Search UI supports authentication of users managed via an XML file.
WARNING: This functionality is intended for use only on demonstration systems as the XML authentication method is NOT secure and therefore NOT suitable for use in production systems. Values in the users.xml file described here will be visible to users of your application.
Configuring Search UI to work this way involves a few simple steps outlined below.
Step 1 - Copy the users.xml file to a location on your Tomcat server outside the $CATALINA_HOME/webapps/directory
This allows you to edit the application's users without having to redeploy a WAR file. For example, you could copy the file to /opt/tomcat/searchui/users.xml.
For each user you wish to add, create the following element in the XML file:
<user id="username" name="Full Name" password="password" />
You can use cleartext passwords, but then anyone who views the file can read the passwords. To avoid this issue, encrypt the password values using OBF or MD5. To generate passwords for users you can use Attivio's aie-exec password or other utility.
Within the configuration.properties.js file, set authType to XML to enable XML-based authentication.
When deploying the application, set the suit.attivio.users property within the application.properties file to the location of your users.xml file.
Once you have completed the above steps and restarted the web server, access the URL of the Search UI. You will be redirected to Search UI's login form.
After submitting your credentials, you will be redirected to Search UI's landing page. You will be logged in and your name will appear in the upper right corner.
