Your achievements

Level 1

0% to

Level 2

Tip /
Sign in

Sign in to Community

to gain points, level up, and earn exciting badges like the new
BedrockMission!

Learn more

View all

Sign in to view all badges

SOLVED

AEM SAML Authentication handler + CURL

vijay_mc3593805
Level 1
Level 1

Hi 

 

I have setup SAML auth handler on my AEM Authors and Publishers. Users are able to login and perform the required operations. My issue is - 

We use Jenkins/jules for build and release, jenkins uses cURL to upload and install code on the AEM instances. With SAML handler forwarding requests to IDP for authentication I am unable to get this working. In the past we used AEM system users but now we have a corp requirement to not use system accounds and use FID's with breakglass for password. Please share any ideas on how i can enable cURL to authenticate over SAML or if there are any workarounds

thanks for your help

regards- Vijay

AEM AEM 6 Developer AEM 6.4 curl SAML2.0
1 Accepted Solution
berliant
Correct answer by
Employee
Employee

Despite the SAML configuration you still can log as a local user to CRXDe. For that you can possibly use someting like:

curl -sv -X POST -u "admin:*******" -b <COOKIE FILE> --data "j_username=admin" --data "j_password=********" --data "j_workspace=crx.default" --data "j_validate=true" --data "_charset_=utf-8" http://<host>:<port>/libs/granite/core/content/login.html/j_security_check 

View solution in original post

2 Replies
berliant
Correct answer by
Employee
Employee

Despite the SAML configuration you still can log as a local user to CRXDe. For that you can possibly use someting like:

curl -sv -X POST -u "admin:*******" -b <COOKIE FILE> --data "j_username=admin" --data "j_password=********" --data "j_workspace=crx.default" --data "j_validate=true" --data "_charset_=utf-8" http://<host>:<port>/libs/granite/core/content/login.html/j_security_check 

View solution in original post

vijay_mc3593805
Level 1
Level 1
Thanks for the reponse. We are not allowed to use local / system users to upload and install code / jar files on AEM, we have a compliance requirement to use a FID on LDAP. Please addvice