[MNT-15500] CLONE - CMIS login loop when using Kerberos SSO Created: 14-Jan-16 Updated: 11-Mar-18 Resolved: 28-Apr-16
|Project:||Service Packs and Hot Fixes|
|Component/s:||Repository Authentication and SSO|
|Reporter:||Kevin Roast [X] (Inactive)||Assignee:||Closed Issues|
|Remaining Estimate:||0 minutes|
|Time Spent:||3 weeks, 1 day, 4 hours|
|Original Estimate:||Not Specified|
|Cloud or Enterprise:||Enterprise Only|
I have set up v5.0d Community with Kerberos authentication and I am having issues with the CMIS api.
|Comment by Cristian Turlica [ 21-Jan-16 ]|
Replicated the issue as described on:
|Comment by Cristian Turlica [ 09-Feb-16 ]|
The last time this worked as the original reporter requested was on Alfresco Community 50b , this was a pre-release version of 5.0.0 so it never worked in 5.0.N releases.
|Comment by Richard Esplin [X] (Inactive) [ 10-Mar-16 ]|
Linking in issues that external developers tell me are related. It is reproduced on 5.1.e.
|Comment by Kevin Roast [X] (Inactive) [ 27-Apr-16 ]|
OK after discussions with Cristian and Gary, the conclusion for now is "Won't Fix" - and supply a work-around for this use-case.
The work-around is quite simple. Remove the /api endpoint from the auth filter i.e. remove this section from alfresco WEB-INF/web.xml:
This will restore the behaviour where the /api endpoint will support basic auth and not be wrapped in the more secure alfresco authentication chain filter.
|Comment by Richard Esplin [X] (Inactive) [ 11-Mar-18 ]|