Your achievements

0% to

Tip / to gain points, level up, and earn exciting badges like the new

Adobe Experience Manager Sites & More

Mark Solution

This conversation has been locked due to inactivity. Please create a new post.

SOLVED

Securing servlet

I have a servlet that provides page content in needed JSON format. This JSON will be used by a third party and I need to provide a security level check to this. How can I provide a token authentication in servlet or in ant service/wrapper before servlet to provide a layer of security.

This cannot be done by AEM ACL because the requirement is to do it via code using token authentication.

How can this be achieved?

911

3

1 Accepted Solution

Correct answer by

Hi,
Yes you need it but not in AEM. you can set it up at apache

https://www.cloudsavvyit.com/1361/how-to-setup-basic-http-authentication-on-apache/

Arun Patidar

View solution in original post

896

0

Jump to reply

3 Replies

The alternative could be the basic auth, which can be setup easily at apache level. If that suits your requirement?

For token I am no sure if you can validate the token from AEM and consumer from the identity provider.

Arun Patidar

904

2

so for basic auth, do i need to create userID and password in aem useradmin?

902

1

Correct answer by

Hi,
Yes you need it but not in AEM. you can set it up at apache

https://www.cloudsavvyit.com/1361/how-to-setup-basic-http-authentication-on-apache/

Arun Patidar

897

0

Related Conversations

Servlet as resource type works in DEV Publish but not in Stage Publish - AEM as a Cloud Service Solved

Solved

379

0

4

Azure Entra ID as OAuth Handler for server-to-server access for third party application to AEM servlet Solved

Solved

241

0

1

replacing javax.servlet with jakarta.servlet dependency for AEM Servlet Solved

Solved

1.4K

0

5

Servlet using resourceType Solved

Solved

374

0

4

Workflow name in a servlet Solved

Solved

510

0

10