Release Notes 1.2

What’s New

Support for non-federated ArcGIS Server

It is now possible to protect ArcGIS Servers that are not federated with an ArcGIS Enterprise Portal.

WMS support

ArcGIS WMS services can now be protected, too.

Use of external information for policy decisions

In order to make use of external information that is associated with a user or a group, a generic interface was introduced.

This allows you to make use of information managed externally about your users for authorization. If, for example, your users are assigned to projects, you can refer to this assignment in a feature restriction, and give access only to features that belong to one of the user’s projects.

This interface can make use of a REST service which provides this information. As a template for such a REST service we provide sample implementations on GitHub.

Improved permissions editor

For working with permissions in the Service Manager, an improved editor is now available, providing templates for policy elements and policy validation.

UI improvements

In case there is only one ArcGIS Server site, the server selection in the Manager UI is removed.

Furthermore, the folder column of the groups view in the Policy Explorer now shows the number of services that are permitted for the selected group.

Support for Java 17

The Manager UI can now be run with Java 17.

Update Notes

For services with the WMS capability activated in ArcGIS Server, the WMS interface will be accessible for permitted users after the update. If this is not intended, please deactivate the WMS capability in ArcGIS Server Manager, where necessary.

Changelog

1.2.2

Fixed Security Issues

SECNEXT-185

Update to Log4j 2.16.0

1.2.1

Fixed Security Issues

SECNEXT-184

Critical log4j CVE (CVE-2021-44228)

1.2.0

New Features

SECNEXT-135

Use improved editor for policy editing

SECNEXT-143

Introduce --limit<number> flag to CLI groups command

SECNEXT-29

Support ArcGIS Server standalone in Manager

SECNEXT-133

Support ArcGIS Server standalone using IWA in Manager

SECNEXT-125

Use CLI with standalone ArcGIS Server

SECNEXT-126

Use CLI with IWA on standalone ArcGIS Server

SECNEXT-127

Adapt the groups command to ArcGIS Server standalone

SECNEXT-84

Make use of external user attributes

SECNEXT-142

Create sample implementation for JSON user info adapter

SECNEXT-140

Create sample implementation for LDAP user info adapter

SECNEXT-162

Improve error message in CLI when ArcGIS admin access is not available

SECNEXT-111

Show number of permitted services in group-centric view

SECNEXT-121

Enable WMS map access

SECNEXT-128

Apply layer permissions to WMS

SECNEXT-129

Apply feature restrictions to WMS

SECNEXT-130

Apply spatial restrictions to WMS

Fixed Issues

SECNEXT-158

[secmanctl] fix invalid import issue related to node-fetch

SECNEXT-180

Error during fetching spatial restriction features results in null pointer exception