AnsweredAssumed Answered

Alfresco Share login problems using https

Question asked by langr on Aug 4, 2011
Latest reply on Jan 16, 2012 by togum
Hello everyone,

I have installed alfresco-community-3.4.d under Ubuntu 10.4
There are local users and users, which are authenticated by an AD controller. LDAP is used to synchronize certain groups and users.
authentication.chain=alfrescoNtlm1:alfrescoNtlm,passthru1:passthru,ldap1:ldap
CIFS, SMB and WebDAV are working.

Everything works fine as long as I use http.
When I switch to https and do a redirect from 8080 to 8443 (using a self-made certificate), only the login

https://alfi....:8443/alfresco is successfully.

Using

https://alfi....:8443/share

I receive the following message
The remote server may be unavailable or your authentication details have not been recognized

The following files were changed:
$TOMCAT_HOME/conf/server.xml
<Connector port="8080" URIEncoding="UTF-8" protocol="HTTP/1.1"
               connectionTimeout="20000"
               redirectPort="8443" />

<Connector port="8443" protocol="HTTP/1.1" SSLEnabled="true"
               maxThreads="150" scheme="https" secure="true"
               keystoreFile="/home/xxx/.keystore" keystorePass="secret"
               clientAuth="false" sslProtocol="TLS" />

$TOMCAT_HOME/conf/web.xml
<security-constraint>
      <web-resource-collection>
         <web-resource-name>Secure Apps</web-resource-name>
         <url-pattern>/*</url-pattern>
      </web-resource-collection>
      <user-data-constraint>
         <transport-guarantee>CONFIDENTIAL</transport-guarantee>
      </user-data-constraint>
   </security-constraint>

$TOMCAT_HOME/shared/classes/alfresco/web-extension/share-config-custom.xml
I have found the following adaptions under
http://docs.alfresco.com/3.4/index.jsp?topic=%2Fcom.alfresco.Enterprise_3_4_0.doc%2Ftasks%2FSharePoint-HTTPS-setup.html
<config evaluator="string-compare" condition="Remote">
      <remote>
         <endpoint>
            <id>alfresco-noauth</id>
            <name>Alfresco - unauthenticated access</name>
            <description>Access to Alfresco Repository WebScripts that do not require authentication</description>
            <connector-id>alfresco</connector-id>
            <endpoint-url>https://localhost:8443/alfresco/s</endpoint-url>
            <identity>none</identity>
         </endpoint>

         <endpoint>
            <id>alfresco</id>
            <name>Alfresco - user access</name>
            <description>Access to Alfresco Repository WebScripts that require user authentication</description>
            <connector-id>alfresco</connector-id>
            <endpoint-url>https://localhost:8443/alfresco/s</endpoint-url>
            <identity>user</identity>
         </endpoint>

         <endpoint>
            <id>alfresco-feed</id>
            <name>Alfresco Feed</name>
            <description>Alfresco Feed - supports basic HTTP authentication via the EndPointProxyServlet</description>
            <connector-id>http</connector-id>
            <endpoint-url>https://localhost:8443/alfresco/s</endpoint-url>
            <basic-auth>true</basic-auth>
            <identity>user</identity>
         </endpoint>
      </remote>
   </config>
.

What am I doing wrong ?

Thanks in advance

Outcomes