AEM Author - SAML integration - Disabling CRXDE access | Community
Skip to main content
pankajrohira
pankajrohira
Level 2
February 22, 2018
Solved

AEM Author - SAML integration - Disabling CRXDE access

  • February 22, 2018
  • 2 replies
  • 1859 views

We have recently configured Author instance with SAML. The "Path" parameter is specified as "/" Root - (repository path for which this authentication handler should be used by Sling). The integration is working just fine. However when we are hitting "/crx/de/index.jsp" as anonymous user we are able to get to it. Shouldn't hitting CRXDE go to SSO login page too because Path parameter is configured as root.

Thanks.

This post is no longer active and is closed to new replies. Need help? Start a new post to ask your question.
Best answer by joerghoh

CRX DE Lite is not covered by Sling Security, it is a servlet configured outside of sling. Therefor you cannot use the security model of the repository itself to disallow access to /crx/de/index.jsp. The only way are dispatcher rules or webserver rules.

Jörg

2 replies

joerghoh
Adobe Employee
joerghohAdobe EmployeeAccepted solution
Adobe Employee
February 22, 2018

CRX DE Lite is not covered by Sling Security, it is a servlet configured outside of sling. Therefor you cannot use the security model of the repository itself to disallow access to /crx/de/index.jsp. The only way are dispatcher rules or webserver rules.

Jörg

pankajrohira
pankajrohiraAuthor
Level 2
February 22, 2018

Thank you, I was under the same impression.

Terms & ConditionsAccessibility statement

Loading footer...