[Geoserver-devel] [JIRA] (GEOS-11036) The OAuth2*/OIDC security filters do not work as expected anymore after the spring-security-core depencency update to 5.7.8
Alessio Fabiani ( https://osgeo-org.atlassian.net/secure/ViewProfile.jspa?accountId=557058%3A0027cfac-890c-48e1-8af0-974f12f7b9dc ) *created* an issue GeoServer ( https://osgeo-org.atlassian.net/browse/GEOS?atlOrigin=eyJpIjoiOTlkN2MyMGM2MmE3NGZjNTgwZDMxZWRiYmM0MWYwMjgiLCJwIjoiaiJ9 ) / Bug ( https://osgeo-org.atlassian.net/browse/GEOS-11036?atlOrigin=eyJpIjoiOTlkN2MyMGM2MmE3NGZjNTgwZDMxZWRiYmM0MWYwMjgiLCJwIjoiaiJ9 ) GEOS-11036 ( https://osgeo-org.atlassian.net/browse/GEOS-11036?atlOrigin=eyJpIjoiOTlkN2MyMGM2MmE3NGZjNTgwZDMxZWRiYmM0MWYwMjgiLCJwIjoiaiJ9 ) The OAuth2*/OIDC security filters do not work as expected anymore after the spring-security-core depencency update to 5.7.8 ( https://osgeo-org.atlassian.net/browse/GEOS-11036?atlOrigin=eyJpIjoiOTlkN2MyMGM2MmE3NGZjNTgwZDMxZWRiYmM0MWYwMjgiLCJwIjoiaiJ9 ) Issue Type: Bug Assignee: Unassigned Created: 19/Jun/23 2:56 PM Priority: Medium Reporter: Alessio Fabiani ( https://osgeo-org.atlassian.net/secure/ViewProfile.jspa?accountId=557058%3A0027cfac-890c-48e1-8af0-974f12f7b9dc ) Recenty the sprinc-security-core dependency on GeoServer has been upgraded due to a security fix as per https://github.com/geoserver/geoserver/pull/6830 The upgrade introduced some issues into the Oauth2 security filter logic mainly due to the anonymous session token, which now is correctly valorized. The filter assumes that an anoymous user is always associated to a null security context authority, which is wrong. Now an anonymous user will be associated to an AnonymousAuthortyToken, which will be also recognized by the spring-oauth2 plugin in order to perform additional checks on the oauth2 resources. A simple change into the logic checks can allow us to easily fix this behavior and benefit of the new spring security core improvement. ( https://osgeo-org.atlassian.net/browse/GEOS-11036#add-comment?atlOrigin=eyJpIjoiOTlkN2MyMGM2MmE3NGZjNTgwZDMxZWRiYmM0MWYwMjgiLCJwIjoiaiJ9 ) Add Comment ( https://osgeo-org.atlassian.net/browse/GEOS-11036#add-comment?atlOrigin=eyJpIjoiOTlkN2MyMGM2MmE3NGZjNTgwZDMxZWRiYmM0MWYwMjgiLCJwIjoiaiJ9 ) Get Jira notifications on your phone! Download the Jira Cloud app for Android ( https://play.google.com/store/apps/details?id=com.atlassian.android.jira.core=utm_source%3DNotificationLink%26utm_medium%3DEmail ) or iOS ( https://itunes.apple.com/app/apple-store/id1006972087?pt=696495=EmailNotificationLink=8 ) This message was sent by Atlassian Jira (v1001.0.0-SNAPSHOT#100227- sha1:8ffa416 )___ Geoserver-devel mailing list Geoserver-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/geoserver-devel
[Geoserver-devel] [JIRA] (GEOS-10985) B/R of Geoserver catalog is broken with Geoserver 2.23.0
