Expand my Community achievements bar.

Adobe Summit 2025: AEM Session Recordings Are Live! Missed a session or want to revisit your favorites? Watch the latest recordings now.
Watch Now!

Mark Solution

This conversation has been locked due to inactivity. Please create a new post.

Allow AEM Servlet only from allowed domains

Avatar

Level 2
Level 2
8/26/20 1:21:18 AM

We have a requirement where we want to allow the Post Servlets only from certain domains. Our site is public so no user does not need to be authenticated, hence we are not able to control through CUG or using csrf-token. Is it possible to do something with Akamai or dispatcher where we block requests from other domain for a specific path. Also please keep in mind the the requests should not be hacked through Post man.

Views

1.8K

Replies

2
Sign in to like this content

Total Likes

Translate
Translate
2 Replies

Avatar

Community Advisor
Community Advisor
8/26/20 7:26:15 AM

Hi,

Please check

https://aem6solutions.wordpress.com/2015/06/19/apache-sling-referrer-filter/

 https://sourcedcode.com/blog/aem/in-aem-what-is-the-apache-sling-referrer-filter-osgi-configuration

 

Arun Patidar

AEM LinksLinkedIn

Views

1.8K

Replies

0
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Level 5
Level 5
12/8/22 9:03:26 PM

hi @tkantk - How had you handled the scenario mentioned above

Views

1.1K

Replies

0
Sign in to like this content

Total Likes

Translate
Translate
Related Conversations
GraphQL error on AEM 6.5 - did not yield a Content Fragment

Views

152

Likes

0

Replies

0
AEM as a Cloud Service 2025.01.0- Release update

Views

540

Likes

6

Replies

1
AEM persisted query is not getting cached in dispatcher

Views

321

Likes

0

Replies

4
Creating an AEM asset programmatically on AEMaaCS using Java, but it fails to generate previews/renditions

Views

358

Likes

0

Replies

6
[AEM Gems] Mastering Cache Efficiency for Optimal Page Performance

Views

764

Likes

9

Replies

2