Expand my Community achievements bar.

Don’t miss the AEM Skill Exchange in SF on Nov 14—hear from industry leaders, learn best practices, and enhance your AEM strategy with practical tips.
Read More & Register today!
SOLVED

Permission sensitive caching

Avatar

Level 3
Level 3
1/10/22 12:06:09 AM

HI ,

 

How can we do permission sensitive caching in Akamai for the resources that have a permission on the origin server like AEM.

it would be great help if  comment who has  already worked on this.

 

Thanks,

Venkatesham

Views

769

Replies

2
Sign in to like this content

Total Likes

Translate
Translate
1 Accepted Solution

Avatar

Correct answer by
Community Advisor
Community Advisor
1/10/22 11:32:58 PM

@Apmag 

Akamai CDN has no user base where it can check authentication against, so it can't authenticate for permission.

There are two parts in this question: Authentication and Authorization.

 

Authorization

To grant access by urls we would use property manager rules which can match by value, wildcard or regex.

 

Authentication

  • Akamai can validate by Token Auth (this is a simple signed token added as a query parameter or a cookie to a request).
  • JWT-tokens would be possible (requires some advanced configuration, behaviors in property manager are planned).
  • Such tokens need to be set by the origin as is part of origin application.
  • This video gives an simple example with node.js https://www.youtube.com/watch?v=nbZQPkf5k2w
  • Token Auth is the most popular option.

 

Alternatively Akamai can validate incoming requests could be authenticated against origin (as a https request to origin, once responded with 200 access would be granted and the asset can be delivered from Edge).

This methods are called Centralized and Remote Authorization, please check with your Akamai Representative for details.

 

Regards,

Raja

View solution in original post

Views

753

Replies

1
Sign in to like this content

Total Likes

Translate
Translate
Jump to reply
2 Replies

Avatar

Correct answer by
Community Advisor
Community Advisor
1/10/22 11:32:58 PM

@Apmag 

Akamai CDN has no user base where it can check authentication against, so it can't authenticate for permission.

There are two parts in this question: Authentication and Authorization.

 

Authorization

To grant access by urls we would use property manager rules which can match by value, wildcard or regex.

 

Authentication

  • Akamai can validate by Token Auth (this is a simple signed token added as a query parameter or a cookie to a request).
  • JWT-tokens would be possible (requires some advanced configuration, behaviors in property manager are planned).
  • Such tokens need to be set by the origin as is part of origin application.
  • This video gives an simple example with node.js https://www.youtube.com/watch?v=nbZQPkf5k2w
  • Token Auth is the most popular option.

 

Alternatively Akamai can validate incoming requests could be authenticated against origin (as a https request to origin, once responded with 200 access would be granted and the asset can be delivered from Edge).

This methods are called Centralized and Remote Authorization, please check with your Akamai Representative for details.

 

Regards,

Raja

Views

754

Replies

1
Sign in to like this content

Total Likes

Translate
Translate
Jump to reply
Related Conversations
Recommendation on Dispatcher Cache Configuration: TTL vs Flush Solved

Views

191

Likes

0

Replies

3
how to check logs for cached pages in aem as a cloud service Solved

Views

275

Likes

0

Replies

4
How to clear Fastly cache in AEM cloud ? Solved

Views

651

Likes

0

Replies

8
caching Issue Solved

Views

302

Likes

0

Replies

4
send multiple paths in one dispatcher cache invalidate API

Views

352

Likes

0

Replies

6