AnsweredAssumed Answered

How to disable the Basic Http Authen after SSO configuration

Question asked by owen on Sep 12, 2009
Latest reply on Jun 24, 2010 by jduke
Hi everyone:

Now I encounter a very tough issue after configured SSO using CAS between Share and Explorer.
I try to send document download link to other user for downloading ,but it always prompt user to go through a Basic Http Authentication.And our current requirement want to disable this Basic Http Authen ,because we do not want CAS Server to maintain all the user authentication information.

I also find out that I have to change some configuration in webscript-framework-config.xml in order to let current Basic Http Authen disabled.Related segments  shown as following :
                        ….
         <connector>
            <id>http</id>
            <name>Simple Http Connector</name>
            <description>Simple HTTP Connector</description>
            <class>org.alfresco.connector.HttpConnector</class>
         </connector>

         <connector>
            <id>alfresco</id>
            <name>Alfresco Connector</name>
            <description>Connects to an Alfresco instance using ticket-based authentication</description>
            <class>org.alfresco.connector.AlfrescoConnector</class>
            <authenticator-id>alfresco-ticket</authenticator-id>
         </connector>
         
         <!– Authenticator Implementations –>
         <authenticator>
            <id>alfresco-ticket</id>
            <name>Alfresco Authenticator</name>
            <description>Alfresco Authenticator</description>
            <!–  <class>org.alfresco.connector.AlfrescoAuthenticator</class> –>
            <class>com.baidu.ecmp.crc.sso.CasAlfrescoAuthenticator</class>
         </authenticator>
                         ……
      <endpoint>
            <id>alfresco-feed</id>
            <name>Alfresco Feed</name>
            <description>Alfresco Feed - supports basic HTTP authentication via the EndPointProxyServlet</description>
            <!–  <connector-id>http</connector-id>–>
            <connector-id>alfresco</connector-id>
            <endpoint-url>http://172.18.125.136:8080/crs/s</endpoint-url>
            <!– <basic-auth>true</basic-auth>  –>
            <identity>user</identity>
            <external-auth>true</external-auth>
            
         </endpoint>
                         ……
But after this ,I got the following error form Alfresco Explorer:

17:00:36,906 ERROR [org.alfresco.web.scripts.AbstractRuntime] Exception from executeScript - redirecting to status template error: 08120008 Permission denied
org.alfresco.web.scripts.WebScriptException: 08120008 Permission denied
   at org.alfresco.repo.web.scripts.content.StreamContent.streamContent(StreamContent.java:312)
   at org.alfresco.repo.web.scripts.content.ContentGet.execute(ContentGet.java:119)
   at org.alfresco.repo.web.scripts.RepositoryContainer$2.execute(RepositoryContainer.java:357)
   at org.alfresco.repo.transaction.RetryingTransactionHelper.doInTransaction(RetryingTransactionHelper.java:326)
   at org.alfresco.repo.web.scripts.RepositoryContainer.transactionedExecute(RepositoryContainer.java:407)
   at org.alfresco.repo.web.scripts.RepositoryContainer.transactionedExecuteAs(RepositoryContainer.java:424)
   at org.alfresco.repo.web.scripts.RepositoryContainer.executeScript(RepositoryContainer.java:288)
   at org.alfresco.web.scripts.AbstractRuntime.executeScript(AbstractRuntime.java:262)
   at org.alfresco.web.scripts.AbstractRuntime.executeScript(AbstractRuntime.java:139)
   at org.alfresco.web.scripts.servlet.WebScriptServlet.service(WebScriptServlet.java:122)
         ……

Hope there some solution about this.
Really appreciate for any response.

Outcomes