mapstore with geoservers geofence: rules-manager shows missingconfig error

45 views
Skip to first unread message
Assigned to lorenzo...@geosolutionsgroup.com by me

Stefan Overkamp

unread,
Nov 9, 2025, 8:40:31 AMNov 9
to mapstore-users
Hi,

I installed the internal geofence server in Geoserver. Great work.
Managing rules from within geoserver is no problem.

Now I would like to use mapstores rules-manager following
https://mapstore.geosolutionsgroup.com/mapstore/docs/api/framework#pages.RulesManager

I have my mapstore at mapstore.mydomain.de and geoserver at
mydomain.de/geoserver.
My localConfig.js has

  "geoFenceUrl": "/geoserver/",
  "geoFencePath": "rest/geofence",
  "geoFenceServiceType": "geoserver",
  "geoFenceLayerServiceType": "rest",
  "geoFenceGeoServerInstance": {
    "url": "/geoserver/",
    "id": 1
  },

      { "rulesmanager": [
        { "name": "Redirect" },
        {
            "name": "BrandNavbar",
            "cfg": {
                "containerPosition": "header"
            }
        },
        { "name": "Home" },
        { "name": "Login" },
        { "name": "Language" },
        { "name": "RulesDataGrid" },
        { "name": "Notifications" },
        {
            "name": "RulesEditor",
            "cfg": {
                "containerPosition": "columns",
                "disableDetails": true
            }
        }
      ]}

https://mapstore.mydomain.de/#/rules-manager/ shows the following error
message:
"missingconfig": "Der Regel-Manager findet die Konfiguration nicht.
Zugriff abgelehnt!",

I am authenticated as user with role ADMIN.

Does anyone running rules-manager have some hints for me?

Thanks

Stefan


--
Dipl. Ing. Stefan Overkamp
over...@posteo.de

Mahmood Adel

unread,
Nov 11, 2025, 4:25:33 AMNov 11
to mapstore-users
Hi Stefan
can you please mention the version of geoserver and mapstore as well ?
thanks in advance

Stefan Overkamp

unread,
Nov 11, 2025, 5:48:17 AMNov 11
to mapstor...@googlegroups.com

Geoserver 2.7.3 and Mapstore v2025.01.02

--
You received this message because you are subscribed to the Google Groups "mapstore-users" group.
To unsubscribe from this group and stop receiving emails from it, send an email to mapstore-user...@googlegroups.com.
To view this discussion visit https://groups.google.com/d/msgid/mapstore-users/41e8575f-55cf-4f9b-aebd-169470d76c39n%40googlegroups.com.
-- 
Dipl.Ing. Stefan Overkamp

Mahmood Adel

unread,
Nov 11, 2025, 10:16:22 AMNov 11
to mapstore-users
Hi Stefan,
please can you tell me in which level you are putting 'rulesmanager' as I think you didn't put it into plugins level in localConfig.json like here:

Screenshot 2025-11-11 145107.png
Just try to put it in the plugins level and let me know if it is working well or not.
Thanks in advance

Mahmood Adel

unread,
Nov 11, 2025, 10:16:28 AMNov 11
to mapstore-users
  Hi Stefan,

Thanks for providing the versions above. Can you tell me if you are putting the  rulesmanager into plugins level in localConfig.json and not root level like:
Screenshot 2025-11-11 145107.png   
If not, please try to make sure it is into plugins object and try again and let me know if there is still an issue.

Thanks in advance

Stefan Overkamp

unread,
Nov 11, 2025, 11:07:03 AMNov 11
to mapstor...@googlegroups.com, Mahmood Adel

Many thanks,

I put it into plugins { desktop.

Moving it to plugins level solved the first error. I now see the GUI.

The plugin tries to call https://mapstore.mydomain.de/geoserver/rest/geofence/rules/count
But my geoserver is at https://mydomain.de/geoserver

changing "geoFenceUrl": to "https://mydomain.de/geoserver/",
the count request succeeds and i can see my 10 rules in the grid.

The cells are empty. I can see a request like
https://mydomain.de/geoserver/rest/geofence/rules?page=0&entries=20&authkey=someKey
is failing as OPTIONS with status 403 forbidden.

I think i must look into my reverse proxy or into rest.properties?

