Your achievements

Level 1

0% to

Level 2

Tip /
Sign in

Sign in to Community

to gain points, level up, and earn exciting badges like the new
BedrockMission!

Learn more

View all

Sign in to view all badges

SOLVED

AEM 6.5 issues after upgrade to SP6 Unable to retrieve allowed user actions dialog not editing new content.

rafaelparra
Level 1
Level 1

Hello everyone,

First all thanks for your time reading my post.

I'm having some issues after upgrade AEM 6.5 from SP4 to SP6.( this same issue happened with SP5 and I had to make a rollback and try luck with the SP6 ) , every time that I try to edit or save new content using any component dialog for Touch UI I'm seeing the following exception error in logs ( no errors on console, only in crx/de logs) and no content in JCR is updated. Seems that all the components on my site are not longer able to found the correct path that stores the dialog information on the JCR. But before of the upgrade everything was working correctly for classic and touch ui.

 

I would like to know if is a typical issue after upgrade, or if someone has any recommendation to fix it:

 

*ERROR* [186.155.xxx.xx [1602798597740] GET /editor.html/content/comm/bridtest/en-us/.infinity.json HTTP/1.1] libs.cq.gui.components.renderconditions.canmodify.canmodify$jsp Unable to retrieve allowed user actions
javax.jcr.RepositoryException: Invalid name or path: /content/comm/bridtest/en-us//jcr:content
at org.apache.jackrabbit.oak.jcr.session.SessionContext.getOakPathOrThrow(SessionContext.java:384) [org.apache.jackrabbit.oak-jcr:1.22.4]
at org.apache.jackrabbit.oak.jcr.session.SessionImpl.getOakPathOrThrow(SessionImpl.java:150) [org.apache.jackrabbit.oak-jcr:1.22.4]
at org.apache.jackrabbit.oak.jcr.session.SessionImpl.access$100(SessionImpl.java:82) [org.apache.jackrabbit.oak-jcr:1.22.4]
at org.apache.jackrabbit.oak.jcr.session.SessionImpl$1.performNullable(SessionImpl.java:186) [org.apache.jackrabbit.oak-jcr:1.22.4]
at org.apache.jackrabbit.oak.jcr.session.SessionImpl$1.performNullable(SessionImpl.java:182) [org.apache.jackrabbit.oak-jcr:1.22.4]
at org.apache.jackrabbit.oak.jcr.delegate.SessionDelegate.performNullable(SessionDelegate.java:242) [org.apache.jackrabbit.oak-jcr:1.22.4]
at org.apache.jackrabbit.oak.jcr.session.SessionImpl.getNodeOrNull(SessionImpl.java:182) [org.apache.jackrabbit.oak-jcr:1.22.4]

 

1 Accepted Solution
kautuk_sahni
Correct answer by
Community Manager
Community Manager

Reply from @rafaelparra 

It is already solved. If you have some /apps/cq/xssprotection or any folder that contains protection rules to prevent injection of malicious code using dialogs on AEM you need to disabled. Those custom scripts could be incompatible with SP6 and on my particular case were blocking JCR node updating using Touch UI dialogs.

View solution in original post

5 Replies
rafaelparra
Level 1
Level 1
It is already solved. If you have some /apps/cq/xssprotection or any folder that contains protection rules to prevent injection of malicious code using dialogs on AEM you need to disabled. Those custom scripts could be incompatible with SP6 and on my particular case were blocking JCR node updating using Touch UI dialogs.
kautuk_sahni
Correct answer by
Community Manager
Community Manager

Reply from @rafaelparra 

It is already solved. If you have some /apps/cq/xssprotection or any folder that contains protection rules to prevent injection of malicious code using dialogs on AEM you need to disabled. Those custom scripts could be incompatible with SP6 and on my particular case were blocking JCR node updating using Touch UI dialogs.

View solution in original post

shajiahmed
Level 3
Level 3

@rafaelparra

we have the same issue, we put some configuration in xssprotection config. It is doing its work, however we cannot edit and save changes in component authoring.

 

I do see the following error in error.log

16.06.2021 18:05:02.570 *ERROR* [[0:0:0:0:0:0:0:1] [1623881102361] GET /editor.html/content/our-site/en-us/aem-test/.infinity.json HTTP/1.1] libs.cq.gui.components.renderconditions.canmodify.canmodify$jsp Unable to retrieve allowed user actions
rafaelparra
Level 1
Level 1
it is fixed thank you. In my case, it was a custom script as you point blocking the dialog generation.
shajiahmed
Level 3
Level 3

@rafaelparraI do see that following line is causing the issue.

<regexp name="expressionURL" value="(\$\{(\w)+\})"/>

when this line is added to xssprotection config we see none of the component is editable and we see the issue as you were seeing