[
https://issues.apache.org/jira/browse/CONNECTORS-1131?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14604899#comment-14604899
]
Karl Wright edited comment on CONNECTORS-1131 at 6/28/15 8:41 PM:
------------------------------------------------------------------
You should get an error code, yes -- SC_UNAUTHORIZED.
This is how it is supposed to work. The following accesses the credentials you
have defined:
{code}
apiLoginUserName =
LockManagerFactory.getStringProperty(threadContext,apiLoginUserNameProperty,"");
apiLoginPassword =
LockManagerFactory.getPossiblyObfuscatedStringProperty(threadContext,apiLoginPasswordProperty,"");
{code}
The api login password may therefore be obfuscated. It doesn't look like you
specified it that way though.
The verification code looks like this:
{code}
/** Verify API login.
*/
public static boolean verifyAPILogin(IThreadContext threadContext, String
userID, String userPassword)
throws ManifoldCFException
{
if (userID != null && userPassword != null)
{
return userID.equals(apiLoginUserName) &&
userPassword.equals(apiLoginPassword);
}
return false;
}
{code}
The credentials are established via a login REST api call using the same
session. The cookie is not persistent, so I would expect shutting down MCF and
starting it again would lose the login state. If not logged in, MCF tries to
log you in using user="" password="". Of course this will fail if you've set
credentials differently from those.
I vaguely recall writing a test for this but I can't remember where it is.
It's one of the connector integration tests, though, or in pull-agent.
So I think it's probable that after setting the parameter values you specified,
you didn't actually restart MCF?
was (Author: [email protected]):
You should get an error code, yes -- SC_UNAUTHORIZED.
This is how it is supposed to work. The following accesses the credentials you
have defined:
{code}
apiLoginUserName =
LockManagerFactory.getStringProperty(threadContext,apiLoginUserNameProperty,"");
apiLoginPassword =
LockManagerFactory.getPossiblyObfuscatedStringProperty(threadContext,apiLoginPasswordProperty,"");
{code}
The api login password therefore must be obfuscated. That's one thing you are
doing wrong. The verification code looks like this:
{code}
/** Verify API login.
*/
public static boolean verifyAPILogin(IThreadContext threadContext, String
userID, String userPassword)
throws ManifoldCFException
{
if (userID != null && userPassword != null)
{
return userID.equals(apiLoginUserName) &&
userPassword.equals(apiLoginPassword);
}
return false;
}
{code}
The credentials are established via a login REST api call using the same
session. The cookie is not persistent, so I would expect shutting down MCF and
starting it again would lose the login state. If not logged in, MCF tries to
log you in using user="" password="". Of course this will fail if you've set
credentials differently from those.
I vaguely recall writing a test for this but I can't remember where it is.
It's one of the connector integration tests, though, or in pull-agent.
So I think it's probable that after setting the parameter values you specified,
you didn't actually restart MCF?
> Ldap authentication for the administration console
> --------------------------------------------------
>
> Key: CONNECTORS-1131
> URL: https://issues.apache.org/jira/browse/CONNECTORS-1131
> Project: ManifoldCF
> Issue Type: Wish
> Reporter: colin
> Assignee: Karl Wright
> Fix For: ManifoldCF 1.10, ManifoldCF 2.2
>
> Attachments: AdminProfile.java, LdapAuthenticator.java
>
>
> Hi Guys,
> Could more options be added for authenticating to the MCF administration ui?
> The username / password can be set in the properties.xml but it would make it
> easier for enterprise integration if ldap was supported.
> Thanks,
> Colin
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
