내 커뮤니티 업적 표시줄을 확대합니다.

Submissions are now open for the 2026 Adobe Experience Maker Awards.
Apply Now

Mark Solution

활동이 없어 이 대화는 잠겼습니다. 새 게시물을 작성해 주세요.

해결됨

which is better for using external authentication with DB ?

Avatar

Level 5
Level 5
16. 2. 24. 5:25:53 AM

 Based on the scenarios - please share any point of views / additional inputs

Scenario1 :- Which is better for custom authentication with  a DB - User name and Password in DB and no need them to be synced into AEM

(1) Simple Servlet Filter for url pattern & then a Servlet for login form 

(2) Sling Custom Authentication Handler & Custom Login Module with Pre - Authenticated State

(3) OAK Identity provider & Custom Login Module with Pre - Authenticated State

From my POV would prefer an (1) Servlet - Clean and Simple also web entry is the first layer of defense -  any additional point of views ?

 Scenario2 - Which is better for custom authentication with  a DB - User name and Password in DB and need to sync them to AEM for JCR permisons

(1) Simple Servlet Filter for url pattern & then a Servlet for login form 

(2) Sling Custom Authentication Handler & OOTB Login Module

(3) OAK Identity provider & OOTB Login Module

From my POV would prefer an (2) or (3) as user needs to be synced and need a jcr session  any additional point of views ?

조회 수

2.5K

답글

4
이 콘텐츠를 좋아요 표시하려면 로그인하십시오

좋아요 수

번역
번역
1 채택된 해결책 개

Avatar

정확한 답변 작성자:
Employee
Employee
16. 2. 26. 5:44:33 AM

Regarding the first scenario, what I was trying to say is that you cannot get the full functionality of AEM without syncing users. I suppose in some limited use case, this might work, but I've rarely see a case where only authentication was necessary or appropriately. After all, if you are authenticating users, it is usually to give them some kind of value in having done that authentication, which means some level of authorization as well.

원본 게시물의 솔루션 보기

조회 수

1.7K

답글

0
이 콘텐츠를 좋아요 표시하려면 로그인하십시오

좋아요 수

번역
번역
답변으로 이동
4 답변 개

Avatar

Employee
Employee
16. 2. 24. 6:31:15 AM

Hi,

I don't think the first scenario is really work considering.

For the second scenario, you should be using an Oak Identity Provider. No Custom Login Module would be necessary.

Regards,

Justin

조회 수

1.6K

답글

0
이 콘텐츠를 좋아요 표시하려면 로그인하십시오

좋아요 수

번역
번역

Avatar

Level 5
Level 5
16. 2. 24. 6:51:50 AM

Hi Justin,

Not getting your view on the 1st Scenario - Can you please elaborate 

What will be the pros /cons of using a servlet for 1st Scenario

조회 수

1.2K

답글

0
이 콘텐츠를 좋아요 표시하려면 로그인하십시오

좋아요 수

번역
번역

Avatar

Level 5
Level 5
16. 2. 24. 6:58:40 AM

Yes no custom login module for scenario 2 - that was a copy / paste 🙂 as user synced  via sync handler the default login model should work . Updated the scenario with OOTB login module

조회 수

1.2K

답글

0
이 콘텐츠를 좋아요 표시하려면 로그인하십시오

좋아요 수

번역
번역

Avatar

정확한 답변 작성자:
Employee
Employee
16. 2. 26. 5:44:33 AM

Regarding the first scenario, what I was trying to say is that you cannot get the full functionality of AEM without syncing users. I suppose in some limited use case, this might work, but I've rarely see a case where only authentication was necessary or appropriately. After all, if you are authenticating users, it is usually to give them some kind of value in having done that authentication, which means some level of authorization as well.

조회 수

1.7K

답글

0
이 콘텐츠를 좋아요 표시하려면 로그인하십시오

좋아요 수

번역
번역
답변으로 이동
관련 대화
Lucene Indexing for content fragment "unique" text field option Solved

조회 수

55

Likes

0

답글

2
Best practice for handling configs.json exposure in Adobe Commerce on Edge Delivery Services storefront Solved

조회 수

66

Likes

0

답글

1
Adaptive form is breaking after deploying project code.

조회 수

22

Likes

0

답글

0
AEMaaCS Dispatcher for multi site

조회 수

34

Likes

0

답글

1
What is AEM EDS Solution for External SAP Commerce Integration

조회 수

56

Likes

0

답글

2