This is a build of Geoserver that is based on the official Geoserver Docker repo. It provides the following additions:
- Running as a non-root user
- Builds for multiple architectures: linux/amd64 and linux/arm64/v8
- Includes the Cloud Optimized GeoTIFF (COG) + OpenID Connect plugin + WPS plugin
Use the following steps to configure OpenID Connect:
- Login with geoserver / admin
- Go to "Authentication"
- Add a new Authentication filter "oidc" of type OpenID Connect
- Enter the name "oidc"
- Use http://dex:6556/ as "Discovery document" and click "Discover"
- Uncheck "Force Access Token URI HTTPS Secured Protocol" and "Force User Authorization URI HTTPS Secured Protocol"
- Replace http://localhost:6556 with http://dex:6556 for the Access Token URI, Check Token Endpoint URL and JSON Web Key set URI
- Set "Logout URI" to http://localhost/geoserver/
- Set "Client ID" to geoserver
- Set "Client Secret" to somethingsecret
- Set "Response Mode" to query
- Check "Send Client Secret in Token Request"
- Set "Validation Method" to "Role service" and choose the role "Default"
- Click "Save"
- Add the oidc authentication filter to the web, rest and default request filters
- Click "Save" on the authentication page again