Expand my Community achievements bar.

Don’t miss the AEM Skill Exchange in SF on Nov 14—hear from industry leaders, learn best practices, and enhance your AEM strategy with practical tips.
Read More & Register today!
SOLVED

AEM as OAuth2 Client: Access Token Payload and Cookie Decryption

Avatar

Level 1
Level 1
11/15/23 12:37:24 AM


We configured Adobe Experience Manager (AEM) as an OAuth 2 client using a custom provider and setting up the Adobe "Granite OAuth Application and Provider."
Overall, the configuration is working fine, but we have encountered a couple of challenges related to the access token payload and cookie encryption. We would appreciate your guidance on the following matters:

  1. Access Token Payload:
    We would like to access the properties present in the access token payload. Could you please provide us with information on how we can access the access token payload within our AEM implementation? Any guidance or code examples would be highly appreciated.

  2. Encrypted Cookie:
    We attempted to save the access token in a cookie for further usage. However, we noticed that the cookie is encrypted. We would like to decrypt the cookie to extract the access token when necessary. Can you please advise us on the appropriate method or steps to decrypt the cookie and retrieve the access token?

Views

492

Replies

2
Sign in to like this content

Total Likes

Translate
Translate
1 Accepted Solution

Avatar

Correct answer by
Community Advisor
Community Advisor
12/5/23 2:32:53 PM

you can use jwt.io to decode the access token.

please refer to https://experienceleaguecommunities.adobe.com/t5/adobe-experience-manager/verify-jwt-token-registere...and https://medium.com/tech-learnings/how-to-manage-the-protected-aem-resources-through-oauth-2-0-851ce4... for details.

 

View solution in original post

Views

385

Replies

0
Sign in to like this content

Total Likes

Translate
Translate
Jump to reply
2 Replies

Avatar

Administrator
Administrator
12/5/23 1:30:43 AM

@Preetpal_Bindra @Harwinder-singh @Gaurav_Sachdeva_ @DPrakashRaj @MayurSatav @Rohan_Garg @aanchal-sikka Can you please review this unanswered question? Appreciate your thoughts on this.



Kautuk Sahni

Views

403

Replies

0
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Correct answer by
Community Advisor
Community Advisor
12/5/23 2:32:53 PM

you can use jwt.io to decode the access token.

please refer to https://experienceleaguecommunities.adobe.com/t5/adobe-experience-manager/verify-jwt-token-registere...and https://medium.com/tech-learnings/how-to-manage-the-protected-aem-resources-through-oauth-2-0-851ce4... for details.

 

Views

386

Replies

0
Sign in to like this content

Total Likes

Translate
Translate
Jump to reply
Related Conversations
Optimizing Daily API Calls in AEM: A Better Solution? Solved

Views

163

Likes

0

Replies

5
AEM dispatcher not serving page from publisher

Views

14

Likes

0

Replies

0
RTE full options not appearing in minimized view AEM 6.5 cloud

Views

140

Likes

0

Replies

4
Redirects do not work with x-aem-client-country header

Views

115

Likes

0

Replies

1
Serve Images in Next-Gen Format i.e in WebP and AVIF

Views

268

Likes

0

Replies

2