AEM 6.4 - Author - Intercept SAML2 Authentication | Community
Skip to main content
robertol6836527
robertol6836527
Level 4
March 1, 2024

AEM 6.4 - Author - Intercept SAML2 Authentication

  • March 1, 2024
  • 3 replies
  • 1528 views

HI,

 

on Adobe Aem 6.4 Author machine login via Saml2 is active.

 

I would need to intercept user logins made via Saml2, what can I do?

 

Thank you

This post is no longer active and is closed to new replies. Need help? Start a new post to ask your question.

3 replies

EstebanBustamante
Community Advisor and Adobe Champion
EstebanBustamanteCommunity Advisor and Adobe Champion
Community Advisor and Adobe Champion
March 1, 2024

Can you elaborate on "intercept user logins"? If you are referring to checking how the data flows( viewing SAML messages), you could use something like this Chrome extension.https://chromewebstore.google.com/detail/saml-tracer/mpdajninpobndbfcldcmbpnnbhibjmch

 

Hope this helps 

Esteban Bustamante
    robertol6836527
    robertol6836527Author
    Level 4
    March 1, 2024

    HI,

    I should intercept Saml logins from a Java stream.

    Thank you

      arunpatidar
      Community Advisor
      arunpatidarCommunity Advisor
      Community Advisor
      March 4, 2024

      Please check https://experienceleaguecommunities.adobe.com/t5/adobe-experience-manager/need-info-aem-6-2-ability-to-extend-saml-authentication-handler/m-p/249458 

      https://medium.com/@lars.auffarth/building-an-aem-custom-authentication-handler-for-okta-openid-connect-2d9d42c0161 

      Arun Patidar
        robertol6836527
        robertol6836527Author
        Level 4
        March 4, 2024

        HI,
        Thanks for the reply.

         

        I cannot use the two suggested methodologies.

         

        The first where AuthenticationInfoPostProcessor is used is not practicable as it is called for every single operation performed on the CMS, both Author and Publish. It is very demanding in terms of performance.

         

        The second one is to create a Custom Authentication Handler is not possible as I am not allowed to create it.

         

        Are there no alternative solutions?

         

        Thank you

          arunpatidar
          Community Advisor
          arunpatidarCommunity Advisor
          Community Advisor
          March 4, 2024

          Hi @robertol6836527 
          You need to extend the existing SAML implementation if you want to intercept and extend the OOTB SAML integration.

           

          e.g.

           

          public class ExtSamlAuthenticationHandler extends DefaultAuthenticationFeedbackHandler implements AuthenticationHandler {

           

          Arun Patidar
            kautuk_sahni
            Community Manager
            kautuk_sahniCommunity Manager
            Community Manager
            March 7, 2024

            @robertol6836527 Did you find the suggestions from users helpful? Please let us know if more information is required. Otherwise, please mark the answer as correct for posterity. If you have found out solution yourself, please share it with the community.

            Kautuk Sahni
            Terms & ConditionsAccessibility statement

            Loading footer...