As with any other production system, we must consider how to secure our instances of GeoServer against malicious attacks. Depending on how we anticipate our servers being used, we might also need to implement a security model to prevent unauthorized access to certain datasets or layers. GeoServer has a comprehensive security model enabling us to secure at both the layer and service levels.
In this chapter, we will take a look at how we can implement different strategies to secure GeoServer. The following topics will be covered:
Authorization and authentication
Configuring GeoServer to make use of an LDAP server, such as Active Directory, for user authentication
Configuring GeoServer to make use of the Digest user authentication
Configuring GeoServer to make use of the HTTP Header proxy authentication
Understanding user authorization through roles
GeoServer offers a range of approaches for user authentication, including standard HTTP Basic authentication...