Adobe Experience Manager Sites & More

prathyusha_m · 10/15/15

DAM current accept all kinds of assets with extensions such as .jpeg, .png, .pdf, .html, .css, .js, etc... But we need to have a restriction on few of the files such as .css or .js or .html files so that we can avoid CSS[Cross site scripting] attack or any other security vulnerability attacks.

Please suggest how to achieve the blocking of set of file extensions from DAM or is there any way in ADOBE OOB already which servers the purpose.

Upload any files with any extension. DAM just accepts and uploads successfully with out any restriction.

Mshaji · 10/15/15

There are two ways you can do this

1. Media Handler: Write a custom media handler that checks for these files and blocks. Attach this to DAM upload workflow

http://docs.adobe.com/docs/en/cq/5-6-1/dam/dam_media_handlers.html

2. Modify upload asset: DAM upload used /libs/dam/components/assetshare/actions/uploadasset/uploadasset.jsp, overlay this to add filter.

If you look this there are errors handled for different scenaios, you can check the extension of the file and handle it

View solution in original post

Mshaji · 10/15/15

There are two ways you can do this

1. Media Handler: Write a custom media handler that checks for these files and blocks. Attach this to DAM upload workflow

http://docs.adobe.com/docs/en/cq/5-6-1/dam/dam_media_handlers.html

2. Modify upload asset: DAM upload used /libs/dam/components/assetshare/actions/uploadasset/uploadasset.jsp, overlay this to add filter.

If you look this there are errors handled for different scenaios, you can check the extension of the file and handle it

Adobe Experience Manager Sites & More

Blocking DAM for some extensions

Learn

Documentation

Community

Support

Resources

Adobe account

Adobe