Block access to CRX/CRXDE Lite

Avatar

Avatar

Shaheena_Sk

Avatar

Shaheena_Sk

Shaheena_Sk

17-08-2020

i need to block user access to CRX or CRXDE Lite. My group has inherited permission from OOTB Contributors and I have denied access to these paths as well:

/libs/crx

/libs/cq/core/content/nav/tools/general/crxdelite 

/libs/granite/core/content/nav/operations/crxdelite 

/libs/cq/core/content/welcome/features/crxdeThese helps to hide all the buttons from the instance, but, if I directly hit the CRX URL, i will be able to read the content in it, though i cant create/delete/modify. I am using AEM 6.5.5 without dispatcher.

Accepted Solutions (1)

Accepted Solutions (1)

Avatar

Avatar

Nupur_Jain

MVP

Avatar

Nupur_Jain

MVP

Nupur_Jain
MVP

17-08-2020

Hi @Shaheena_Sk 

 

Crx/de lite access can be disabled on AEM instances by disabling some of the AEM bundles. 

Refer https://www.aemquickstart.in/2015/11/how-to-disable-crxde-and-crxde-lite.html.

 

There is a similar post which you can also refer https://experienceleaguecommunities.adobe.com/t5/adobe-experience-manager/how-to-disable-crx-de-in-a....

 

Hope it helps!

Thanks!

Nupur

Answers (2)

Answers (2)

Avatar

Avatar

vanegi

Employee

Avatar

vanegi

Employee

vanegi
Employee

17-08-2020

If you have a Dispatcher configured in front of your CQ instance, you can block access to CRX and CRXDE Light using the following filter rule in you dispatcher configuration (dispatcher.any)

/ruleLabel{/glob "* /crx*"/type "deny"}

 

To control what features/links are displayed to the users on the welcome screen in authoring mode modify permissions for nodes under /libs/cq/core/content/welcome/features.