Override authentication component

Change this authentication component;
..\tomcat\webapps\alfresco\WEB-INF\classes\alfresco\authentication-services.xml

<bean id=”authenticationComponent” parent=”authenticationComponentBase”>
<property name=”accept” value=”true” />
<property name=”supportNtlm” value=”true” />
<property name=”allowGuestLogin”> <value>${alfresco.authentication.allowGuestLogin}</value>  </property>
<property name=”nodeService”>  <ref bean=”nodeService” />  </property>
<property name=”personService”>  <ref bean=”personService” />  </property>
<property name=”transactionService”>  <ref bean=”transactionService” />  </property>
<property name=”defaultAdministratorUserNames”>  <set>  <value>${alfresco_user_store.adminusername}</value>   <value>admin</value>     </set>  </property>
<property name=”defaultGuestUserNames”>    <set>        <value>${alfresco_user_store.guestusername}</value>     </set>  </property>
</bean>

Skips the authentication.
Accepts all passwords.
Login as admin to reset admin password.
Re-enable the authentication.
Done.

I`ll keep this post here – but I can’t get it to work..

Running java code as a different user.

We run into quite some issues with security – this is due to our solution. Our task based security solution needs to update files/folder (noderefs) from user X while the system (the workflow task) is currently assigned to user Y.

This construction helped us somewhat;

String test = AuthenticationUtil.runAs(new RunAsWork<String>() {
                public String doWork() throws Exception {

                          …. do some stuff ….

                 } // end public doWork
            }, AuthenticationUtil.getSystemUserName());

 

But now I also found this blog – this also helps me with current sys user settings.

http://stackoverflow.com/questions/10225254/how-to-check-out-a-document-to-a-different-user-via-java-code-in-alfresco