Your achievements

Level 1

0% to

Level 2

Tip /
Sign in

Sign in to Community

to gain points, level up, and earn exciting badges like the new
Bedrock Mission!

Learn more

View all

Sign in to view all badges

SOLVED

Saml Autheticated Gated Content

anupam_miglani
Level 2
Level 2

Hi All,
I have a use case where in end-user have to login with SSO and once autheticated i create a user and assign that to a particular group. So this part is startight with OOTB SAML authenticattion handler connector. 

 

Now I want certain content that is only visible by the user who has successfully logged in using SSO. And i am not sure weather CUG concept will be working here.

 

If anyone can share a some past experience around this it'll be great.
@arunpatidar26 @Kautuksahni 

TIA

1 Accepted Solution
Raja-kp
Correct answer by
Level 5
Level 5

Hi @anupam_miglani -

1. Configure the required content path in SAML authentication OSGi configuration in publisher instance.

2. Configure the Domain name that should redirects to authentication page.

3. Create a user/group in publisher instance and grant required permission to the content path (which configured in SAML configuration)

4. Disable the cache for content path in dispatcher.

 

Rajakp_0-1635524750538.png

 

To Implement CUG - Please refer : https://experienceleague.adobe.com/docs/experience-manager-64/administering/security/cug.html?lang=e...

 

View solution in original post

4 Replies
Singaiah_Chintalapudi
Community Advisor
Community Advisor

Configure SAML on AEM publishers and make sure to configure the gated content path (make sure you've all the gated pages under one path). This will ensures the incoming requests to those pages (configured in the SAML configuration) are routed for SSO authentication.

Shashi_Mulugu
Community Advisor
Community Advisor

@anupam_miglani yes this is perfect case of CUG. As suggested by @Singaiah_Chintalapudi please make sure all your secure pages are under one umbrella so that you configure CUG at root level.. 

Also if your secure pages are static..  ie .. content doesn't change from person to person.. try

 

https://www.google.com/url?sa=t&source=web&rct=j&url=https://experienceleague.adobe.com/docs/experie...

Ankur_Khare
Community Advisor
Community Advisor

Hi,

 

Few more queries like whether you want to show  specific component on a page to a specific user or entire page.

If entire page then the solutions provided by others will work but if thats not the case you need to write a custom logic based on the group user belongs to.

Raja-kp
Correct answer by
Level 5
Level 5

Hi @anupam_miglani -

1. Configure the required content path in SAML authentication OSGi configuration in publisher instance.

2. Configure the Domain name that should redirects to authentication page.

3. Create a user/group in publisher instance and grant required permission to the content path (which configured in SAML configuration)

4. Disable the cache for content path in dispatcher.

 

Rajakp_0-1635524750538.png

 

To Implement CUG - Please refer : https://experienceleague.adobe.com/docs/experience-manager-64/administering/security/cug.html?lang=e...

 

View solution in original post