GeoServer Enterprise 2022.2 Release Notes
GeoCat is pleased to present our latest distribution of GeoServer Enterprise.
Overview
GeoServer Enterprise 2022.2 provides support for publishing geospatial data using open standards.
This distribution is made available to GeoCat customers:
- GeoServer Enterprise Standard distribution provides a web archive (or docker image) of GeoServer bundled with popular extensions backed by GeoCat long-term support
- GeoServer Enterprise Premium offers a custom distribution with your selection of extensions backed by GeoCat extended support.
- GeoCat Live provides a hosted GeoServer environment
GeoServer Enterprise 2022.2 is a recommended upgrade for all our customers and is compatible with GeoCat Bridge for both ArcGIS Desktop and QGIS Desktop.
General
GeoServer Enterprise 2022.2 release notes:
- Offers our GeoServer Enterprise Premium customers “predefined war” service with a ready to use war including your selection of supported GeoServer extensions.
- GeoServer Enterprise 2022.2 is proudly open source with a snapshot of GeoServer 2.21.2, GeoWebCache 1.21.2, and GeoTools 27.2 technologies.
Detailed change log:
- GeoServer posts (2.21.2, 2.21.1, 2.21.0 )
- GeoServer release notes (2.21.2, 2.21.1, 2.21.0, 2.21-RC )
Security considerations:
- GeoCat recommends upgrading to take advantage of the latest security fixes.
- XSS vulnerability in the email address field
- While not susceptible to CVE-2022-42889 we have upgraded the associated library.
- GeoCat respects the GeoServer responsible disclosure policy, contact us directly to discuss for a list of known security vulnerabilities.
Known issues:
- Request body logging incompatible with OAuth security authentication
- Known issues for 2.21.2
GeoServer Enterprise Standard
New Feature:
-
REST API reset available for coverage store / covearges, and datastores / featuretypes.
-
REST API upload
zipstyle bundle containingsldand supporting images can nowbmpandgifimage formats.
Fix:
-
Tile Services now respect Catalog Mode
HIDE. Previously WMTS, WMS-C and TMS protocols would list all layers (even if user did not have permission to draw and access the content).This fix ensures user’s cannot learn about layers they do not have access to.
-
The built-in logging profiles have been incorrectly formatting
date.We recommend use of system property
UPDATE_BUILT_IN_LOGGING_PROFILES=trueto allow GeoServer to manage these files.If you have copied the built-in logging profiles as an example the
PatternLayoutdate format should be changed to%date{dd MMM HH:mm:ss}.
GeoServer Enterprise Premium
Improvements:
- Keycloak improvements to role service and better compatibility when combined with other filters in a filter chain.
Technology preview:
- Ouath2 Open ID Connect compatibility with keycloak and configuration available to send client secret in token response
- Cloud Optimized GeoTIFF: under customer evaluation for roadmap planning
- ogcapi-features: under customer evaluation for roadmap planning
