Can Alfresco Explorer and Alfresco Share be configured to use different authentication chains?

Right now I have Alfresco setup with this authentication chain:开发者_如何学编程

authentication.chain=alfinst:alfrescoNtlm,ldap1:ldap

However, it would be nice if I could use that for Alfresco Share, and this for Alfresco Explorer:

authentication.chain=alfinst:alfrescoNtlm

Is there a way to configure these applications to use different authentication chains? If not, can this be done through an extension of some sort?

The Explorer and Web Scripts URLs make use of different authentication filters, therefore it's possible for you to hook in your customized selective authentication handling. Beware: AFAICS this is not a completely supported use case, you might therefore end up [re]writing more code than you wanted. You've been warned, HBD.

A possible approach might be:

• having a custom filter mapped on the Explorer URLs that sets a AUTH_WEB_CLIENT session attribute

• customizing the LDAP authentication component to check whether such a session attribute is set, and skip authentication if so

@Skuro was nice enough to provide some nice ways to do it. Personally I'm more inclined to your own proposal, particularly if you have Apache in front of Alfresco (which is a nice-to-have, anyway). Your proposal "We could possibly rewrite incoming URLs..." seem to be good way idea. That way you don't have to touch your Alfresco chaining configuration, which can be a bit more complex, so it is easier to mess up things.