-
Type:
Bug
-
Status: Closed
-
Priority:
Major
-
Resolution: Duplicate
-
Affects Version/s: 5.0.c Community, 5.0.d Community
-
Fix Version/s: None
-
Component/s: Platform Authentication and SSO
-
Security Level: external (External user)
-
Labels:None
-
Environment:Debian 8.2 /3.16.0-4-amd64
Java(TM) SE Runtime Environment (build 1.8.0_60-b27)
In alfresco earlier versions (4.x, also in 5.0a) , the external authentication working with REMOTE_USER environment variable, and also header based auth.
but in 5.0d only httpd header based authentication working.
I find in the log:
[org.alfresco.repo.security.authentication.external.DefaultRemoteUserMapper] [http-apr-8080-exec-3] The remote user id is: null
Tested on community 5.0d, and nightly builds
5.0 c result: none of them work
Maybe the remote_user environment safer than header based auth.