Hello there,
I need any help I can get by setting up an external authentication with alfresco share.
This will be a longer post explaining what I have tried up until now and what my target setup should look like.
Resources
------------------------
Current Test Setup
------------------------
Current result:
Instead of Keycloak I also tried using a HTTP Basic Auth in the httpd webserver
The results have been similar dissapointing:
I'd be grateful for any hint in the right direction, alternative working setups e.g. with shibboleth instead of keycloak or nginx instead of httpd
My current config files for reference
---------------------
I am facing the same issue with Alfresco Community 6.2.x . Anyone can help? Thanks in advance.
Before working on the full stack, I suggest you to try access directly to alfresco share in order to make sure the externalAuth configuration is working. You can do that by using a Chrome header extension like ModHeader (or similar for Firefox). Open ModHeader settings and put this:
X-Alfresco-Remote-User=your_username
and go to http://alfresco_host:8080/share ...you should see the share dashboard page without login. To log more info append this on alfresco log4j.properties:
log4j.logger.org.alfresco.repo.security.authentication.external=DEBUG log4j.logger.org.alfresco.repo.security.authentication.SimpleAcceptOrRejectAllAuthenticationComponentImpl=DEBUG log4j.logger.org.alfresco.repo.security.authentication.AbstractChainingAuthenticationService=DEBUG
Hello,
i want to add the same functionality but i cannot find the tutorial you mentioned
https://blog.johanet.fr/single-sign-on-with-alfresco-share-and-keycloak/
di you have any other reference or sample code ?
Hello,
I'm trying to do the same with ACS 7.2 (installed in docker with alfresco-docker-installer).
I understand that the thing I should do is adding to the JAVA_OPTS settings this:
...
services:
alfresco:
...
JAVA_OPTS : '
...
-Dauthentication.chain=external1:external,alfrescoNtlm1:alfrescoNtlm -Dexternal.authentication.proxyUserName= -Dexternal.authentication.enabled=true -Dexternal.authentication.defaultAdministratorUserNames=admin -Dexternal.authentication.proxyHeader=X-Alfresco-Remote-User
'
...
Then for a testing I set a header in my browser with ModHeader as "X-Alfresco-Remote-User: <myusername>" and open the Share url for my instance (or /alfresco). But I keep getting the usual login screen as if nothing has changed.
There must be some step that I'm missing..?
Thanks in advance,
Luigi
Ask for and offer help to other Alfresco Content Services Users and members of the Alfresco team.
Related links:
By using this site, you are agreeing to allow us to collect and use cookies as outlined in Alfresco’s Cookie Statement and Terms of Use (and you have a legitimate interest in Alfresco and our products, authorizing us to contact you in such methods). If you are not ok with these terms, please do not use this website.