We did not, I believe I missed the discussion where the feature was proposed. I like to be careful when setting up any avenue for external control of geoserver security.
I assume this is for controlling geoserver security via external environmental variables, say for docker image? While I could see it being useful to manage the credentials for one user (say admin or root). The docs modified during the PR are here on the password policy page <https://docs.geoserver.org/latest/en/user/security/passwd.html#parametrized-passwords>, however they contain example specific to the XML user/group service based on users.xml file. Can the approach be used for roles service also? Recommend: - move the example to the XML user/group service <https://docs.geoserver.org/latest/en/user/security/usergrouprole/usergroupservices.html#security-rolesystem-usergroupxml> if it is only applicable to this one approach? - link from Environment parametrization <https://docs.geoserver.org/stable/en/user/datadirectory/configtemplate.html> page you mentioned to the above heading as another example of Environment parametrization. -- Jody Garnett On Wed, 28 Sept 2022 at 03:58, Andrea Aime < andrea.a...@geosolutionsgroup.com> wrote: > On Tue, Sep 27, 2022 at 7:35 PM Andrea Aime < > andrea.a...@geosolutionsgroup.com> wrote: > >> Covered above? >> >> - >> >> I saw the user parameterized PR go through? Is that not risky … >> >> > I don't think we discussed this yesterday. Can you elaborate where the > risk is coming from? > Environment parametrization > <https://docs.geoserver.org/stable/en/user/datadirectory/configtemplate.html> > of the data directory allows to add placeholders in the configuration, and > expand the placeholders > based on values found in a property file.... were you thinking about user > provided variables, used in SLD via the env function, instead? > > Cheers > Andrea > > == > > GeoServer Professional Services from the experts! > > Visit http://bit.ly/gs-services-us for more information. > == > > Ing. Andrea Aime > @geowolf > Technical Lead > > GeoSolutions Group > phone: +39 0584 962313 > > fax: +39 0584 1660272 > > mob: +39 339 8844549 > > https://www.geosolutionsgroup.com/ > > http://twitter.com/geosolutions_it > > ------------------------------------------------------- > > Con riferimento alla normativa sul trattamento dei dati personali (Reg. UE > 2016/679 - Regolamento generale sulla protezione dei dati “GDPR”), si > precisa che ogni circostanza inerente alla presente email (il suo > contenuto, gli eventuali allegati, etc.) è un dato la cui conoscenza è > riservata al/i solo/i destinatario/i indicati dallo scrivente. Se il > messaggio Le è giunto per errore, è tenuta/o a cancellarlo, ogni altra > operazione è illecita. Le sarei comunque grato se potesse darmene notizia. > > This email is intended only for the person or entity to which it is > addressed and may contain information that is privileged, confidential or > otherwise protected from disclosure. We remind that - as provided by > European Regulation 2016/679 “GDPR” - copying, dissemination or use of this > e-mail or the information herein by anyone other than the intended > recipient is prohibited. If you have received this email by mistake, please > notify us immediately by telephone or e-mail > _______________________________________________ > Geoserver-devel mailing list > Geoserver-devel@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/geoserver-devel >
_______________________________________________ Geoserver-devel mailing list Geoserver-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/geoserver-devel
