07-28-2020 06:25 AM
Hello there,
I need any help I can get by setting up an external authentication with alfresco share.
This will be a longer post explaining what I have tried up until now and what my target setup should look like.
Resources
------------------------
Current Test Setup
------------------------
Current result:
Instead of Keycloak I also tried using a HTTP Basic Auth in the httpd webserver
The results have been similar dissapointing:
I'd be grateful for any hint in the right direction, alternative working setups e.g. with shibboleth instead of keycloak or nginx instead of httpd
My current config files for reference
---------------------
08-10-2020 11:33 AM
I am facing the same issue with Alfresco Community 6.2.x . Anyone can help? Thanks in advance.
04-29-2021 12:55 PM
Before working on the full stack, I suggest you to try access directly to alfresco share in order to make sure the externalAuth configuration is working. You can do that by using a Chrome header extension like ModHeader (or similar for Firefox). Open ModHeader settings and put this:
X-Alfresco-Remote-User=your_username
and go to http://alfresco_host:8080/share ...you should see the share dashboard page without login. To log more info append this on alfresco log4j.properties:
log4j.logger.org.alfresco.repo.security.authentication.external=DEBUG log4j.logger.org.alfresco.repo.security.authentication.SimpleAcceptOrRejectAllAuthenticationComponentImpl=DEBUG log4j.logger.org.alfresco.repo.security.authentication.AbstractChainingAuthenticationService=DEBUG
11-19-2022 12:39 PM
Hello,
I'm trying to do the same with ACS 7.2 (installed in docker with alfresco-docker-installer).
I understand that the thing I should do is adding to the JAVA_OPTS settings this:
...
services:
alfresco:
...
JAVA_OPTS : '
...
-Dauthentication.chain=external1:external,alfrescoNtlm1:alfrescoNtlm -Dexternal.authentication.proxyUserName= -Dexternal.authentication.enabled=true -Dexternal.authentication.defaultAdministratorUserNames=admin -Dexternal.authentication.proxyHeader=X-Alfresco-Remote-User
'
...
Then for a testing I set a header in my browser with ModHeader as "X-Alfresco-Remote-User: <myusername>" and open the Share url for my instance (or /alfresco). But I keep getting the usual login screen as if nothing has changed.
There must be some step that I'm missing..?
Thanks in advance,
Luigi
09-22-2021 11:23 PM
Hello,
i want to add the same functionality but i cannot find the tutorial you mentioned
https://blog.johanet.fr/single-sign-on-with-alfresco-share-and-keycloak/
di you have any other reference or sample code ?
Explore our Alfresco products with the links below. Use labels to filter content by product module.