내 커뮤니티 업적 표시줄을 확대합니다.

Submissions are now open for the 2026 Adobe Experience Maker Awards.
Apply Now

Mark Solution

활동이 없어 이 대화는 잠겼습니다. 새 게시물을 작성해 주세요.

해결됨

Access denied to crxde

Avatar

Level 2
Level 2
17. 3. 14. 6:33:01 PM

Hi,

I would like to restrict a specific group not to access crxde lite in author mode .

Is there any way  to do that ?

suggestions are really appreciated,thx.

조회 수

4.1K

답글

7
이 콘텐츠를 좋아요 표시하려면 로그인하십시오

좋아요 수

번역
번역
1 채택된 해결책 개

Avatar

정확한 답변 작성자:
Employee Advisor
Employee Advisor
17. 3. 16. 8:17:05 AM

Hi Anton,

I don't think that this will work in that way, because CRXDE Liste is not a Sling application; therefor you should write a plain Http Servlet and register it via Felix. Then you can do that.

Jörg

원본 게시물의 솔루션 보기

조회 수

2.7K

답글

0
이 콘텐츠를 좋아요 표시하려면 로그인하십시오

좋아요 수

번역
번역
답변으로 이동
7 답변 개

Avatar

Employee Advisor
Employee Advisor
17. 3. 15. 12:20:49 PM

Hi,

removing the links to https://hostname/crx/de/index.jsp doesn't help, if people are aware of it. Access to CRXDE Lite cannot be controlled using ACLs (in an AEM/Oak sense),  but only by implementing network ACLs; for example by alloweding only IPs from the admin network acess to /crx by implementing such rules through apache httpd config.

Jörg

조회 수

2.8K

답글

1
이 콘텐츠를 좋아요 표시하려면 로그인하십시오

좋아요 수

번역
번역

Avatar

Level 4
Level 4
20. 9. 23. 9:54:09 PM
Jörg_Hoh에 대한 응답
what do we have to add to the httpd.config file to implement your idea??

조회 수

2.2K

답글

0
이 콘텐츠를 좋아요 표시하려면 로그인하십시오

좋아요 수

번역
번역

Avatar

Level 2
Level 2
17. 3. 15. 2:25:17 PM

Hi Jörg, the above solution holds good if there is a dispatcher infront of the author instance, also the admin will lose the access to crx if he moves out of the network for some reason (if the admin is on a travel for eg.), is it a good practice to consider IPs in this scenario?

Whats the alternative if there is no dispatcher in front of the author instance?

조회 수

2.9K

답글

0
이 콘텐츠를 좋아요 표시하려면 로그인하십시오

좋아요 수

번역
번역

Avatar

Level 3
Level 3
17. 3. 15. 3:52:31 PM

Hi,

You can write a sling filter with a pattern property. Check runmode. Get UserId. Then get Authorizable from UserManager. Then you can call memberOf() method on Authorizable.

This is first what came to my mind. Maybe there are better ways to reach you goal.

조회 수

3.1K

답글

0
이 콘텐츠를 좋아요 표시하려면 로그인하십시오

좋아요 수

번역
번역

Avatar

Administrator
Administrator
17. 3. 16. 5:31:23 AM

See if this helps you :- http://aemfaq.blogspot.in/2013/05/blocking-anonymous-access-to-crx-in-non.html

// Blocking anonymous access to Crx in a non dispatcher protected instance

~kautuk



Kautuk Sahni

조회 수

2.7K

답글

0
이 콘텐츠를 좋아요 표시하려면 로그인하십시오

좋아요 수

번역
번역

Avatar

정확한 답변 작성자:
Employee Advisor
Employee Advisor
17. 3. 16. 8:17:05 AM

Hi Anton,

I don't think that this will work in that way, because CRXDE Liste is not a Sling application; therefor you should write a plain Http Servlet and register it via Felix. Then you can do that.

Jörg

조회 수

2.7K

답글

0
이 콘텐츠를 좋아요 표시하려면 로그인하십시오

좋아요 수

번역
번역
답변으로 이동

Avatar

Level 3
Level 3
17. 3. 16. 12:32:48 PM

Hi Jörg,

Yep, you are right, today I faced with issue that crxde doesn't show anything when nosamplecontent runmode used. I googled and found out that CRXde is not a sling app and if I'm not mistaken, WebDav protocol used to get jcr tree in CRXde. 

조회 수

3.1K

답글

0
이 콘텐츠를 좋아요 표시하려면 로그인하십시오

좋아요 수

번역
번역
관련 대화
question on deploying to AEMaaCS (dev env) Solved

조회 수

137

Likes

0

답글

3
servlet request + javax Filters: how do I redirect users to another page? Solved

조회 수

89

Likes

0

답글

1
AEM GraphQL Query approach to get list of pages where XYZ component is enabled. Solved

조회 수

134

Likes

0

답글

2
Requires Sample Source code for AEM 6.5 to AEM Cloud Migration

조회 수

143

Likes

0

답글

1
Update the permissions to edit the smart crops

조회 수

666

Likes

0

답글

5