Expand my Community achievements bar.

Join expert-led, customer-led sessions on Adobe Experience Manager Assets on August 20th at our Skill Exchange.
Register Now

Mark Solution

This conversation has been locked due to inactivity. Please create a new post.

SOLVED

Enabling QueryBuilder on Publish Server:Key consideration and Authentication on Adobe Cloud Server

Avatar

Level 4
Level 4
5/23/23 8:07:41 AM

Hi All, 

We have a requirement to enable Querybuilder URL[1] on the publish server. 

 

https://localhost:4502/bin/querybuilder.json?p.guessTotal=true&p.limit=10&path=%2fcontent%2fdam&prop...

 

Before procedding with the enablement,it is important to understand the key considerations that need to be taken into account. 

Is it necessory to implement any authentication mechanism for querybuilder. 

 

Can you please share your valueble inputs on the subject?

 

Environment - Adobe Cloud Services

 

 

 

 

Views

578

Replies

2
Sign in to like this content

Total Likes

Translate
Translate
1 Accepted Solution

Avatar

Correct answer by
Community Advisor
Community Advisor
5/23/23 8:29:27 AM

Hello @nj2 

 

Opening querybuilder can easily increase your chances of attacks.

 

1. One could generate any number of queries affecting your system.

2. If one queries on a param which is not indexed, it will affect the performance of the system.

3. One can know the entire structure of the site by firing queries.

4. Large queries will have further impact to the system

 

 

 

Aanchal Sikka

View solution in original post

Views

568

Replies

0
Sign in to like this content

Total Likes

Translate
Translate
Jump to reply
2 Replies

Avatar

Correct answer by
Community Advisor
Community Advisor
5/23/23 8:29:27 AM

Hello @nj2 

 

Opening querybuilder can easily increase your chances of attacks.

 

1. One could generate any number of queries affecting your system.

2. If one queries on a param which is not indexed, it will affect the performance of the system.

3. One can know the entire structure of the site by firing queries.

4. Large queries will have further impact to the system

 

 

 

Aanchal Sikka

Views

569

Replies

0
Sign in to like this content

Total Likes

Translate
Translate
Jump to reply

Avatar

Employee Advisor
Employee Advisor
5/23/23 2:49:55 PM

Hi,

 

In Adobe Cloud Services, additional authentication mechanisms may be required to enable the Querybuilder URL on the publish server. This is because the Querybuilder exposes sensitive information about the content structure and properties of your AEM instance. Implementing proper authentication and authorization mechanisms, such as configuring user credentials or integrating with an identity provider, can help ensure that only authorized users can access the Querybuilder API and protect sensitive information.

Views

551

Replies

0
Sign in to like this content

Total Likes

Translate
Translate
Related Conversations
Vanity URL is not working in AEM Cloud after update the latest jar Solved

Views

92

Likes

0

Replies

3
OSGi Bundle Both Imports and Exports the Same Package Solved

Views

46

Likes

0

Replies

1
Relative vs absolute timeline in AEM as a cloud service Solved

Views

57

Likes

0

Replies

2
On Asset deletion, how to get its properties/details before its deleted. Solved

Views

137

Likes

0

Replies

4
What are the jcr:frozenNode and nt:frozenNode in the CRX repository? And versioning error during replication in Workflow

Views

16

Likes

0

Replies

0