Expand my Community achievements bar.

Submissions are now open for the 2026 Adobe Experience Maker Awards.
Apply Now

Mark Solution

This conversation has been locked due to inactivity. Please create a new post.

Allow AEM Servlet only from allowed domains

Avatar

Level 2
Level 2
8/26/20 1:21:18 AM

We have a requirement where we want to allow the Post Servlets only from certain domains. Our site is public so no user does not need to be authenticated, hence we are not able to control through CUG or using csrf-token. Is it possible to do something with Akamai or dispatcher where we block requests from other domain for a specific path. Also please keep in mind the the requests should not be hacked through Post man.

Views

2.0K

Replies

2
Sign in to like this content

Total Likes

Translate
Translate
2 Replies

Avatar

Community Advisor
Community Advisor
8/26/20 7:26:15 AM

Hi,

Please check

https://aem6solutions.wordpress.com/2015/06/19/apache-sling-referrer-filter/

 https://sourcedcode.com/blog/aem/in-aem-what-is-the-apache-sling-referrer-filter-osgi-configuration

 

Arun Patidar

AEM LinksLinkedIn

Views

1.9K

Replies

0
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Level 5
Level 5
12/8/22 9:03:26 PM

hi @tkantk - How had you handled the scenario mentioned above

Views

1.3K

Replies

0
Sign in to like this content

Total Likes

Translate
Translate
Related Conversations
What an ideal MCP server for AEM should look like ?

Views

696

Likes

0

Replies

2
What’s the Most Underrated AEM Feature You Can’t Live Without?

Views

1.8K

Likes

0

Replies

1
Headless AEM: Are We Building for the Future or Just Adding Complexity?

Views

25.8K

Likes

2

Replies

1
AEM 6.5 EOL: Upgrade, Migrate, or Wait—What’s the Smart Move?

Views

2.5K

Likes

5

Replies

17
👋 Welcome New AEM Community Members — August 2025

Views

2.8K

Likes

13

Replies

16