Alessio Fabiani ( https://osgeo-org.atlassian.net/secure/ViewProfile.jspa?accountId=557058%3A0027cfac-890c-48e1-8af0-974f12f7b9dc ) *created* an issue GeoServer ( https://osgeo-org.atlassian.net/browse/GEOS?atlOrigin=eyJpIjoiZmViM2U1YjhkMjUwNDVmZmExZTE2YTA0ZGEyZDViNGUiLCJwIjoiaiJ9 ) / Bug ( https://osgeo-org.atlassian.net/browse/GEOS-10985?atlOrigin=eyJpIjoiZmViM2U1YjhkMjUwNDVmZmExZTE2YTA0ZGEyZDViNGUiLCJwIjoiaiJ9 ) GEOS-10985 ( https://osgeo-org.atlassian.net/browse/GEOS-10985?atlOrigin=eyJpIjoiZmViM2U1YjhkMjUwNDVmZmExZTE2YTA0ZGEyZDViNGUiLCJwIjoiaiJ9 ) B/R of Geoserver catalog is broken with Geoserver 2.23.0 ( https://osgeo-org.atlassian.net/browse/GEOS-10985?atlOrigin=eyJpIjoiZmViM2U1YjhkMjUwNDVmZmExZTE2YTA0ZGEyZDViNGUiLCJwIjoiaiJ9 ) Issue Type: Bug Affects Versions: 2.23.0 Assignee: Alessio Fabiani ( https://osgeo-org.atlassian.net/secure/ViewProfile.jspa?accountId=557058%3A0027cfac-890c-48e1-8af0-974f12f7b9dc ) Components: Backup and Restore Created: 22/May/23 9:57 AM Environment: I could reproduce the error with a factory Geoserver build with Maven 3.8.1: -T 4 clean install dependency:tree -Dmaven.wagon.http.pool=false -Dmaven.wagon.http.retryHandler.count=100 -Djava.awt.headless=true -Dtest.maxHeapSize=256M -DskipTests -U -PsldService,printing,monitor,control-flow,wps,kmlppio,wps-download,excel,querylayer,gdal,authkey,css,ysld,importer,wmts-multi-dimensional,backup-restore,oauth2-geonode,oauth2-openid-connect,geofence-server,geofence-wps * Backup of vanilla data dir * Restore of vanilla data dir * Exception javax.xml.transform.TransformerException: Can't transform a Source of type javax.xml.transform.stax.StAXSource Priority: High Reporter: Alessio Fabiani ( https://osgeo-org.atlassian.net/secure/ViewProfile.jspa?accountId=557058%3A0027cfac-890c-48e1-8af0-974f12f7b9dc ) ( https://osgeo-org.atlassian.net/browse/GEOS-10985#add-comment?atlOrigin=eyJpIjoiZmViM2U1YjhkMjUwNDVmZmExZTE2YTA0ZGEyZDViNGUiLCJwIjoiaiJ9 ) Add Comment ( https://osgeo-org.atlassian.net/browse/GEOS-10985#add-comment?atlOrigin=eyJpIjoiZmViM2U1YjhkMjUwNDVmZmExZTE2YTA0ZGEyZDViNGUiLCJwIjoiaiJ9 ) Get Jira notifications on your phone! Download the Jira Cloud app for Android ( https://play.google.com/store/apps/details?id=com.atlassian.android.jira.core=utm_source%3DNotificationLink%26utm_medium%3DEmail ) or iOS ( https://itunes.apple.com/app/apple-store/id1006972087?pt=696495=EmailNotificationLink=8 ) This message was sent by Atlassian Jira (v1001.0.0-SNAPSHOT#100225- sha1:bbd69a1 )___ Geoserver-devel mailing list Geoserver-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/geoserver-devel
[Geoserver-devel] [JIRA] (GEOS-10877) [B/R Community Module] Restore Tasklet always fails on resources validation
Alessio Fabiani ( https://osgeo-org.atlassian.net/secure/ViewProfile.jspa?accountId=557058%3A0027cfac-890c-48e1-8af0-974f12f7b9dc ) *created* an issue GeoServer ( https://osgeo-org.atlassian.net/browse/GEOS?atlOrigin=eyJpIjoiM2I4OTgwNzZjYjkwNDE1NWI5ZmI1YzU4OWQyMjkzODkiLCJwIjoiaiJ9 ) / Bug ( https://osgeo-org.atlassian.net/browse/GEOS-10877?atlOrigin=eyJpIjoiM2I4OTgwNzZjYjkwNDE1NWI5ZmI1YzU4OWQyMjkzODkiLCJwIjoiaiJ9 ) GEOS-10877 ( https://osgeo-org.atlassian.net/browse/GEOS-10877?atlOrigin=eyJpIjoiM2I4OTgwNzZjYjkwNDE1NWI5ZmI1YzU4OWQyMjkzODkiLCJwIjoiaiJ9 ) [B/R Community Module] Restore Tasklet always fails on resources validation ( https://osgeo-org.atlassian.net/browse/GEOS-10877?atlOrigin=eyJpIjoiM2I4OTgwNzZjYjkwNDE1NWI5ZmI1YzU4OWQyMjkzODkiLCJwIjoiaiJ9 ) Issue Type: Bug Assignee: Alessio Fabiani ( https://osgeo-org.atlassian.net/secure/ViewProfile.jspa?accountId=557058%3A0027cfac-890c-48e1-8af0-974f12f7b9dc ) Components: Backup and Restore Created: 02/Mar/23 4:27 PM Priority: Medium Reporter: Alessio Fabiani ( https://osgeo-org.atlassian.net/secure/ViewProfile.jspa?accountId=557058%3A0027cfac-890c-48e1-8af0-974f12f7b9dc ) The restore tasklet actually created an “in-memory” copy of the target catalog by using resouce names without an id in order to avoid any conflict with the existing ones. Before restoring them, it also invokes the catalog.validate method. The behavior of the latter has changed in the recent version of GeoServer, requiring an id to be provided to the resource. Therefore the validation always fails and the restore process for that resource does not fully complete, leaving it in an uncosistent state. ( https://osgeo-org.atlassian.net/browse/GEOS-10877#add-comment?atlOrigin=eyJpIjoiM2I4OTgwNzZjYjkwNDE1NWI5ZmI1YzU4OWQyMjkzODkiLCJwIjoiaiJ9 ) Add Comment ( https://osgeo-org.atlassian.net/browse/GEOS-10877#add-comment?atlOrigin=eyJpIjoiM2I4OTgwNzZjYjkwNDE1NWI5ZmI1YzU4OWQyMjkzODkiLCJwIjoiaiJ9 ) Get Jira notifications on your phone! Download the Jira Cloud app for Android ( https://play.google.com/store/apps/details?id=com.atlassian.android.jira.core=utm_source%3DNotificationLink%26utm_medium%3DEmail ) or iOS ( https://itunes.apple.com/app/apple-store/id1006972087?pt=696495=EmailNotificationLink=8 ) This message was sent by Atlassian Jira (v1001.0.0-SNAPSHOT#100217- sha1:65be9f2 )___ Geoserver-devel mailing list Geoserver-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/geoserver-devel
[Geoserver-devel] [JIRA] (GEOS-10869) Jayway JSON Path libraries not included anymore on GeoServer packages
Alessio Fabiani ( https://osgeo-org.atlassian.net/secure/ViewProfile.jspa?accountId=557058%3A0027cfac-890c-48e1-8af0-974f12f7b9dc ) *created* an issue GeoServer ( https://osgeo-org.atlassian.net/browse/GEOS?atlOrigin=eyJpIjoiMjJkMGEyMTMxZmVhNDFmZmI0M2Q3NWMzYmNmNjliYWYiLCJwIjoiaiJ9 ) / Bug ( https://osgeo-org.atlassian.net/browse/GEOS-10869?atlOrigin=eyJpIjoiMjJkMGEyMTMxZmVhNDFmZmI0M2Q3NWMzYmNmNjliYWYiLCJwIjoiaiJ9 ) GEOS-10869 ( https://osgeo-org.atlassian.net/browse/GEOS-10869?atlOrigin=eyJpIjoiMjJkMGEyMTMxZmVhNDFmZmI0M2Q3NWMzYmNmNjliYWYiLCJwIjoiaiJ9 ) Jayway JSON Path libraries not included anymore on GeoServer packages ( https://osgeo-org.atlassian.net/browse/GEOS-10869?atlOrigin=eyJpIjoiMjJkMGEyMTMxZmVhNDFmZmI0M2Q3NWMzYmNmNjliYWYiLCJwIjoiaiJ9 ) Issue Type: Bug Assignee: Alessio Fabiani ( https://osgeo-org.atlassian.net/secure/ViewProfile.jspa?accountId=557058%3A0027cfac-890c-48e1-8af0-974f12f7b9dc ) Created: 23/Feb/23 9:49 AM Priority: Medium Reporter: Alessio Fabiani ( https://osgeo-org.atlassian.net/secure/ViewProfile.jspa?accountId=557058%3A0027cfac-890c-48e1-8af0-974f12f7b9dc ) Since the jayway.json-path dependency have been marked as “test” only, it won’t be included anymore on GeoServer packages thus causing the following modules to throw a missing class exception: * authkey (which is an official extension) * backup an restore (which is a community module) * security/oauth2 and keycloak (which are community modules) ( https://osgeo-org.atlassian.net/browse/GEOS-10869#add-comment?atlOrigin=eyJpIjoiMjJkMGEyMTMxZmVhNDFmZmI0M2Q3NWMzYmNmNjliYWYiLCJwIjoiaiJ9 ) Add Comment ( https://osgeo-org.atlassian.net/browse/GEOS-10869#add-comment?atlOrigin=eyJpIjoiMjJkMGEyMTMxZmVhNDFmZmI0M2Q3NWMzYmNmNjliYWYiLCJwIjoiaiJ9 ) Get Jira notifications on your phone! Download the Jira Cloud app for Android ( https://play.google.com/store/apps/details?id=com.atlassian.android.jira.core=utm_source%3DNotificationLink%26utm_medium%3DEmail ) or iOS ( https://itunes.apple.com/app/apple-store/id1006972087?pt=696495=EmailNotificationLink=8 ) This message was sent by Atlassian Jira (v1001.0.0-SNAPSHOT#100217- sha1:7bcbf31 )___ Geoserver-devel mailing list Geoserver-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/geoserver-devel
[Geoserver-devel] [JIRA] (GEOS-10845) Update the "IntelliJ QuickStart" section on Dev documentation
Alessio Fabiani ( https://osgeo-org.atlassian.net/secure/ViewProfile.jspa?accountId=557058%3A0027cfac-890c-48e1-8af0-974f12f7b9dc ) *created* an issue GeoServer ( https://osgeo-org.atlassian.net/browse/GEOS?atlOrigin=eyJpIjoiZjYzZTM3Y2U4NjEzNGE5ZGIyMjkwOTg3ZDkxNDg0MjIiLCJwIjoiaiJ9 ) / Improvement ( https://osgeo-org.atlassian.net/browse/GEOS-10845?atlOrigin=eyJpIjoiZjYzZTM3Y2U4NjEzNGE5ZGIyMjkwOTg3ZDkxNDg0MjIiLCJwIjoiaiJ9 ) GEOS-10845 ( https://osgeo-org.atlassian.net/browse/GEOS-10845?atlOrigin=eyJpIjoiZjYzZTM3Y2U4NjEzNGE5ZGIyMjkwOTg3ZDkxNDg0MjIiLCJwIjoiaiJ9 ) Update the "IntelliJ QuickStart" section on Dev documentation ( https://osgeo-org.atlassian.net/browse/GEOS-10845?atlOrigin=eyJpIjoiZjYzZTM3Y2U4NjEzNGE5ZGIyMjkwOTg3ZDkxNDg0MjIiLCJwIjoiaiJ9 ) Issue Type: Improvement Assignee: Alessio Fabiani ( https://osgeo-org.atlassian.net/secure/ViewProfile.jspa?accountId=557058%3A0027cfac-890c-48e1-8af0-974f12f7b9dc ) Created: 31/Jan/23 2:26 PM Priority: Medium Reporter: Alessio Fabiani ( https://osgeo-org.atlassian.net/secure/ViewProfile.jspa?accountId=557058%3A0027cfac-890c-48e1-8af0-974f12f7b9dc ) The current section describing how to setup and run GeoServer source code with IntelliJ IDE is a bit outdated. The new version of IntelliJ not only has a slightly different interface but it is also a bit easier to use. As a developer I would love having an updated version of the documentation. ( https://osgeo-org.atlassian.net/browse/GEOS-10845#add-comment?atlOrigin=eyJpIjoiZjYzZTM3Y2U4NjEzNGE5ZGIyMjkwOTg3ZDkxNDg0MjIiLCJwIjoiaiJ9 ) Add Comment ( https://osgeo-org.atlassian.net/browse/GEOS-10845#add-comment?atlOrigin=eyJpIjoiZjYzZTM3Y2U4NjEzNGE5ZGIyMjkwOTg3ZDkxNDg0MjIiLCJwIjoiaiJ9 ) Get Jira notifications on your phone! Download the Jira Cloud app for Android ( https://play.google.com/store/apps/details?id=com.atlassian.android.jira.core=utm_source%3DNotificationLink%26utm_medium%3DEmail ) or iOS ( https://itunes.apple.com/app/apple-store/id1006972087?pt=696495=EmailNotificationLink=8 ) This message was sent by Atlassian Jira (v1001.0.0-SNAPSHOT#100214- sha1:9509471 )___ Geoserver-devel mailing list Geoserver-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/geoserver-devel
[Geoserver-devel] [JIRA] (GEOS-10830) Config Parametrization does not work anymore with Coverage Stores
Alessio Fabiani ( https://osgeo-org.atlassian.net/secure/ViewProfile.jspa?accountId=557058%3A0027cfac-890c-48e1-8af0-974f12f7b9dc ) *created* an issue GeoServer ( https://osgeo-org.atlassian.net/browse/GEOS?atlOrigin=eyJpIjoiMzc0Njc2MjZiMzVlNGEyOTljNjA2Yzc5ZTM1MjdkZGUiLCJwIjoiaiJ9 ) / Bug ( https://osgeo-org.atlassian.net/browse/GEOS-10830?atlOrigin=eyJpIjoiMzc0Njc2MjZiMzVlNGEyOTljNjA2Yzc5ZTM1MjdkZGUiLCJwIjoiaiJ9 ) GEOS-10830 ( https://osgeo-org.atlassian.net/browse/GEOS-10830?atlOrigin=eyJpIjoiMzc0Njc2MjZiMzVlNGEyOTljNjA2Yzc5ZTM1MjdkZGUiLCJwIjoiaiJ9 ) Config Parametrization does not work anymore with Coverage Stores ( https://osgeo-org.atlassian.net/browse/GEOS-10830?atlOrigin=eyJpIjoiMzc0Njc2MjZiMzVlNGEyOTljNjA2Yzc5ZTM1MjdkZGUiLCJwIjoiaiJ9 ) Issue Type: Bug Assignee: Unassigned Components: Configuration Created: 19/Jan/23 11:26 AM Priority: Medium Reporter: Alessio Fabiani ( https://osgeo-org.atlassian.net/secure/ViewProfile.jspa?accountId=557058%3A0027cfac-890c-48e1-8af0-974f12f7b9dc ) By enabling the config parametrization as describer in the documentation here https://docs.geoserver.org/stable/en/user/datadirectory/configtemplate.html ( https://docs.geoserver.org/stable/en/user/datadirectory/configtemplate.html ) and trying to configure a Coverage Store (any type) by using a parameter as URL , always results into an error from the GeoServer UI stating that “the file cannot be opened” Reproduce the error is quite simple: * Enable the ENV_PARAMETRIZATION * Create a placeholder on the properties file * Try to create as an instance a GeoTIFF Coverage Store by specifying as URL the parameter just created ( https://osgeo-org.atlassian.net/browse/GEOS-10830#add-comment?atlOrigin=eyJpIjoiMzc0Njc2MjZiMzVlNGEyOTljNjA2Yzc5ZTM1MjdkZGUiLCJwIjoiaiJ9 ) Add Comment ( https://osgeo-org.atlassian.net/browse/GEOS-10830#add-comment?atlOrigin=eyJpIjoiMzc0Njc2MjZiMzVlNGEyOTljNjA2Yzc5ZTM1MjdkZGUiLCJwIjoiaiJ9 ) Get Jira notifications on your phone! Download the Jira Cloud app for Android ( https://play.google.com/store/apps/details?id=com.atlassian.android.jira.core=utm_source%3DNotificationLink%26utm_medium%3DEmail ) or iOS ( https://itunes.apple.com/app/apple-store/id1006972087?pt=696495=EmailNotificationLink=8 ) This message was sent by Atlassian Jira (v1001.0.0-SNAPSHOT#100214- sha1:5a2a1e8 )___ Geoserver-devel mailing list Geoserver-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/geoserver-devel