In AEM 6 how to configure 'trust_credentials_attribute'

Question

In older CQ instance, we can set trust_credentials_attribute in crx-quickstart\repository\repository.xml for authentication.In AEM 6, repository.xml is gone, is there anyone know how to configure it in AEM 6. Backgroud: In my project, it used trust_credentials_attribute for custom authentication(extends AbstractAuthenticationHandler), now project migrated to AEM 6, it doesn't work now, because there is no trust_credentials_attribute Thanks a lot in advanced.Kelvin

kautuk_sahni · Accepted Answer

Hi KelvinThe is an article of the community:Link:-https://helpx.adobe.com/experience-manager/kb/HowToConfigureSSO.html//Configure trusted header authentication on both the CRX side and the CQ5 side.But as mentioned by Sham, it has beendeprecatednow.So to use something in AEM 6+ the the article below:Link:https://helpx.adobe.com/experience-manager/using/oak-login.htmlI hope this would help you.Thanks and RegardsKautuk Sahni

Sham_HC · Answer

For security reason trusted_credentials_attribute has been declared deprecated in 5.5 & will support as long you use crx2.
However when you upgrade you should not use trusted_credentials_attribute . The going forward option would be develop a custom login module[A] & override isPreAuthenticated method verifying that login request is really trusted.

[A]
http://dev.day.com/docs/en/crx/current/deploying/custom-login-modules.html
http://jackrabbit.apache.org/oak/docs/security/authentication/preauthentication.html

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded