Platform Explorer / Nuxeo Platform LTS 2015 7.10

Contribution org.nuxeo.ecm.login.token.authentication.contrib--authenticators

This contribution is part of XML component org.nuxeo.ecm.login.token.authentication.contrib inside nuxeo-platform-login-token-7.10-HF07.jar /OSGI-INF/token-authentication-contrib.xml

Authentication plugin using a token to validate identity. This token is sent as a HTTP request header.

The user is retrieved looking into a directory mapping unique tokens to user names.

This Authentication Plugin is configured to be used with the Trusting_LM LoginModule plugin => no password check will be done, a principal will be created from the userName if the user exists in the user directory.

Set the allowAnonymous parameter to true to allow token authentication for anonymous user.

Antoine Taillefer (ataillefer@nuxeo.com)

Extension point

Extension point authenticators of component PluggableAuthenticationService.

Contributed items

  • <authenticationPlugin class="org.nuxeo.ecm.platform.ui.web.auth.token.TokenAuthenticator" enabled="true" name="TOKEN_AUTH">
          <loginModulePlugin>Trusting_LM</loginModulePlugin>
          <parameters>
            <parameter name="allowAnonymous">false</parameter>
          </parameters>
        </authenticationPlugin>

XML source

<extension point="authenticators" target="org.nuxeo.ecm.platform.ui.web.auth.service.PluggableAuthenticationService">

    <documentation>
      Authentication plugin using a token to validate
      identity. This token is sent as a HTTP request header.

      The user is retrieved looking into a directory mapping unique tokens to user names.

      This Authentication Plugin is
      configured to be
      used with the Trusting_LM LoginModule plugin
      =&gt; no password check will be done, a
      principal will be
      created from the userName if the user exists in the user directory.

      Set the allowAnonymous parameter to true to
      allow token authentication for anonymous user.

      @author
      Antoine Taillefer (ataillefer@nuxeo.com)
    </documentation>

    <authenticationPlugin class="org.nuxeo.ecm.platform.ui.web.auth.token.TokenAuthenticator" enabled="true" name="TOKEN_AUTH">
      <loginModulePlugin>Trusting_LM</loginModulePlugin>
      <parameters>
        <parameter name="allowAnonymous">false</parameter>
      </parameters>
    </authenticationPlugin>

  </extension>