Expand my Community achievements bar.

Don’t miss the AEM Skill Exchange in SF on Nov 14—hear from industry leaders, learn best practices, and enhance your AEM strategy with practical tips.
Read More & Register today!
SOLVED

Impersonate a User From a Backend Custom Service

Avatar

Level 3
Level 3
10/27/21 5:10:10 AM

We have a custom service which is supposed to send emails to the end users (user data is saved in AEM) whenever a file stored in DAM is modified or a new file is uploaded under a certain DAM location. So, we are using event handler for catching the add/edit event, however, the email should be sent to the end users ONLY if the user has access to that file as per their assigned permissions through groups. So, in our even handler we need to first impersonate the user and then get the session of the impersonated user in order to check if that user has permissions to the file or not.

 

We are looking for any ideas on how to impersonate a user using code in an AEM service.

Views

1.2K

Replies

4
Sign in to like this content

Total Likes

Translate
Translate
1 Accepted Solution

Avatar

Correct answer by
Community Advisor
Community Advisor
10/27/21 5:40:30 AM

Hi @gauravs23 

Please check below thread and see if that works :

 

https://experienceleaguecommunities.adobe.com/t5/adobe-experience-manager/api-to-check-user-access-t...

 

Note: Also, please use latest APIs. 

View solution in original post

Views

1.2K

Replies

3
Sign in to like this content

Total Likes

Translate
Translate
Jump to reply
4 Replies

Avatar

Correct answer by
Community Advisor
Community Advisor
10/27/21 5:40:30 AM

Hi @gauravs23 

Please check below thread and see if that works :

 

https://experienceleaguecommunities.adobe.com/t5/adobe-experience-manager/api-to-check-user-access-t...

 

Note: Also, please use latest APIs. 

Views

1.2K

Replies

3
Sign in to like this content

Total Likes

Translate
Translate
Jump to reply

Avatar

Level 3
Level 3
10/28/21 1:37:55 AM
In response to Siva_Sogalapalli

Thanks SivaPrasad for pointing me to the right thread. The solution provided there works.

 

However, it works only with admin resource resolver but not with any service resource resolver as it gives an error "Impersonation not allowed" even though the service user being used has jcr:all rights on /home.

 

Do you know if we are forced to use admin resolver if we want to do impersonation?

Views

1.2K

Replies

2
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Level 3
Level 3
10/28/21 2:50:29 AM
In response to Siva_Sogalapalli

Yes, that's what I thought too and was looking for another opinion on the same. Thanks for all the help SivaPrasad.

Views

1.1K

Replies

0
Sign in to like this content

Total Likes

Translate
Translate
Related Conversations
I am getting errors while building the code taken from wknd git clone

Views

99

Likes

0

Replies

4
Custom index in AEMaaCS environment appeared like it might be causing problem with OOTB query, but updating the index didn't fix it

Views

145

Likes

0

Replies

9
Could not create a technical account and got a 403 error

Views

123

Likes

0

Replies

5
AEM session management and user access

Views

95

Likes

0

Replies

3
[AEM6.5]Add custom JS functionality to OOB ACS Commons Notification.

Views

197

Likes

0

Replies

6