Hi, We copied the idea of 52north and deegree OWS proxy and made a small own client that our users download from our web page. It asks the username/password/one-time keycode combination and checks then the rights from our central user rights management service. After that it creates a fake WFS server (it could be WMS as well) on http://localhost:1555 . Then you can continue with whatever WFS client. The server side component is filtering and modifying the getCapabilites document that the client receives as well as getFeature requests from the client before they are sent to the real WFS server that is in our DMZ. None of our user have asked so far any questions about how to use the security proxy so I believe it is easy for them. For us it might have been a better idea to develop further some existing solution instead of making an own, it was more complicated than it seemed first. But at least the proxy is now fluently the same user rights system that all of our other services.
-Jukka Rahkonen- -----Original Message----- From: UMN MapServer Users List on behalf of Flavio Hendry Sent: Sat 1.9.2007 9:26 To: [email protected] Subject: Re: [UMN_MAPSERVER-USERS] adding support for user authentication within Mapserver for GetCapablities and GetMap Ed, John & Co. might have a look at: http://52north.org/index.php?option=com_content&task=blogcategory&id=36&Itemid=120 Mit freundlichem Gruss / Best Regards Flavio Hendry ---------------------------------------------------------------- TYDAC Web-Site: http://www.tydac.ch TYDAC MapServer: http://www.mapserver.ch ---------------------------------------------------------------- ############ Mit freundlichen Gruessen / Kind Regards ############ mailto:[EMAIL PROTECTED] ############ TYDAC AG - http://www.tydac.ch #### #### Geographic Information Solutions #### #### Luternauweg 12 -- CH-3006 Bern ############ Tel +41 (0)31 368 0180 - Fax +41 (0)31 368 1860 ----------------------------------------------------------------
