AnsweredAssumed Answered

SingleSignon with External Authentication

Question asked by manikandarajan on Jun 9, 2016
Task: Need to open alfresco share without asking the password from my JSP Application .

I've tried the steps given in the below link

https://forums.alfresco.com/forum/installation-upgrades-configuration-integration/authentication-ldap-sso/external-sso-alfresco

Added the following code in alfresco-global.properties


authentication.chain=external1:external,alfrescoNtlm1:alfrescoNtlm
external.authentication.proxyUserName=
external.authentication.enabled=true
external.authentication.defaultAdministratorUserNames=admin
external.authentication.proxyHeader=SsoUserHeader




Made chages in share-config-custom.xml

  <config evaluator="string-compare" condition="Remote">
      <remote>
         <keystore>
             <path>alfresco/web-extension/alfresco-system.p12</path>
             <type>pkcs12</type>
             <password>alfresco-system</password>
         </keystore>
        
         <connector>
            <id>alfrescoCookie</id>
            <name>Alfresco Connector</name>
            <description>Connects to an Alfresco instance using cookie-based authentication</description>
            <class>org.alfresco.web.site.servlet.SlingshotAlfrescoConnector</class>
         </connector>
        
         <connector>
            <id>alfrescoHeader</id>
            <name>Alfresco Connector</name>
            <description>Connects to an Alfresco instance using header and cookie-based authentication</description>
            <class>org.alfresco.web.site.servlet.SlingshotAlfrescoConnector</class>
            <userHeader>SsoUserHeader</userHeader>
         </connector>
         <endpoint>
            <id>alfresco</id>
            <name>Alfresco - user access</name>
            <description>Access to Alfresco Repository WebScripts that require user authentication</description>
            <connector-id>alfrescoHeader</connector-id>
            <endpoint-url>http://localhost:8080/alfresco/wcs</endpoint-url>
            <identity>user</identity>
            <external-auth>true</external-auth>
         </endpoint>
      </remote>
   </config>
</alfresco-config>


Tried accessing the alfresco share by adding the header name and header value in modifyheaders Firefox addon      How to access alfresco share using HTTP Header method - any example ?  or is it possible to open alfresco share from java class or methods , http session methods etc. i've checked with alfresco 4.0 , 4.2.e but no go, Thanks in advance.

<em>Edit by AFaust: This question was raised in a very old thread about SSO with LDAP (https://forums.alfresco.com/forum/general/non-technical-alfresco-discussion/single-sign-ldap-03222012-1147). I have split this as a new topic so people actually see it as a new question.</em>

Outcomes