Skip to content

Commit

Permalink
[Backport 2.20.6][Fixes #152] REST API security improvements (#156)
Browse files Browse the repository at this point in the history 
* [Backport 2.20.6][Fixes #152] REST API security improvements

* sldservice caps endpoint for anonymous users

---------

Co-authored-by: Giovanni Allegri <giohappy@gmail.com>
  • Loading branch information
@afabiani @giohappy
afabiani and giohappy committed Mar 22, 2023
1 parent 07ec127 commit 9e0ca3d
Showing 1 changed file with 11 additions and 10 deletions.
21 changes: 11 additions & 10 deletions geoserver/data/geonode_v2206/security/rest.properties
View file
Original file line number Diff line number Diff line change
Expand Up @@ -13,17 +13,18 @@
#/rest/workspaces/topp/**;GET=ADMIN
#/**;POST,DELETE,PUT=ADMIN
#
/rest/security/**;GET,POST,DELETE,PUT=ROLE_ADMINISTRATOR
/rest/monitor/**;GET=ROLE_ADMINISTRATOR

/rest/br/**;GET,POST,DELETE,PUT=IS_AUTHENTICATED_FULLY
/rest/geofence/**;GET,POST,DELETE,PUT=ROLE_ADMINISTRATOR
/rest/resource/**;GET,POST,DELETE,PUT=ROLE_ADMINISTRATOR

/rest/imports/**;GET,POST,DELETE,PUT=IS_AUTHENTICATED_FULLY
/rest/br/**;GET,POST,DELETE,PUT=IS_AUTHENTICATED_FULLY

/rest/process/batchdownload/download/**;GET=IS_AUTHENTICATED_ANONYMOUSLY
/rest/layers/**;GET,POST,DELETE,PUT=IS_AUTHENTICATED_FULLY
/rest/printing/**;GET,POST=IS_AUTHENTICATED_ANONYMOUSLY
/rest/sldservice/capabilities.json;GET=IS_AUTHENTICATED_ANONYMOUSLY
/rest/sldservice/**;GET=IS_AUTHENTICATED_FULLY
/rest/styles/**;GET,POST,DELETE,PUT=IS_AUTHENTICATED_FULLY
/rest/styles.xml;GET=IS_AUTHENTICATED_FULLY
/rest/workspaces/**;GET,POST,DELETE,PUT=IS_AUTHENTICATED_FULLY
/rest/workspaces.xml;GET=IS_AUTHENTICATED_FULLY

/gwc/rest/layers/**;GET=IS_AUTHENTICATED_FULLY

/**;GET=IS_AUTHENTICATED_ANONYMOUSLY
/**;POST,DELETE,PUT=IS_AUTHENTICATED_FULLY
/**;GET,POST,DELETE,PUT=ROLE_ADMINISTRATOR

0 comments on commit 9e0ca3d

Please sign in to comment.