Expand my Community achievements bar.

SOLVED

How to get current user session in osgi service?

Avatar

Level 4
Level 4
10/7/21 10:29:10 PM

Is it possible to get the current user session from osgi service like from slingrequest. I need to get the user session so that I can use the current user permission to replicate some assets.

Views

2.3K

Replies

8
Sign in to like this content

Total Likes

Translate
Translate
1 Accepted Solution

Avatar

Correct answer by
Community Advisor
Community Advisor
10/8/21 4:14:46 AM
In response to thatsmeadarsh

@thatsmeadarsh, I think that the simplest option will be to have/use service user for replication. So it could look like this, assuming you have access to resource resolver for system user:

  • Using system user resource resolver you can get session object and check if user with given id has replication permission for specific path(s)
  • Base on above information you can decide if replication should be executed or not, of course replication will be run using system user.

In general, I do not think there will be an easy way to get session object for specific user in your use case. You can try to use impersonation functionality, but to do this you will need session of admin user anyway.

View solution in original post

Views

2.2K

Replies

0
Sign in to like this content

Total Likes

Translate
Translate
Jump to reply
8 Replies

Avatar

Community Advisor
Community Advisor
10/7/21 11:05:56 PM

@thatsmeadarsh,

The best practice is to use a system user with the correct permissions to make such replication actions, but however, for your use case of acquiring the current, logged in user (from aem author), from a Sling Servlet, try using the code below:

@Override
    protected void doGet(SlingHttpServletRequest request, SlingHttpServletResponse response) throws IOException {
        Session session = request.getResourceResolver().adaptTo(Session.class);
        String userId = Objects.requireNonNull(session).getUserID();
    }

Views

2.3K

Replies

4
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Level 4
Level 4
10/7/21 11:21:41 PM
In response to BrianKasingli

Hi @BrianKasingli 

Thanks for your response. Unfortunately I am not in servlet but in a service implementing ResourceChangelistner. The reason why I am not using system user is by taking current user, I'll be able to check if the current user have replication permission. If they have the permission, I can use the same session to replicate.

 

In servlet we used the same approach but now looking to do this within an osgi service.

 

Thanks

Views

2.3K

Replies

3
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Community Advisor
Community Advisor
10/8/21 2:10:05 AM
In response to thatsmeadarsh

Hi @thatsmeadarsh, you can get user ID that initiates specific change directly from ResourceChange object, i.e.

@Override
public void onChange(List<ResourceChange> changes) {
    for (ResourceChange change : changes) {
        String userId = change.getUserId();
        // ...
    }        
}

 

Views

2.3K

Replies

2
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Level 4
Level 4
10/8/21 2:44:17 AM
In response to lukasz-m

Hi @lukasz-m 

But still I need session to call replicator.

replicator.replicate(session, ReplicationActionType.TEST, path, options);

 

Thanks

Views

2.3K

Replies

1
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Correct answer by
Community Advisor
Community Advisor
10/8/21 4:14:46 AM
In response to thatsmeadarsh

@thatsmeadarsh, I think that the simplest option will be to have/use service user for replication. So it could look like this, assuming you have access to resource resolver for system user:

  • Using system user resource resolver you can get session object and check if user with given id has replication permission for specific path(s)
  • Base on above information you can decide if replication should be executed or not, of course replication will be run using system user.

In general, I do not think there will be an easy way to get session object for specific user in your use case. You can try to use impersonation functionality, but to do this you will need session of admin user anyway.

Views

2.2K

Replies

0
Sign in to like this content

Total Likes

Translate
Translate
Jump to reply

Avatar

Employee Advisor
Employee Advisor
10/8/21 7:25:32 AM

there is nothing like "current user" for an OSGI service. The only concept in AEM which knows about the "current user" is the request, and derived from that a resourceResolver.

That means, to activate something in the context of the current user, it's the easiest if you use a session owned by "current user" to replicate things.

Views

2.2K

Replies

2
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Level 2
Level 2
7/14/22 3:04:47 AM
In response to Jörg_Hoh

We have one requirement where in a metadata has an attribute Product Manager = "somebody@company.com". If the current logged in user's email ID matches that of an asset's Product Manager's value, we need to provide the current user jcr:all to the asset. This is logged in https://issues.apache.org/jira/browse/OAK-9763.  A critical requirement for us and working with the concerned teams to have this prioritized

Views

1.8K

Replies

1
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Employee Advisor
Employee Advisor
7/14/22 3:59:47 AM
In response to gubbynag

If this is a critical requirement for you and you want to have this feature request prioritized, please raise a ticket with Adobe support. The forums are not the right place to get the proper attention to it.

 

(As this comment is not really related to the general topic of this thread in the forums, please raise it as a new thread. Thanks!)

Views

1.8K

Replies

0
Sign in to like this content

Total Likes

Translate
Translate