[Geoserver-devel] [JIRA] (GEOS-9436) Monitor extension : Ignoring Post processors through configuration

2019-12-18 Thread Imran Rajjad (JIRA) 
Title: Message Title


 
 
 
 

 
 
 

 
   
  Imran Rajjad  created an issue  
 

  
 
 
 
 

 
 
  
 
 
 
 

 
 GeoServer /  GEOS-9436  
 
 
  Monitor extension : Ignoring Post processors through configuration   
 

  
 
 
 
 

 
Issue Type: 
  Improvement  
 
 
Affects Versions: 
 2.16.2, 2.17-RC  
 
 
Assignee: 
  Imran Rajjad   
 
 
Components: 
 Monitoring  
 
 
Created: 
 19/Dec/19 7:34 AM  
 
 
Priority: 
  Medium  
 
 
Reporter: 
  Imran Rajjad   
 

  
 
 
 
 

 
 A new option inside the `monitor.properties` file to ignore post processors inside monitor extension. The ignoring of post processors can be done by a new option ignorePostProcessors with valid comma separated values (valid values = reverseDNS,geoIp,layerNameNormalizer)  
 

  
 
 
  
 

 
 
 

 
 
 Add Comment

Re: [Geoserver-devel] geoserver release 2.15.4 reminder

2019-12-18 Thread Jody Garnett 
Excellent, I will process with GWC today.

On Wed, Dec 18, 2019 at 11:27 PM Gabriel Roldan 
wrote:

> Btw, after the geotools hotfix for GEOT-6380, the revision numbers are:
>
>
>- GeoServer (rev0b37fcc2b4f82f0d96bf3b04db284b73c8a85c14)
>- GeoTools  (rev ddef3caa29b06e3fd2d860a04b8133d5840d0292)
>- GeoWebCache (rev 6530ecc57f861d952383917ce86fca7021402e22)
>
>
>
> On Wed, 18 Dec 2019 at 08:27, Jody Garnett  wrote:
>
>> Checking nightly build for the following revision numbers:
>>
>>
>>- GeoServer (rev0b37fcc2b4f82f0d96bf3b04db284b73c8a85c14)
>>- GeoTools  (rev 357aa214a7279a21b937e3071106df26a2d8c36f)
>>- GeoWebCache (rev 6530ecc57f861d952383917ce86fca7021402e22)
>>
>> Aside: The About GeoServer page lists GWC revision twice for some reason.
>> --
>> Jody Garnett
>>
>>
>> On Tue, 17 Dec 2019 at 17:37, Jody Garnett 
>> wrote:
>>
>>> Release is scheduled for tomorrow (mostly likely over several days).
>>> Last call for bug fixes :)
>>> --
>>> Jody Garnett
>>>
>> ___
>
>
>> Geoserver-devel mailing list
>> Geoserver-devel@lists.sourceforge.net
>> https://lists.sourceforge.net/lists/listinfo/geoserver-devel
>>
>
>
> --
> Gabriel Roldán
>
-- 
--
Jody Garnett
___
Geoserver-devel mailing list
Geoserver-devel@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/geoserver-devel

Re: [Geoserver-devel] geoserver release 2.15.4 reminder

2019-12-18 Thread Gabriel Roldan 
Btw, after the geotools hotfix for GEOT-6380, the revision numbers are:


   - GeoServer (rev0b37fcc2b4f82f0d96bf3b04db284b73c8a85c14)
   - GeoTools  (rev ddef3caa29b06e3fd2d860a04b8133d5840d0292)
   - GeoWebCache (rev 6530ecc57f861d952383917ce86fca7021402e22)



On Wed, 18 Dec 2019 at 08:27, Jody Garnett  wrote:

> Checking nightly build for the following revision numbers:
>
>
>- GeoServer (rev0b37fcc2b4f82f0d96bf3b04db284b73c8a85c14)
>- GeoTools  (rev 357aa214a7279a21b937e3071106df26a2d8c36f)
>- GeoWebCache (rev 6530ecc57f861d952383917ce86fca7021402e22)
>
> Aside: The About GeoServer page lists GWC revision twice for some reason.
> --
> Jody Garnett
>
>
> On Tue, 17 Dec 2019 at 17:37, Jody Garnett  wrote:
>
>> Release is scheduled for tomorrow (mostly likely over several days). Last
>> call for bug fixes :)
>> --
>> Jody Garnett
>>
> ___
> Geoserver-devel mailing list
> Geoserver-devel@lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/geoserver-devel
>


-- 
Gabriel Roldán
___
Geoserver-devel mailing list
Geoserver-devel@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/geoserver-devel

Re: [Geoserver-devel] geoserver release 2.15.4 reminder

2019-12-18 Thread Jody Garnett 
Checking nightly build for the following revision numbers:


   - GeoServer (rev0b37fcc2b4f82f0d96bf3b04db284b73c8a85c14)
   - GeoTools  (rev 357aa214a7279a21b937e3071106df26a2d8c36f)
   - GeoWebCache (rev 6530ecc57f861d952383917ce86fca7021402e22)

Aside: The About GeoServer page lists GWC revision twice for some reason.
--
Jody Garnett


On Tue, 17 Dec 2019 at 17:37, Jody Garnett  wrote:

> Release is scheduled for tomorrow (mostly likely over several days). Last
> call for bug fixes :)
> --
> Jody Garnett
>
___
Geoserver-devel mailing list
Geoserver-devel@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/geoserver-devel

[Geoserver-devel] [JIRA] (GEOS-9435) [community - oauth2] Include basic auth header for Oauth2 token instrospection requests

2019-12-18 Thread Alessio Fabiani (JIRA) 
Title: Message Title


 
 
 
 

 
 
 

 
   
  Alessio Fabiani  created an issue  
 

  
 
 
 
 

 
 
  
 
 
 
 

 
 GeoServer /  GEOS-9435  
 
 
  [community - oauth2] Include basic auth header for Oauth2 token instrospection requests   
 

  
 
 
 
 

 
Issue Type: 
  Improvement  
 
 
Assignee: 
  Alessio Fabiani   
 
 
Components: 
 Community modules, OAuth2, Security  
 
 
Created: 
 18/Dec/19 12:00 PM  
 
 
Priority: 
  Medium  
 
 
Reporter: 
  Alessio Fabiani   
 

  
 
 
 
 

 
 Currently no authentication is provided when oauth2 provider sends requests to introspect token (for example when calling tokeninfo/ endpoint). As suggested buy common best practices for Oauth2 an authentication is highly encuraged to reduce the exposure to attacks exposure and prevent user private data leakage. The proposal is to add an auth header inside the requests with basic auth encoding of the client is and client secret: base64(client_id:client_secret) This solution will make ti compatible with several oauths/oidc backends (like django-oidc-provider( which expects this header to allow the request.  
 

  
 
 
  
 

 
 
 

 
 
 Add Comment