameend if;) and After that rest of the
>>>> section user_name is replaced with temp.
>>>>
>>>> Now modified updated psql command was successfully executed.
>>>>
>>>> After that not able to find geoserver.xml and created the new xml
>>>> with as follows and placed in following
>>>> location C:\GeoNode-2.4.x\apache-tomcat-7.0.65\conf\Catalina\localhost\geoserver.xml
>>>>
>>>> <Context path="/geoserver"
>>>> antiResourceLocking="false" >
>>>> <Parameter name="org.geonode.security.databaseSecurityClient.url"
>>>>
>>>> value="jdbc:postgresql://localhost:5454/geonode?user=geonode&password=geonode"/>
>>>> </Context>
>>>>
>>>> But now my *geoserver *is not working. Please kindly suggest to over
>>>> come this issue.
>>>>
>>>>
>>>> Thanks&Regards,
>>>> Naresh
>>>>
>>>>
>>>>
>>>>
>>>>
>>>>
>>>
>>> _______________________________________________
>>> geonode-users mailing list
>>> geonode-users at lists.osgeo.org
>>> https://lists.osgeo.org/mailman/listinfo/geonode-users
>>>
>>>
>>
>>
>> --
>> Simone
>>
>
> --
Simone
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.osgeo.org/pipermail/geonode-users/attachments/20170607/b73fdda7/attachment-0001.html>
More information about the geonode-users
mailing list