Hi! I have made an app that use WFS-T and leaflet to register and edit point data. I have trouble setting up data authorization to behave the way I expect. I am able to edit data with my admin user but not with my separate edit user. I am using Layer Level security.
I have made one transaction Role (no Parent role specified) and one user member of that Role. My data security setting are myWorkspace.transactionLayer.w that my transaction Role is selected I receive HTTP Status 403 when i try to make a transaction with the message "Cannot access AnotherLayer" with the current privileges. The layer the error message is refering to is in another workspace all together that has Access mode Read. My transaction user is not part of that workspace at all so I am very confused why i get a 403 for a layer I am not requesting. Any idea of what this is? I get the same error if I try to give ROLE_ANONYMOUS Write access to the layer, should not anyone trying to make a transaction request without login be able to do so with ROLE_ANONYMOUS eg. public user? Am I thinking wrong about data security or does anyone have an idea of what might be wrong? Best regards -- View this message in context: http://osgeo-org.1560.x6.nabble.com/Unexpected-Authorization-behavior-tp5296960.html Sent from the GeoServer - User mailing list archive at Nabble.com. ------------------------------------------------------------------------------ _______________________________________________ Geoserver-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/geoserver-users
