Hello there,
I need any help I can get by setting up an external authentication with alfresco share.
This will be a longer post explaining what I have tried up until now and what my target setup should look like.
Resources
------------------------
- First I read the Alfresco documentation about authentication subsystems and the following chapters to get a grasp how it is configured.
- Then I tried to follow this Tutorial as close as I could
Current Test Setup
------------------------
- LoadBalancer
- Webserver (Linux)
- httpd (http on port 80)
- Reverse Proxy to keycloak and alfresco
- httpd.conf with CAS configuration from resource 2.
- Keycloak (http on port 8080)
- Application Server (Linux)
- Alfresco 5.2 Tomcat (http on port 8080)
- share-config-custom.xml configuration from resource 2. and disabled CSRF Token Filter
- alfresco-global.properties configuration from resource 2.
Current result:
- After beeing redirected to Keycloak and logged in there is a 504 Gateway Time-out
- Nothing in the Alfresco Tomcat Logs
Instead of Keycloak I also tried using a HTTP Basic Auth in the httpd webserver
The results have been similar dissapointing:
- After the Basic Auth dialog of the httpd, where I could authenticate another Basic Auth Popup from Alfresco pops up. This time the credentials are not accepted. When I cancel it I get redirected to the Login Page of "share"
I'd be grateful for any hint in the right direction, alternative working setups e.g. with shibboleth instead of keycloak or nginx instead of httpd
My current config files for reference
---------------------
- httpd.conf (excerpt)
- alfresco-global.conf
- shared-config-custom.xml
