https://connect.hyland.com/t5/alfresco-archive/authenticating-without-a-password-based-off-sdk-example/m-p/274155#M227285 <HTML><HEAD></HEAD><BODY><SPAN>So it's starting to look like doing it this way isn't possible.</SPAN><BR /><BR /><SPAN>I was looking into the </SPAN><A href="http://wiki.alfresco.com/wiki/Alfresco_Authentication_Subsystems#External" rel="nofollow noopener noreferrer">External Authentication Subsystem</A><SPAN>, and saw the </SPAN><A href="http://wiki.alfresco.com/wiki/Alfresco_With_mod_auth_cas" rel="nofollow noopener noreferrer">CAS guide</A><SPAN>, but that seems like overkill and I'm not sure I understand everything that's going on or why all of that is needed for my situation. </SPAN><BR /><BR /><SPAN>After poking around in the Exernal subsystem, I saw it uses "SimpleAcceptOrRejectAllAuthenticationComponentImpl", which overrides the authentication function. In that function it authenticates a user via a "setCurrentUser" function, but that relies on the value of "accept" being set to true. I grepped through the Alfresco source, and looked in the files under WEB-INF/classes/alfresco/subsystems/Authentication/external, but I couldn't find out how the setAccept function ever got called. After some googling I found this:</SPAN><BR /><BR /><A href="http://code.google.com/p/alfresco-container-security/source/browse/trunk/src/java/com/pararede/alfresco/security/AlfrescoContainerSecurityFilter.java?spec=svn4&amp;r=4" rel="nofollow noopener noreferrer">http://code.google.com/p/alfresco-container-security/source/browse/trunk/src/java/com/pararede/alfresco/security/AlfrescoContainerSecurityFilter.java?spec=svn4&amp;r=4</A><BR /><BR /><SPAN>It looks like they setup a filter that logs the user in via a SimpleAcceptOrRejectAllAuthenticationComponentImpl object where they explicitly call setAccept(true). I haven't tried this yet, but their wiki says the web.xml file needs to be edited, something an Alfresco Dev said in another post wasn't needed after Alfresco v3.2 (I'm using Enterprise v3.4.3). Is this the right avenue to go down? </SPAN><BR /><BR /><SPAN>I've heard another idea would be to write my own Authenticator subsystem, but I don't see any docs on that, and without knowing how the "setAccept" function gets called for the External subsystem, I feel like I'd be shooting in the dark.</SPAN><BR /><BR /><SPAN>Any thoughts? Anyone?</SPAN><BR /><BR /><SPAN>best,</SPAN><BR /><BR /><SPAN>- Pat</SPAN></BODY></HTML> Thu, 22 Sep 2011 14:30:28 GMT patorjk 2011-09-22T14:30:28Z https://connect.hyland.com/t5/alfresco-archive/authenticating-without-a-password-based-off-sdk-example/m-p/274154#M227284 I've setup Alfresco to work with an LDAP server, and I can login fine. My next step was to have the login page re-direct the LDAP webapp, which is an external login screen, and have the user login there and then be redirected back to Alfresco. The reason for this is because the LDAP webapp sets a co Tue, 20 Sep 2011 14:56:24 GMT https://connect.hyland.com/t5/alfresco-archive/authenticating-without-a-password-based-off-sdk-example/m-p/274154#M227284 patorjk 2011-09-20T14:56:24Z https://connect.hyland.com/t5/alfresco-archive/authenticating-without-a-password-based-off-sdk-example/m-p/274155#M227285 <HTML><HEAD></HEAD><BODY><SPAN>So it's starting to look like doing it this way isn't possible.</SPAN><BR /><BR /><SPAN>I was looking into the </SPAN><A href="http://wiki.alfresco.com/wiki/Alfresco_Authentication_Subsystems#External" rel="nofollow noopener noreferrer">External Authentication Subsystem</A><SPAN>, and saw the </SPAN><A href="http://wiki.alfresco.com/wiki/Alfresco_With_mod_auth_cas" rel="nofollow noopener noreferrer">CAS guide</A><SPAN>, but that seems like overkill and I'm not sure I understand everything that's going on or why all of that is needed for my situation. </SPAN><BR /><BR /><SPAN>After poking around in the Exernal subsystem, I saw it uses "SimpleAcceptOrRejectAllAuthenticationComponentImpl", which overrides the authentication function. In that function it authenticates a user via a "setCurrentUser" function, but that relies on the value of "accept" being set to true. I grepped through the Alfresco source, and looked in the files under WEB-INF/classes/alfresco/subsystems/Authentication/external, but I couldn't find out how the setAccept function ever got called. After some googling I found this:</SPAN><BR /><BR /><A href="http://code.google.com/p/alfresco-container-security/source/browse/trunk/src/java/com/pararede/alfresco/security/AlfrescoContainerSecurityFilter.java?spec=svn4&amp;r=4" rel="nofollow noopener noreferrer">http://code.google.com/p/alfresco-container-security/source/browse/trunk/src/java/com/pararede/alfresco/security/AlfrescoContainerSecurityFilter.java?spec=svn4&amp;r=4</A><BR /><BR /><SPAN>It looks like they setup a filter that logs the user in via a SimpleAcceptOrRejectAllAuthenticationComponentImpl object where they explicitly call setAccept(true). I haven't tried this yet, but their wiki says the web.xml file needs to be edited, something an Alfresco Dev said in another post wasn't needed after Alfresco v3.2 (I'm using Enterprise v3.4.3). Is this the right avenue to go down? </SPAN><BR /><BR /><SPAN>I've heard another idea would be to write my own Authenticator subsystem, but I don't see any docs on that, and without knowing how the "setAccept" function gets called for the External subsystem, I feel like I'd be shooting in the dark.</SPAN><BR /><BR /><SPAN>Any thoughts? Anyone?</SPAN><BR /><BR /><SPAN>best,</SPAN><BR /><BR /><SPAN>- Pat</SPAN></BODY></HTML> Thu, 22 Sep 2011 14:30:28 GMT https://connect.hyland.com/t5/alfresco-archive/authenticating-without-a-password-based-off-sdk-example/m-p/274155#M227285 patorjk 2011-09-22T14:30:28Z