Adobe Experience Manager Sites & More

Vikashyadav · 15.08.20

Hi,

We have configured Adobe Granite SAML 2.0 Authentication Handler property "Assertion Consumer Service URL" with value like "http://<Host>/ssouser/saml_login" in osgi console. With this configuration we were successfully integrated and authenticated users. One fine day SSO login stops working(login page stops redirecting to SSO page) and we have seen in repository there were two nodes created with the same name & structure that "Assertion Consumer Service URL" property has. This created node has only 'jcr:primaryType' property.

Assertion Consumer Service URL in SAML2.0 config= http://<Host>/ssouser/saml_login

Node created in repository = /ssouser/saml_login

After removing this node from repository, login page start redirecting to SSO page successfully.

Just wanted to know, how this node has been created in repository? How we can restrict this node creation in repository?

Thanks.

arunpatidar · 16.08.20

Hi,

I am not sure why SSO stop working and instead of node is created but when you make a request to any AEM url with POST, it looks for resource(page, external url etc) if recourse does not found then default sling post servlet get called and created the nodes and properties.

So when node is created, AEM able to find local sling resourec and redirection to SSO stopped working.

https://sling.apache.org/documentation/bundles/manipulating-content-the-slingpostservlet-servlets-po...

Arun Patidar

Lösung in ursprünglichem Beitrag anzeigen

arunpatidar · 16.08.20

Hi,

I am not sure why SSO stop working and instead of node is created but when you make a request to any AEM url with POST, it looks for resource(page, external url etc) if recourse does not found then default sling post servlet get called and created the nodes and properties.

So when node is created, AEM able to find local sling resourec and redirection to SSO stopped working.

https://sling.apache.org/documentation/bundles/manipulating-content-the-slingpostservlet-servlets-po...

Arun Patidar

Vikashyadav · 16.08.20

Hi Arun,

Thanks for your quick response. As part of this AEM node creation, what are the properties are associated with that created node? In my case, the created node has only one property i.e. jcr:primaryType. Does default sling post servlet create jcr:created, jcr:createdBy properties for that node?

Thanks.

arunpatidar · 17.08.20

I am not sure but you can try to post a request using curl. It should create jcr:created and jcr:createdBy to the root node i.e ssouser

Adobe Experience Manager Sites & More

AEM 6.5 Assets - SAML2.0 'Assertion Consumer Service URL' Property

Arun Patidar

Arun Patidar

Arun Patidar

Lernressourcen

Dokumentation

Events

Community

Support

Ressourcen

Adobe-Konto

Adobe