Highlighted

AEM servlet from external application

Avatar

Avatar

rajeshs28932860

Avatar

rajeshs28932860

rajeshs28932860

25-03-2019

Hi

I am calling my servlet from external application creating a Ajax call invoking csrf token and uploading asset to them.

I get 403 while invoking the servlet. If I remove post from referrer it works. Is there any way to remove post restriction for particular servlet ?

Replies

Highlighted

Avatar

Avatar

smacdonald2008

Total Posts

12.7K

Likes

1.4K

Correct Answer

2.3K

Avatar

smacdonald2008

Total Posts

12.7K

Likes

1.4K

Correct Answer

2.3K
smacdonald2008

25-03-2019

You can also remove auth requirements so your 3rd party app can successfully invoke it.

Highlighted

Avatar

Avatar

rajeshs28932860

Avatar

rajeshs28932860

rajeshs28932860

25-03-2019

Hi Smac

How do I do that ? Any security issue doing it ?

Highlighted

Avatar

Avatar

rajeshs28932860

Avatar

rajeshs28932860

rajeshs28932860

25-03-2019

And if I remove Auth req to the servlet how does it upload file to dam. I am sending csrf token in the header for the servlet to add file to DAM. Will it not impact?

Highlighted

Avatar

Avatar

smacdonald2008

Total Posts

12.7K

Likes

1.4K

Correct Answer

2.3K

Avatar

smacdonald2008

Total Posts

12.7K

Likes

1.4K

Correct Answer

2.3K
smacdonald2008

29-04-2019

Highlighted

Avatar

Avatar

Arun_Patidar

MVP

Total Posts

2.9K

Likes

958

Correct Answer

820

Avatar

Arun_Patidar

MVP

Total Posts

2.9K

Likes

958

Correct Answer

820
Arun_Patidar
MVP

29-04-2019

Hi,

Did you updated the Apache Sling Referrer Filter configuration in order to add host (Allow Hosts property)which can post to aem