inteligr8/alfresco-community-repo
1
0
Fork 0
mirror of https://github.com/Alfresco/alfresco-community-repo.git synced 2025-08-07 17:49:17 +00:00
Code Issues Packages Projects Releases Wiki Activity

Refactor subsystems for authentication chaining

Browse Source 
- An authentication chain of size 1 configured by default
- DefaultChildApplicationContextManager supports dynamic configuration of the authentication chain via Spring or JMX. Any number of instances of any type allowed in chain.
- SubsystemChainingAuthenticationComponent and SubsystemChainingAuthenticationService iterate across configured chain for Authentication
- SSO (NTLM / Kerberos) and CIFS authentication independently activatable for any component in chain (where supported).
- SubsystemChainingProxyFactory used to proxy directly to first active CIFS authenticator or SSO filter in the chain
- CIFS server knows not to bother starting if authentication chain doesn't have an active CIFS authenticator (e.g. LDAP only)
- Rationalization of subsystem configuration folder structure and JMX object naming
- Classpath based extension mechanism for community edition - alfresco/extension/subsystems/<category>/<typeName>/<id>/*.properties in classpath can be used to configure specific subsystem instances
- Simplification of JMX infrastructure. No longer Spring bean definition based, thus allowing dynamic creation/registration of new instances at runtime.
- New AuthenticationChainTest unit test

git-svn-id: https://svn.alfresco.com/repos/alfresco-enterprise/alfresco/HEAD/root@14030 c4b6b30b-aa2e-2d43-bbcb-ca4b014f7261
This commit is contained in:
Dave Ward
2009-04-21 13:29:08 +00:00
parent bf949d306b
commit d2180c5eaa
77 changed files with 3556 additions and 1371 deletions
Download Patch File Download Diff File Expand all files Collapse all files

17
source/java/org/alfresco/filesys/ServerConfigurationBean.java
View File

@@ -84,6 +84,7 @@ import org.alfresco.jlan.util.Platform;
import org.alfresco.jlan.util.StringList;
import org.alfresco.jlan.util.X64;
import org.alfresco.repo.security.authentication.NTLMMode;
import org.alfresco.repo.security.authentication.ntlm.NLTMAuthenticator;
/**
* Alfresco File Server Configuration Bean Class
@@ -385,11 +386,15 @@ public class ServerConfigurationBean extends AbstractServerConfigurationBean {
// Get the authentication component type
NTLMMode ntlmMode = m_authenticationComponent.getNTLMMode();
NTLMMode ntlmMode = NTLMMode.NONE;
if (m_authenticationComponent instanceof NLTMAuthenticator)
{
ntlmMode = ((NLTMAuthenticator)m_authenticationComponent).getNTLMMode();
}
// Set the authenticator class to use
String authClass = "org.alfresco.filesys.auth.cifs.AlfrescoCifsAuthenticator";
String authClass = "org.alfresco.filesys.auth.cifs.AlfrescoCifsAuthenticator";
if (authType.equalsIgnoreCase("passthru"))
{
@@ -1462,11 +1467,15 @@ public class ServerConfigurationBean extends AbstractServerConfigurationBean {
// Get the authentication component type
NTLMMode ntlmMode = m_authenticationComponent.getNTLMMode();
NTLMMode ntlmMode = NTLMMode.NONE;
if (m_authenticationComponent instanceof NLTMAuthenticator)
{
ntlmMode = ((NLTMAuthenticator)m_authenticationComponent).getNTLMMode();
}
// Set the authenticator class to use
String authClass = "org.alfresco.filesys.auth.ftp.AlfrescoFtpAuthenticator";
String authClass = "org.alfresco.filesys.auth.ftp.AlfrescoFtpAuthenticator";
if (authType.equalsIgnoreCase("passthru"))
{