Expand my Community achievements bar.

Don’t miss the AEM Skill Exchange in SF on Nov 14—hear from industry leaders, learn best practices, and enhance your AEM strategy with practical tips.
Read More & Register today!
SOLVED

AEM dispatcher post method configurations

Avatar

Level 1
Level 1
2/15/21 3:25:58 AM

Hi All,

I would like to refine the post method configuration on dispatcher filters. So ,the idea is to block all the post methods in my repository on adding the below condition.

//001 {/type "deny" /method "POST" /url "/content*"}

The above filter blocks the entire post methods present in my content content . So ,I need to allow only the required post methods present on my project.

//002 {type "allow" /method "POST" url "/content/[.]*.html"}

Adding on the above filter would be allowing the required post method with html selectors. So, whether the above //002 filter is sufficient to allow all the content paths with post servlet calls without any blockage

Kindly suggest on the above and your ideas on allowing the post calls

Thanks.

 

Views

3.5K

Replies

4
Sign in to like this content

Total Likes

Translate
Translate
1 Accepted Solution

Avatar

Correct answer by
Community Advisor
Community Advisor
2/15/21 4:29:07 AM

yes, that should work.

Please see this

https://experienceleague.adobe.com/docs/experience-manager-dispatcher/using/configuring/dispatcher-c...

 

Example Filter: Enable POST Requests

The following example filter allows submitting form data by the POST method:

/filter {
    /0001  { /glob "*" /type "deny" }
    /0002 { /type "allow" /method "POST" /url "/content/[.]*.form.html" }
}

View solution in original post

Views

3.4K

Replies

2
Sign in to like this content

Total Likes

Translate
Translate
Jump to reply
4 Replies

Avatar

Community Advisor
Community Advisor
2/15/21 4:26:49 AM

Hi,

you can create your servlet with some selectors and allow only those selector requests to avoid other open post request url as well from your project. Though I am not sure about your use case.



Arun Patidar

Views

3.4K

Replies

0
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Correct answer by
Community Advisor
Community Advisor
2/15/21 4:29:07 AM

yes, that should work.

Please see this

https://experienceleague.adobe.com/docs/experience-manager-dispatcher/using/configuring/dispatcher-c...

 

Example Filter: Enable POST Requests

The following example filter allows submitting form data by the POST method:

/filter {
    /0001  { /glob "*" /type "deny" }
    /0002 { /type "allow" /method "POST" /url "/content/[.]*.form.html" }
}

Views

3.4K

Replies

2
Sign in to like this content

Total Likes

Translate
Translate
Jump to reply

Avatar

Level 2
Level 2
2/15/21 5:34:21 AM
In response to SureshDhulipudi

Thanks suresh .

But my question is it would not be blocking the post method servlet calls other than form data.

Views

3.4K

Replies

0
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Community Advisor
Community Advisor
2/15/21 3:53:04 PM
In response to SureshDhulipudi

As mention by @arunpatidar , it is better to use selectors and enable it -

 

/0063 { /type "allow" /url "POST /content/[.]*.commerce.cart.json" } # allow POSTs to update the shopping cart

 

Views

3.4K

Replies

0
Sign in to like this content

Total Likes

Translate
Translate
Related Conversations
Optimizing Daily API Calls in AEM: A Better Solution? Solved

Views

150

Likes

0

Replies

5
RTE full options not appearing in minimized view AEM 6.5 cloud

Views

60

Likes

0

Replies

1
Redirects do not work with x-aem-client-country header

Views

75

Likes

0

Replies

1
How to Implement OAuth 2.0 in AEM as the Client Application | AEMasCS

Views

117

Likes

0

Replies

2
How to managing Cross-Domain Redirects in AEM Cloud

Views

166

Likes

0

Replies

7