Developer’s Corner: Authenticating dummy clients in GeoServer
In this blog post we'll introduce a simple authentication method we developed for GeoServer that allows to deal with security unaware clients.GeoServer can be configured to force a user to authenticate, either directly when trying to access the capabilities document (challenge mode) or when trying to access a protected resource (mixed mode). GeoServer will send a "http basic authentication" challenge, that will force browsers to show up the "username/password" authentication dialog, and make other desktop application ask and send over the user credentials.There are surely more secure means to authenticate a user, yet basic http authentication is the minimum common...
More