Adobe Aem - interface /content.xml | Community
Skip to main content
robertol6836527
robertol6836527
Level 4
November 14, 2024
Solved

Adobe Aem - interface /content.xml

  • November 14, 2024
  • 2 replies
  • 561 views

Good morning,

 

on an Adobe Aem portal when you call the url home adding “/content.xml” the Cms returns an xml of many gigabytes.

What is the “/content.xml” interface for and is it possible to block it?

 

Thanks

This post is no longer active and is closed to new replies. Need help? Start a new post to ask your question.
Best answer by Raja_Reddy

Hi @robertol6836527 
 dispatcher.any configuration file found in the conf.d directory of your Apache HTTP Server setup.
Add a Filter Rule: Add a filter rule to block requests to /content.xml. This can be done by adding the following lines to the /filter section of your dispatcher.any file:

/filter
{
...
/0001 { /type "deny" /url "/content.xml" }
...
}

Update the Apache HTTP Server Configuration
Apache configuration file named httpd.conf or located within the conf directory.
Add a URL Block: Add a directive to block access to /content.xml:
<Location "/content.xml">
Require all denied
</Location>

After making these changes restart both the Apache HTTP Server and the Dispatcher to apply the new configuration.

I did same in my last project and it is working fine





2 replies

arunpatidar
Community Advisor
arunpatidarCommunity Advisor
Community Advisor
November 14, 2024

Hi @robertol6836527 

You need to block this from dispatcher filters.
The thumb rule is block everything and allow what should be seen by end user.

 

https://medium.com/@toimrank/aem-dispatcher-filter-section-a8c03a92c256 

Arun Patidar
    Raja_Reddy
    Community Advisor
    Raja_ReddyCommunity AdvisorAccepted solution
    Community Advisor
    November 14, 2024

    Hi @robertol6836527 
     dispatcher.any configuration file found in the conf.d directory of your Apache HTTP Server setup.
    Add a Filter Rule: Add a filter rule to block requests to /content.xml. This can be done by adding the following lines to the /filter section of your dispatcher.any file:

    /filter
    {
    ...
    /0001 { /type "deny" /url "/content.xml" }
    ...
    }

    Update the Apache HTTP Server Configuration
    Apache configuration file named httpd.conf or located within the conf directory.
    Add a URL Block: Add a directive to block access to /content.xml:
    <Location "/content.xml">
    Require all denied
    </Location>

    After making these changes restart both the Apache HTTP Server and the Dispatcher to apply the new configuration.

    I did same in my last project and it is working fine





      Terms & ConditionsAccessibility statement

      Loading footer...