AEM Authentication of SOAP/REST Web Services

Avatar

Avatar

AEM_Forum

Avatar

AEM_Forum

AEM_Forum

14-09-2016

Hi,

How AEM Authenticates the SOAP/REST Web Services requests?

Obviously, the request needs to be authenticated and authorized for all Web Services invocations.

Is the authentication done as in the normal AEM access case?

Are the users/passwords stored in AEM or in an LDAP?

How is authorization done? Using AEM ACLs?

Appreciate your responses.

Thanks,

Rama.

Accepted Solutions (1)

Accepted Solutions (1)

Avatar

Avatar

kautuk_sahni

Community Manager

Total Posts

5.7K

Likes

1.0K

Correct Reply

1.1K

Avatar

kautuk_sahni

Community Manager

Total Posts

5.7K

Likes

1.0K

Correct Reply

1.1K
kautuk_sahni
Community Manager

15-09-2016

Rama Krishna Nyshadham wrote...

Hi,

I am talking about AEM consuming external web services and the account external web services should use.

Authentication: Users could be stored in AEM repository or LDAP.

Authorization: The same users should have ACLs

Kindly confirm this understanding.

Thanks,

Rama.

 

Hi Rama

I would like you to please have look at this community article:- 

Link:- http://jackrabbit.apache.org/oak/docs/security/authentication/externalloginmodule.html

// It talks about Authentication with the External Login Module.

You question is more related to how AEM handles/Works with external authentication module. How it saves users and ACLs?

~kautuk 

Answers (3)

Answers (3)

Avatar

Avatar

AEM_Forum

Avatar

AEM_Forum

AEM_Forum

15-09-2016

Hi,

I am talking about AEM consuming external web services and the account external web services should use.

Authentication: Users could be stored in AEM repository or LDAP.

Authorization: The same users should have ACLs

Kindly confirm this understanding.

Thanks,

Rama.

Avatar

Avatar

smacdonald2008

Total Posts

12.7K

Likes

1.4K

Correct Reply

2.3K

Avatar

smacdonald2008

Total Posts

12.7K

Likes

1.4K

Correct Reply

2.3K
smacdonald2008

15-09-2016

When you say SOAP web service - do you mean when an AEM service consumes a web service?  AEM does not expose a web service - only can consume a 3rd party SOAP WS.

Avatar

Avatar

Feike_Visser1

Employee

Avatar

Feike_Visser1

Employee

Feike_Visser1
Employee

15-09-2016

All requests in AEM are handled in the same way, so using authentication, acl etc.