Thanks Thierry. From the change-set in Jira it looks good. I'll have a
play with it over the w/e.
Regards,
Sean
Thierry Delprat wrote:
Hi again,
I commited a new extension point to manage this issue.
You can find an updated jar + a sample config file attached to the
jira issue :
=> see https://jira.nuxeo.org/browse/NXP-4643
Please let me know if this works as expected.
Best regards,
Tiry
2010/1/28 Thierry Delprat <[email protected] <mailto:[email protected]>>
Hi all,
Please see : https://jira.nuxeo.org/browse/NXP-4643
I'll try to work on that ASAP.
But I don't want to handle only the WSS / Anonymous issue :
- there are other login plugins that can be problematic with WSS
(CAS or any web based SSO will have the same issue)
- other connectors than WSS will have the same kind of issue
(CMIS, WebDav ....)
=> I'll try to find a generic solution since I don't want to hard
code any url pattern every single auth plugin.
Best regards,
Tiry
2010/1/28 Sean Radford <[email protected]
<mailto:[email protected]>>
To keep others 'in the loop'.
Christophe has sent me the code that circumvents this issue.
It consists of a modification to the
AnonymousAuthenticator#handleRetrieveIdentity(...) method:
public UserIdentificationInfo handleRetrieveIdentity(
HttpServletRequest httpRequest, HttpServletResponse
httpResponse) {
// START OF NEW CODE
if (httpRequest.getServletPath().contains("vti")) {
return null;
}
// END OF NEW CODE if (!initialized) {
...
}
I would then guess this could then be deployed in 2 ways:
1. Change the original source and install in the
nuxeo.war/system directory as a new replacement
nuxeo-platform-web-common.jar
2. In a custom plugin create a subclass of
AnonymousAuthenticator, override the handleRetrieveIdentity
method, add in the new code and delegate to super if the case
is not satisfied. Then re-declare the ANONYMOUS_AUTH
authenticationPlugin to get this new class used instead of the
original Nuxeo one.
Out of the two options I would go with 2 as it means no
changes to original Nuxeo code - much better.
I also note that the tip source code for
AnonymousAuthenticator.java does not have this modification.
Does anyone think it will/should be applied?
Thanks,
Sean
P.S. Of course a simple alternative solution is to place a
servlet filter in front of the Nuxeo AuthenticationFilter and
add the HttpRequest attribute
'org.nuxeo.ecm.platform.ui.web.auth.anonymous.block'
(AnonymousAuthenticator.BLOCK_ANONYMOUS_LOGIN_KEY) to TRUE so
the current Nuxeo AnonymousAuthenticator will not perform login.
Sean Radford wrote:
Hi Christophe,
That would be excellent.
(I've looked in mercurial but can't see anything that
could be the plugin you mention)
Thanks and regards,
Sean
Christophe Capon wrote:
Hi Sean, as far as I remember, my team has developed a
plugin
correcting this behaviour, during a training session
with nuxeo. I
just have to check this, 'cause I am out of the
office. Regards,
Christophe.
2010/1/26, Sean Radford <[email protected]
<mailto:[email protected]>>:
Hi,
I have a 5.3 server setup and can configure and
run a Network/Web
Location from a Windows box ok.
However, if I configure the server with an
anonymous user I do not get
the option to enter a username/password and so can
only navigate guest
workspaces.
Is this an issue/deficiency with Nuxeo, or is
there a way somehow to
tell windows I WANT to login with MY DETAILS?
Looking forward to peoples responses and views.
Thanks,
Sean
--
Dr. Sean Radford, MBBS, MSc
http://www.tacola.com/
t: +44 (0)845 KEY HELP
t: +44 (0)845 539 4357
m: +44 (0)7802 24 24 86
_______________________________________________
ECM mailing list
[email protected] <mailto:[email protected]>
http://lists.nuxeo.com/mailman/listinfo/ecm
To unsubscribe, go to
http://lists.nuxeo.com/mailman/options/ecm
--
Dr. Sean Radford, MBBS, MSc
http://www.tacola.com/
t: +44 (0)845 KEY HELP
t: +44 (0)845 539 4357
m: +44 (0)7802 24 24 86
--
Dr. Sean Radford, MBBS, MSc
http://www.tacola.com/
t: +44 (0)845 KEY HELP
t: +44 (0)845 539 4357
m: +44 (0)7802 24 24 86
_______________________________________________
ECM mailing list
[email protected]
http://lists.nuxeo.com/mailman/listinfo/ecm
To unsubscribe, go to http://lists.nuxeo.com/mailman/options/ecm
