I want to integrate Alfresco with my current login system (which is an LDAP server). I can successfully integrate LDAP authentication, but I want to use an external login page and Alfresco read a cookie to log in the user (the cookie will contain a username and a key that can be used to verify that they are logged in with the LDAP server).
I looked at an example that came with the SDK, but there seems to be no way to log in without a password.
I studied the external authentication subsystem and saw the CAS manual, but it seems like a lot of noise, and I'm not sure that I understand everything that is happening, or why all this is necessary for my situation.
After searching the Exernal subsystem, I saw that it uses "SimpleAcceptOrRejectAllAuthenticationComponentImpl", which overrides the authentication function. In this function, it authenticates the user through the "setCurrentUser" function, but relies on the "accept" value set to true. I went through the Alfresco source and looked at the files in the WEB-INF / classes / alfresco / subsystems / Authentication / external section, but I could not find out how the setAccept function was called. After some googling, I found this example .
It looks like they are setting up a filter that registers the user through the SimpleAcceptOrRejectAllAuthenticationComponentImpl object, where they explicitly call setAccept (true). I have not tried this yet, but their wiki says that the web.xml file needs to be edited, something that Alfresco Dev said in another post was not needed after Alfresco v3.2 (I use v3.4.3). Is this the right way down?
I heard that another idea would be to write my own Authenticator subsystem, but I donโt see any documents in it, and, not knowing how the setAccept function is called for the external subsystem, I feel d shoot in the dark.
Any thoughts on how to log in to a user based on a cookie created by an external webapp (which is in the same domain - I was able to read a cookie, I just don't know how to authenticate a user without a password)?