Hi Team,
We are using Caching Secured Content for protecting secured content, currently we are observing two issues
Below is the auth checker config.
/auth_checker {
# request is sent to this URL with '?uri=<page>' appended
/url "/bin/securedcontentauth"
# only the requested pages matching the filter section below are checked,
# all other pages get delivered unchecked
/filter {
/0000 {
/glob "*"
/type "deny"
}
/0001 {
/glob "/content/mysite/us/en/*private*"
/type "allow"
}
/0002 {
/glob "/content/dam/mysite/private/*"
/type "allow"
}
}
# any header line returned from the auth_checker's HEAD request matching
# the section below will be returned as well
/headers {
/0000 {
/glob "*"
/type "deny"
}
/0001 {
/glob "Set-Cookie:*"
/type "allow"
}
}
}
Solved! Go to Solution.
Views
Replies
Total Likes
Hello @AG-AA
1. I hope you have disabled CDN caching for the "/content/dam/mysite/private/*"
Before you test for auth checker, please assure that the content is not already cached on CDN.
2. Also validate from an incognito window
3. If there are multiple dispatchers, request will hit only one dispatcher, hence you would see the logs also in one only
4. Assure that all the dispatchers have the same config.
5. Enable debug logs on dispatcher, is auth_checker is active, you should see log like
AuthChecker: initialized with URL 'configured_url'.
6. Also, you would be able to better tail the logs.
Set DISP_LOG_LEVEL=debug in dispatcher for the same. Via Baseline variables tthat are predefined in the file conf.d/variables/global.vars
.
Thanks for the reply.
Hi @AG-AA
1. You need to create a Filter to check the authentication when GET request hit publish.
2. You need to create a servlet to check the authentication when HEAD request hit publish.(e.g. /bin/securedcontentauth) -Done
3. For assets make sure you have performed check for all the assets type, if you are using cug to check access then you need to apply cug groups in all the assets subfolders
Thanks for the reply.
@AG-AA Did you find the suggestions from users helpful? Please let us know if more information is required. Otherwise, please mark the answer as correct for posterity. If you have found out solution yourself, please share it with the community.
Views
Replies
Total Likes
Views
Likes
Replies
Views
Likes
Replies
Views
Likes
Replies