AEM CIF + Magento on Publish | Community
Skip to main content
E
evancooperman-rp
Level 3
May 5, 2021

AEM CIF + Magento on Publish

  • May 5, 2021
  • 3 replies
  • 8940 views

Hi everyone,

I'm struggling a bit to get my publish instance working properly with AEM + CIF (1.10.0) + Venia + Magento.  Everything works properly in author - I can view products, add to cart, and complete checkout.  My commerce config path is set as /api/graphql.

The problem is that in publish, I'm getting a 403 error when it attempts to hit the graphql endpoint:

http://localhost:4503/api/graphql

I have set up the COMMERCE_ENDPOINT environment variable and this is working as expected in author.

I checked the CSRF configuration and by default it only has the /graphql endpoint listed as ignoring CSRF, so I'm assuming that the publish endpoint cannot just be /api/graphql.  I tried adding /api/graphql to the CSRF config just for fun, but that didn't fix it. 

So my question is, in order for publish to work, do I have to set up a proxy and update my config in author (and then publish it) using that URL instead?  I actually tried changing the URL to hit Magento directly, but of course I get a CORS error, so there obviously needs to be a proxy somewhere...I just thought AEM could handle it internally for publish like it does for author.  Does anyone know if I absolutely need to set up a proxy for publish?  Even if I do use a proxy, I'm assuming I would want to use the dispatcher as my proxy so that I don't run into the CORS issue there too, and to avoid a second proxy, right?

I've tried scouring the docs but they all speak primarily to author, with almost nothing at all for how the publish setup differs.  The only thing I see is the following, which seems to indicate that AEM publish should function as it's own proxy the same way author does:

 

Example Mac OSX:

export COMMERCE_ENDPOINT=https://demo.magentosite.cloud/graphql
Example Windows:
set COMMERCE_ENDPOINT=https://demo.magentosite.cloud/graphql
This variable is used by AEM to connect to your commerce system. Also, the CIF add-on includes a local reverse proxy make the Commerce GraphQL endpoint available locally. This is used by the CIF authoring tools (product console and pickers) and for the CIF client-side components doing direct GraphQL calls.
 

Thanks in advance!

This post is no longer active and is closed to new replies. Need help? Start a new post to ask your question.

3 replies

moek18753296
moek18753296
Level 2
May 10, 2021

Are you logging in on the publisher first?  If not, I would check the Sling Authentication Service in the OSGi console is set to allow Anonymous access. https://experienceleaguecommunities.adobe.com/t5/adobe-experience-manager/aem-sites-locked-for-anonymous-users/td-p/260595

    E
    evancooperman-rpAuthor
    Level 3
    May 12, 2021
    Great thought, and for a minute I thought you were on to something! Unfortunately my Sling Authentication Service is already allowing anonymous access to the repo. I also tested again after logging in as admin, but getting the same issue still anyway.
      shelly-goel
      Adobe Employee
      shelly-goelAdobe Employee
      Adobe Employee
      May 12, 2021

      @evancooperman-rp  I hope you've activated your /conf/venia cloud configurations

        E
        evancooperman-rpAuthor
        Level 3
        May 12, 2021
        I did activate them, the URL it's attempting to hit in publish is the same as in author (but port 4503), but I'm getting the 403 error.
          shelly-goel
          Adobe Employee
          shelly-goelAdobe Employee
          Adobe Employee
          June 6, 2021

          @evancooperman-rp  Yes the graphql endpoint should be /api/graphql in publish as well. Where do you get 403?

          Is your issue resolved?

            A
            Aryan12345
            Level 3
            February 23, 2022

            Same issue here as well (in 2022 :))

             

            Did you find any solution?

             

            This is the summary of my issue

             

            The /api/graphql is throwing 403 errors which means no frontend commerce operation is happening on the storefront.
             
            I tried adding the /api/graphql to the CSRF filter's exclude list and even removed the POST method from there.
             

             

             
            After this I still 403 on GET request of /api/graphql and the following on POST request.
             

             

             
            I am I missing some setting?
             
            Note: on the sling servlet resolver config, I have added the /api/graphql but there is no change.
             

