AnsweredAssumed Answered

Alfresco 'share' SSO issue

Question asked by kaliyugantagonist on Jun 15, 2012
Latest reply on Nov 4, 2014 by sorrentinov
Hello,

  I am trying to configure Alfresco Share with CAS (mod_auth_cas). I am able to login to /alfresco
  but connot login to /share.

CAS : version 3.3
Alfresco : 4.0.d
Apache (proxyPass) : 2.2

   
   My Apache Configuration for alfresco and share is :

   
ProxyPass /alfresco http://myIp.com:8080/alfresco
    ProxyPassReverse /alfresco http://myIp.com:8080/alfresco

    <Location /alfresco>
            Options FollowSymLinks
            AuthName "CAS"
            AuthType CAS
            CASCookie APACHE_CAS
         CASScope /
            CASAuthNHeader CAS_FILTER_USER
            Require valid-user
     </Location>

    ProxyPass /share http://myIp.com:8080/share
    ProxyPassReverse /share http://myIp.com:8080/share

    <Location /share>
            Options FollowSymLinks
            AuthName "CAS"
            AuthType CAS
            CASCookie APACHE_CAS
         CASScope /
            CASAuthNHeader CAS_FILTER_USER
            Require valid-user
    </Location>


share-config-custom.xml file

<!– this one is to enable alfresco–>
<config evaluator="string-compare" condition="Remote">
      <remote>
         <endpoint>
            <id>alfresco-noauth</id>
            <name>Alfresco - unauthenticated access</name>
            <description>Access to Alfresco Repository WebScripts that do not require authentication</description>
            <connector-id>alfresco</connector-id>
            <endpoint-url>http://localhost:8080/alfresco/s</endpoint-url>
            <identity>none</identity>
         </endpoint>

         <endpoint>
            <id>alfresco</id>
            <name>Alfresco - user access</name>
            <description>Access to Alfresco Repository WebScripts that require user authentication</description>
            <connector-id>alfresco</connector-id>
            <endpoint-url>http://localhost:8080/alfresco/s</endpoint-url>
            <identity>user</identity>
         </endpoint>

         <endpoint>
            <id>alfresco-feed</id>
            <name>Alfresco Feed</name>
            <description>Alfresco Feed - supports basic HTTP authentication via the EndPointProxyServlet</description>
            <connector-id>http</connector-id>
            <endpoint-url>http://localhost:8080/alfresco/s</endpoint-url>
            <basic-auth>true</basic-auth>
            <identity>user</identity>
         </endpoint>
      </remote>
   </config>
<!– this one is to enable Share–>
<config evaluator="string-compare" condition="Remote">
      <remote>
         <keystore>
             <path>alfresco/web-extension/alfresco-system.p12</path>
             <type>pkcs12</type>
             <password>alfresco-system</password>
         </keystore>

         <connector>
            <id>alfrescoCookie</id>
            <name>Alfresco Connector</name>
            <description>Connects to an Alfresco instance using cookie-based authentication</description>
            <class>org.alfresco.web.site.servlet.SlingshotAlfrescoConnector</class>
            <userHeader>CAS_FILTER_USER</userHeader>
         </connector>

          <connector>
            <id>alfrescoHeader</id>
            <name>Alfresco Connector</name>
            <description>Connects to an Alfresco instance using header and cookie-based authentication</description>
            <class>org.alfresco.web.site.servlet.SlingshotAlfrescoConnector</class>
            <userHeader>CAS_FILTER_USER</userHeader>
         </connector>

        <endpoint>
            <id>alfresco</id>
            <name>Alfresco - user access</name>
            <description>Access to Alfresco Repository WebScripts that require user authentication</description>
            <connector-id>alfrescoHeader</connector-id>
            <endpoint-url>http://localhost:8080/alfresco/wcs</endpoint-url>
            <identity>user</identity>
            <external-auth>true</external-auth>
         </endpoint>
      </remote>
   </config>


alfresco-global.properties file

authentication.chain=external1:external
external.authentication.proxyUserName=
external.authentication.proxyHeader=CAS_FILTER_USER
external.authentication.enabled=true
external.authentication.userIdPattern=


CAS is working properly as my other applications integrated with it are running fine.
Even when i access /alfresco it works properly, but when i hit /share its shows alfresco error page.

In the logs it says :

ERROR [org.alfresco.web.site] org.springframework.extensions.surf.exception.PlatformRuntimeException: 05140007 Incorrectly configured endpoint ID: alfresco

Please help !

Thanks !

Outcomes