We proxy everything through a Django app (codename GoldenEye, which also
does somewhat intelligent caching), though its probably 3-6 months from
becoming public (internally developed opensource app for the government). We
needed to have role based access control for vehicle tracking and sensitive
Hi,
I have set up a geostack consisting of ubuntu 10.04, Tomcat6, Geoserver 2.1,
Posgresql/Postgis, which serves data to Openlayer/GeoExt thin clients.
I am now wondering about data security and data ownership. If I am the
administrator who is deploying webapps for different departments, or
Since I am currently working on the security subsystem I want to give
you some hints.
1) Run tomcat under the user tomcat6, never use root for running
services having port numbers 1024
2) create one special postigs user having full access to your tables.
Use this user for geoserver to
