Restricting security on layers breaks aggregate visitor optimizations in JDBC stores

Description

Normally processes such as PagedUnique and Aggregate run as optimized sql statements, but applying security restrictions on the layers makes them fall back on data loading and in memory aggregatation insetad.

This is due to DecoratingFeatureCollection not delegating down the visit method (which is the right decision) and subclasses not taking measures to check if the visitor can be passed down, or not.

https://github.com/geoserver/geoserver/blob/master/src/main/src/main/java/org/geoserver/security/decorators/SecuredSimpleFeatureCollection.java is one of those, but retyping (used in renames) and reprojecting/forcecrs collections are also causing the problem.

Environment

None

Activity

Andrea Aime
February 15, 2017 at 11:48 AM

Mass closing all resolved issues not modified in the last 4 weeks

Andrea Aime
April 14, 2016 at 1:45 PM
(edited)

Same underlying problem showing up in a different way in https://osgeo-org.atlassian.net/browse/GEOS-5977#icft=GEOS-5977

Fixed

Details

Assignee

Reporter

Fix versions

Components

Priority

Created April 14, 2016 at 1:44 PM
Updated February 15, 2017 at 11:48 AM
Resolved April 27, 2016 at 10:03 AM