Contribution org.nuxeo.ecm.login.token.authentication.contrib--specificChains
In component org.nuxeo.ecm.login.token.authentication.contrib
org.nuxeo.ecm.login.token.authentication.contrib
inside nuxeo-platform-login-token-2021.26.5.jar /OSGI-INF/token-authentication-contrib.xml
You can influence this order by adding "require" tags in the containing component declaration, to make sure it is resolved after another component (see "Resolution Order" on components).
This contribution is part of XML component Documentation
Override Automation specific authentication chain to use token authentication just after basic one.
Extension Point
Extension point specificChains of component PluggableAuthenticationService.Registration Order
3
The registration order represents the order in which this contribution was registered on its target extention
point.
This will impact the override/merge behaviour when it is implemented on the target service, and is useful for
proper customization of existing contributions.
You can influence this order by adding "require" tags in the containing component declaration, to make sure it is resolved after another component (see "Resolution Order" on components).
Contributed Items
XML Source
<extension point="specificChains" target="org.nuxeo.ecm.platform.ui.web.auth.service.PluggableAuthenticationService">
<documentation>
Override Automation specific authentication chain to
use token authentication just after basic one.
</documentation>
<specificAuthenticationChain name="Automation">
<urlPatterns>
<url>(.*)/automation.*</url>
</urlPatterns>
<replacementChain>
<plugin>AUTOMATION_BASIC_AUTH</plugin>
<plugin>TOKEN_AUTH</plugin>
<plugin>OAUTH2_AUTH</plugin>
<plugin>JWT_AUTH</plugin>
</replacementChain>
</specificAuthenticationChain>
<specificAuthenticationChain name="RestAPI">
<urlPatterns>
<url>(.*)/api/v.*</url>
</urlPatterns>
<replacementChain>
<plugin>AUTOMATION_BASIC_AUTH</plugin>
<plugin>TOKEN_AUTH</plugin>
<plugin>OAUTH2_AUTH</plugin>
<plugin>JWT_AUTH</plugin>
</replacementChain>
</specificAuthenticationChain>
<documentation>
Use token authentication if the related request
header is sent.
</documentation>
<specificAuthenticationChain name="TokenAuth">
<headers>
<header name="X-Authentication-Token">.*</header>
</headers>
<replacementChain>
<plugin>TOKEN_AUTH</plugin>
</replacementChain>
</specificAuthenticationChain>
</extension>