Skip to content

Making OAuth2GeoStoreAuthenticationFilter resilient to possible group name duplication#444

Merged
offtherailz merged 1 commit intomasterfrom
oauth2_sanitize_groups
Jul 15, 2025
Merged

Making OAuth2GeoStoreAuthenticationFilter resilient to possible group name duplication#444
offtherailz merged 1 commit intomasterfrom
oauth2_sanitize_groups

Conversation

@afabiani
Copy link
Copy Markdown
Member

@afabiani afabiani commented Jul 11, 2025

This small patch ensure the OAuth2 service sanitize the user group names avoiding a DB constraint error.

@afabiani afabiani requested a review from tdipisa July 11, 2025 09:45
@afabiani afabiani self-assigned this Jul 11, 2025
@tdipisa tdipisa requested review from offtherailz and removed request for tdipisa July 11, 2025 10:10
@tdipisa tdipisa added this to the 2025.01.01 milestone Jul 11, 2025
@offtherailz offtherailz merged commit 8c4dc68 into master Jul 15, 2025
2 checks passed
@afabiani afabiani deleted the oauth2_sanitize_groups branch July 15, 2025 14:07
@afabiani afabiani mentioned this pull request Aug 11, 2025
Merged
afabiani added a commit that referenced this pull request Aug 11, 2025
@afabiani
Making OAuth2GeoStoreAuthenticationFilter resilient to possible group…
d299f98 
… name duplication (#444)
afabiani added a commit that referenced this pull request Aug 11, 2025
@afabiani
Making OAuth2GeoStoreAuthenticationFilter resilient to possible group…
70761c1 
… name duplication (#444)

(cherry picked from commit 8c4dc68)
tdipisa pushed a commit that referenced this pull request Aug 11, 2025
@axl8713 @afabiani
Grant access to MapStore resources by IP (#447)
20c3ed6 
* [WIP] Grant access to MapStore resources by IP

* Added resource permission check based on IP addresses.

Revised resource permission check based on IP addresses.

* Added validation to user IP range input.

* Refactoring and cleanup.

* Implemented extJS resource fetch with IP restrictions.

* Moved test classes in the right package.

* Added tests for user IP extraction.

* Added database migration scripts for H2 and OracleDB.

* Cleanup.

* Removed unnecessary schema from migration script.

* Aligned IPRange class to the other project models .

* Reverted changes to UserGroup.

* Making OAuth2GeoStoreAuthenticationFilter resilient to possible group name duplication (#444)

* Making OAuth2GeoStoreAuthenticationFilter resilient to possible group name duplication (#444)

(cherry picked from commit 8c4dc68)

* Added service-side CIDR validation.

---------

Co-authored-by: afabiani <alessio.fabiani@geosolutionsgroup.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@offtherailz offtherailz offtherailz approved these changes

Assignees

@afabiani afabiani

Labels

None yet

Projects

None yet

Milestone

2025.01.01

Development

Successfully merging this pull request may close these issues.

4 participants

@afabiani @offtherailz @tdipisa @ElenaGallo