             

              E
              evancooperman-rpAuthor
              Level 3
              February 24, 2022

              I updated my local dispatcher tools to have an ENVIRONMENT_LOCAL option, and then use that in conjunction with an addition I made to our vhost file like this:

              <IfDefine ENVIRONMENT_LOCAL>
                  ProxyErrorOverride off
                  ProxyPass         /api/graphql http://host.docker.internal:3001
                  ProxyPassReverse  /api/graphql http://host.docker.internal:3001
              </IfDefine>

               so I just use the dispatcher as a proxy.  Since the dispatcher starts in a VM, I believe you also need a local npx proxy in order to forward traffic along to Adobe I/O like this:

              npx local-cors-proxy --proxyUrl https://adobeioruntime.net/api/v1/web/xxxx/graphql-reference/dispatcher --port 3001 --proxyPartial ""

              Hope that helps!

                E
                evancooperman-rpAuthor
                Level 3
                March 10, 2023

                HI @evancooperman-rp 

                There are two things i wanted to achieve.
                 1. We wanted to make the IO endpoint which appears in head tag to be a friendly url (proxy path ) , which will be consumed by FE for clientside calls. we have enabled the 'enable proxy path' in CIF cloud services 

                2. In continuation to above, we wanted to achieve dynamic price load ( enabled dynamic pricing checkbox in cloud config)

                I set the below change in vhost file and have few doubts here. 
                Fr cloud instances, COMMERCE_ENDPOINT will be a env variable in CM and in local it will be in system env variables?

                what needs to be passed for "http://${AEM_HTTP_PROXY_HOST}:${AEM_HTTP_PROXY_PORT}" ( for both local and Cloud instances )

                 

                <IfDefine COMMERCE>
                SSLProxyEngine on
                # CIF-2557 add ProxyRemote to tunnel reverse-proxy traffic through egress proxy if available
                <IfDefine HTTP_EGRESS_PROXY>
                ProxyRemote ${COMMERCE_ENDPOINT} "http://${AEM_HTTP_PROXY_HOST}:${AEM_HTTP_PROXY_PORT}"
                </IfDefine>
                <LocationMatch "/api/graphql(/default)?$">
                # Use an empty back reference from ProxyPassMatch to the LocationMatch regex to prevent the
                # original URL being appended to the proxy request
                ProxyPassMatch ${COMMERCE_ENDPOINT}$2
                ProxyPassReverse ${COMMERCE_ENDPOINT}
                RewriteEngine Off
                </LocationMatch>
                </IfDefine>

                 

                Kindly suggest on sample values as i continue to get 503 or 403 forbidden error for the api/graphql/default endpoint. I have referred to above comments and tried all possible things but not succeeded , may be some syntax error or a step is missed.

                 

                Thanks,

                Gokul

                 


                The proxy path in AEM has no bearing on publish.  Proxy path is purely for author.  AEM author ships with an internal proxy (via code) that is not available on the publisher.  What you need to ensure is that your dispatcher proxy is set up and pointing to Adobe I/O, and that should be that.  Can you confirm that when you make calls, via something like Postman, directly to Adobe I/O, that it responds as expected? 

                 

                When I did this, I would start the dispatcher with a command like

                DISP_RUN_MODE=local ./docker_run.sh out host.docker.internal:4503 80

                which would then go into my IfDefine block here (I had to update some core files inside of dispatcher-tools in order to make this work, but you should be able to use the OOTB configs to do the same thing):

                <IfDefine ENVIRONMENT_LOCAL>
                    ProxyErrorOverride off
                    ProxyPass         /api/graphql http://host.docker.internal:3001
                    ProxyPassReverse  /api/graphql http://host.docker.internal:3001
                </IfDefine>

                and would set up my proxy.  I don't know if setting a normal environment variable will suffice, so maybe make sure you're running something like 

                COMMERCE_ENDPOINT=<Adobe_IO_Endpoint> ./docker_run.sh out host.docker.internal:4503 80

                 

                 

                For me when I was doing it with my configs above, I had set up another local proxy that passes everything from port 3001 to Adobe I/O - that's the proxy that actually gets the dispatcher to properly forward along to Adobe I/O:

                npx local-cors-proxy --proxyUrl https://adobeioruntime.net/api/v1/web/544668-trexprime-dev/graphql-reference/dispatcher --port 3001 --proxyPartial ""

                but it's possible you can just supply that endpoint in your start command and do away with the local-cors-proxy.  I'm trying to remember why I did it this way, but I may have just been making things harder than they needed to be.

                Passing variables into the Dispatcher is shown here https://experienceleague.adobe.com/docs/experience-manager-learn/cloud-service/local-development-environment-set-up/dispatcher-tools.html in the Dispatcher Tools Logs section.

                Hope that helps!

                  Terms & ConditionsAccessibility statement

                  Loading footer...