Jahia 8

How to skip SPNEGO authentication for Jahia users

Question

Is it possible to bypass spnego valve and login directly to Jahia, for instance, with root user?

Answer

For an SSO with Kerberos authentication, Spnego valve is configured to be the first one called when logging in. In order to be able to login with Jahia users, some urls can be configured to be skipped by the valve.

Add or edit the following property with the value:

auth.spnego.bypassForUrls=/(tools|modules/tools|administration|cms/admin|welcome/adminmode|cms/login|cms/logout|css)(.*)?

For Jahia 8.0.0.0 and 8.0.1.0

Add it to <jahia-install>/digital-factory-config/jahia/jahia.properties and restart the server.

For Jahia 8.0.2.0 and later

Edit it in <jahia-install>/digital-factory-data/karaf/etc/org.jahia.modules.spnego.SpnegoHttpFilter.cfg, changes are taken into account without restart.