Many thanks

Stefan

Lorenzo Natali

unread,
Nov 12, 2025, 3:38:39 AMNov 12
to mapstor...@googlegroups.com, Mahmood Adel
Hi,
You have to enable autkey (gesotore) provider from filter chain of rest endpoints in GeoServer.
Open Authentication section
scroll to filter chains
click on rest row. 
In the next page scroll down to "chain filters"
select geostore (or how you named the authkey filter created for MapStore/GeoServer integration) from left and move it to right, and move it up to the top.
Click on save Save button THEN click on save also in the next page .

image.png
image.png


To view this discussion visit https://groups.google.com/d/msgid/mapstore-users/22d670b0-4c82-421d-94f1-2f7366367c97%40posteo.de.

Stefan Overkamp

unread,
Nov 12, 2025, 3:47:28 AMNov 12
to mapstor...@googlegroups.com, Lorenzo Natali, Mahmood Adel

Hi Lorenzo,

I already had enabled it.

I think it is a CORS problem:
Access to XMLHttpRequest at 'https://mydomain.de/geoserver/rest/geofence/rules?page=0&entries=20&authkey=2c83e853-4dd6-431b-992a-88900bc626ce' from origin 'https://mapstore.mydomain.de' has been blocked by CORS policy: Response to preflight request doesn't pass access control check: It does not have HTTP ok status.

I will investigate further in my apache reverse proxy.

Many thanks

Stefan

Lorenzo Natali

unread,
Nov 12, 2025, 4:16:46 AMNov 12
to mapstore-users
Yes,
this error is a cors issue.
Let us know if you solved the problem after this.

Stefan Overkamp

unread,
Nov 12, 2025, 5:04:42 AMNov 12
to mapstor...@googlegroups.com, Lorenzo Natali

Hi,

using my subdomain mapstore.mydomain.de I didn't find a way to configure my apache reverse proxy to solve the CORS problem:
Access to XMLHttpRequest at 'https://mydomain.de/geoserver/rest/geofence/rules?page=0&entries=20&authkey=68686ef8-8137-4b06-b9f1-a17346283c94' from origin 'https://mapstore.mydomain.de' has been blocked by CORS policy: Response to preflight request doesn't pass access control check: It does not have HTTP ok status.

It seems to be a problem with the preflight request as other GET requests like
https://mydomain.de/geoserver/rest/geofence/rules/count?authkey=68686ef8-8130-4b06-b9f1-a17346283c94
are returned with Status 200.

But using https://mydomain.de/mapstore/#/rules-manager all is going well with no problems!
So I will go ahead not using the subdomain, as too complicated or impossible to configure.

I've read dozens of articles, but haven't found one that offers a working solution 
to allow communication between all subdomains and the domain with apache webserver.
Maybe I should switch to a more user orientated web server solution.

Many Thanks

Stefan

Lorenzo Natali

unread,
Nov 19, 2025, 4:59:21 AMNov 19
to Stefan Overkamp, mapstor...@googlegroups.com
Also the options request should be allowed. 
I don't know if it is a possibility for you, but I usually prefer, when possible, to publish both mapstore and geoserver on the same domain.
If they are part of the same application, it makes sense. Having different domains only complicates the operations. 
Maybe you can proxy your geoserver from the mapstore proxy server front-end, so CORS problem will be excluded (changing authkey settings accordingly).

Stefan Overkamp

unread,
Dec 1, 2025, 11:01:33 AM (11 days ago) Dec 1
to Lorenzo Natali, mapstor...@googlegroups.com

Hi Lorenzo,

Am 19.11.2025 um 10:59 schrieb Lorenzo Natali:
I don't know if it is a possibility for you, but I usually prefer, when possible, to publish both mapstore and geoserver on the same domain.

Configuring the Apache ReverseProxy to publish /geoserver on the same sub-domain used by Mapstore did the trick.

On this installation I had CORS problems with the map widgets WPS requests.
I had to change some URLs in stored_data (geostore.gs_stored_data) to this new URL. 
After that, all widgets (WPS requests) had status 200 OK.

Will try with the geofence problem later.

many thanks from 

Stefan

-- 
Dipl.Ing. Stefan Overkamp
Laakmannsbusch 44, 42555 Velbert
Reply all
Reply to author
Forward
0 new messages