Hi all I'm using GeoServer v2.17.2 in a GeoNode installation. I'm using the internal Geofence plugin to manage access permissions to both data and admin.
I have multiple workspaces and have created Geofence admin rules to limit access to these. However, access type seems limited to either `USER` or `ADMIN`. What I really want is to be able to `DENY` access to a workspace based on the current user role. Is this possible? My concrete problem is that I don't want users with ROLE_A to be able to access a store that belongs to WORKSPACE_X. Therefore I would like to be able to set up a Geofence admin rule that would DENY access to WORKSPACE_X for users with ROLE_A. What is currently happening instead is that users with ROLE_A are able to access this store which belongs to WORKSPACE_X, even without any explcit Geofence rule being in place to allow this. This is surprising to me, since I've not set any Geofence admin rule for this. So I guess the default Geofence admin rule allows all roles access to all workspaces? -- ___________________________ ___ __ Ricardo Garcia Silva
_______________________________________________ Geoserver-users mailing list Please make sure you read the following two resources before posting to this list: - Earning your support instead of buying it, but Ian Turton: http://www.ianturton.com/talks/foss4g.html#/ - The GeoServer user list posting guidelines: http://geoserver.org/comm/userlist-guidelines.html If you want to request a feature or an improvement, also see this: https://github.com/geoserver/geoserver/wiki/Successfully-requesting-and-integrating-new-features-and-improvements-in-GeoServer Geoserver-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/geoserver-users