Expand my Community achievements bar.

AEM servlet from external application

Avatar

Level 3

Hi

I am calling my servlet from external application creating a Ajax call invoking csrf token and uploading asset to them.

I get 403 while invoking the servlet. If I remove post from referrer it works. Is there any way to remove post restriction for particular servlet ?

5 Replies

Avatar

Level 10

You can also remove auth requirements so your 3rd party app can successfully invoke it.

Avatar

Level 3

Hi Smac

How do I do that ? Any security issue doing it ?

Avatar

Level 3

And if I remove Auth req to the servlet how does it upload file to dam. I am sending csrf token in the header for the servlet to add file to DAM. Will it not impact?

Avatar

Community Advisor

Hi,

Did you updated the Apache Sling Referrer Filter configuration in order to add host (Allow Hosts property)which can post to aem



Arun Patidar