As part of the dews project, we need to deliver access control for OGC Web Services. In particular, we’re planning on limiting access to resources delivered by geoserver. The current concept for dealing with this is displayed in some simple UML:
The bottom line is that a normal request will first involve a redirection to establish a security context, followed by a re-request using it, and then calling the application itself. More details are on the ndg trac site.
Access Control (from “Bryan’s Blog” on (on Tuesday 19 December, 2006))
I’ve said it before, and I’ll say it again. If you have high volume or high value real resources on the web, you need access control!…