-
Suggestion
-
Resolution: Obsolete
-
4
-
20
-
NOTE: This suggestion is for Confluence Server. Using Confluence Cloud? See the corresponding suggestion.
CONF-14705 has created a work around for the authentication login prompt when editing in word, but this is not tested against an SSO solution.
If you discover that after enabling "Allow authentication tokens in the URL path" and "Remember my login" do not help, please let us know what SSO you are using.
- is related to
-
CONFSERVER-20365 Enable Web Sudo to work with other single-sign-on solutions
-
- Closed
-
-
-
- Closed
-
- relates to
-
- Closed
- mentioned in
-
![[Extranet] Page](/images/icons/generic_link_16.png "[Extranet] Page")
Page
Failed to load
[CONFSERVER-19452] Office Connector and SSO Supportability
Thanks for your interest in this issue.
Since Confluence 6.11, we have updated this feature with a new Edit Files experience which negates this issues.
Cheers,
Confluence Product Management
Hello,
Ever since we started sing shibboleth/SSO, we have been seeing some problems with the office connector. We have installed the confluence HTTP authenticator (https://github.com/chauth/confluence_http_authenticator/issues?page=1&state=closed#). When clicking on the "Edit in Office" link in Internet Explorer, a window pops open and I see "The internet address "confluence_ur.com/attachment.doc" is not valid.
I have tried the suggestion of selecting Allow authentication tokens in the URL path and Disable strict path check (under webdav). Still no luck. I also looked at this: https://confluence.atlassian.com/display/CONFKB/'The+Internet+Address+...+Is+Not+Valid'+Error+Message+Due+to+Corrupt+Ancestor+Table , but I am unable to refresh my ancestor table. I get a server error every time.
Any ideas on how proceed?
Thanks,
Amy
Sören Sauerland
added a comment - How can we suppress the "Edit Document" button on a page if we use the view module for excel/word/powerpoint?
Sören Sauerland
added a comment - How can we suppress the "Edit Document" button on a page if we use the view module for excel/word/powerpoint? Hi Chris,
In answer to your question, the Edit in work can be disabled by Configuring the Office Connector and disabling the Edit in word xxxxxxxx module.
(The edit in word links appear in multiple locations in Confluence).
hope this helps.
we are using a custom authenticator for cosign SSO and custom profile, access, and credentials provider, and the Edit In Word does not work, the word doc shows up blank. Is it possible for Confluence to pass its own tokens around so this works with external auth (assuming cookies and external auth wont work)
Is there an easy way to remove the "Edit in Word" link so users do not get bitter that there is a cool feature that doesnt work in our setup for some reason...
Thanks!
Chris Hyzer
added a comment - - edited we are using a custom authenticator for cosign SSO and custom profile, access, and credentials provider, and the Edit In Word does not work, the word doc shows up blank. Is it possible for Confluence to pass its own tokens around so this works with external auth (assuming cookies and external auth wont work)
Is there an easy way to remove the "Edit in Word" link so users do not get bitter that there is a cool feature that doesnt work in our setup for some reason...
Thanks! We are using our own custom Authenticator which checks for a cookie issued by the SAP Netweaver Portal. If the cookie is found, we log the User in (i.e. write the special information into the session). If not, we pass on to the super class, i.e. the Confluence Authenticator and let it decide what to do.
Just like Kitt Lee described, we have enabled "Allow authentication tokens in the URL path" but can't check on "Remember my login" since users are not prompted to sign in at Confluence anymore. I think that's the point of having SSO so the requirement of having to check "Remember my login" seems a bit silly to me 
Anyways, we are also encountering the Popup dialog asking for Username and Password when using "Edit in Word". Unlike Kitt's experience, the documents opens alright, after keying in the required information.
I have done some investigation about the PopUp and found out that it appears whenever the URL to the document is incorrect. It is incorrect in the sense that it contains the JSESSIONID of another application and not the Confluence JSESSIONID !!
You may have noticed that the "Allow authentication tokens in the URL path" setting causes a manipulation of the document URL: it inserts /ocauth/<jsessionid> .
Well, my experience is that whenever there is more than just one JSESSIONID in the request, the wrong one may be picked. I think this is a problem in the file "editInOffice.js" inside the OfficeConnector.
Just wanted to share this with you. BTW, we are using Confluence 3.2.1_01
Regards,
Tanja
Kitt Lee
added a comment - We use Serapah authenticator for Confluence and check the request cookie to see if the user has logged in from our eRights authentication tool.
We have enabled "Allow authentication tokens in the URL path" but since we are using seraph authenticator, users are not prompted to sign in at Confluence anymore, hence they can't check on "Remember my login".
Upon clicking on Edit in Word link, the Confluence WEBDAV server ask for the username and password and after keying in the username and password, Microsoft Word displays an blank document instead of the original document.
Please help.
klee@spe.org
Kitt Lee
added a comment - We use Serapah authenticator for Confluence and check the request cookie to see if the user has logged in from our eRights authentication tool.
We have enabled "Allow authentication tokens in the URL path" but since we are using seraph authenticator, users are not prompted to sign in at Confluence anymore, hence they can't check on "Remember my login".
Upon clicking on Edit in Word link, the Confluence WEBDAV server ask for the username and password and after keying in the username and password, Microsoft Word displays an blank document instead of the original document.
Please help.
klee@spe.org 
dasanjos
added a comment - We use Apache Radius as SSO solution, together with an Apache custom Seraph authenticator for Confluence.
We have a confluence server (with SSL) using Jira DB (with empty passwords).
The "Edit in Word" feature of Office Conector asks for Basic Authentication (instead of using getUser() method of our athenticator)
and therefore cannot authenticate. So we cannot use the Edit in Word feature, and this is a real bummer 
dasanjos
added a comment - We use Apache Radius as SSO solution, together with an Apache custom Seraph authenticator for Confluence.
We have a confluence server (with SSL) using Jira DB (with empty passwords).
The "Edit in Word" feature of Office Conector asks for Basic Authentication (instead of using getUser() method of our athenticator)
and therefore cannot authenticate. So we cannot use the Edit in Word feature, and this is a real bummer 
Hello, we are using a custom single sign on solution specifically, miniOrange with SAML SSO Certificates. We have tested with a compatible Office version, ensured "Remember my login' was checked when logging in, and enabled 'Allow authentication tokens in the URL path' to no avail. While we understand that this issue of not being able to edit in office is resolved in 6.11, we just recently upgraded to 7.5.2 so upgrading once again is not currently an option.
This functionality is of immense value to our end users. Please advise of next steps to resume the previous functionality of Edit in Office. Thank you.