Adobe Summit 2025: AEM Session Recordings Are Live! Missed a session or want to revisit your favorites? Watch the latest recordings now.
SOLVED
CUG Exempted Principal Behaviour is not proper
I have added cugCheckUser as CUG on folder given in screenshot
Then I have added publishUser in CUG exempted principal configuration as below.
When I am logging with publishUser credentials. I should able to see the content as publishUser is added in CUG Exempted principal configuration.
If I login with cugCheckUser credentials I can see content.
Why CUG Exempted principal not behaving properly.
1 Accepted Solution
Correct answer by
Hi @akshaybhujbale,
It's not working because you are using deprecated configuration. According to the documentation:
Instead of Adobe Granite Closed User Group (CUG) Support (com.day.cq.auth.impl.CugSupportImpl) you should use
Apache Jackrabbit Oak CUG Exclude List (org.apache.jackrabbit.oak.spi.security.authorization.cug.impl.CugExcludeImpl) to define users/groups you would like to exclude from CUG verification.
Correct answer by
Hi @akshaybhujbale,
It's not working because you are using deprecated configuration. According to the documentation:
Instead of Adobe Granite Closed User Group (CUG) Support (com.day.cq.auth.impl.CugSupportImpl) you should use
Apache Jackrabbit Oak CUG Exclude List (org.apache.jackrabbit.oak.spi.security.authorization.cug.impl.CugExcludeImpl) to define users/groups you would like to exclude from CUG verification.
Related Conversations
