Adobe Experience Manager Sites & More

MandaPavanKumar · 1/19/23

Hi All,

Can anyone please help me when I am craeting the user programatically it is giving me the javax.jcr.AccessDeniedException: Access denied.

Thanks,

Pavan

Nitin_laad · 1/20/23

Hi @MandaPavanKumar you can try below sample code, assuming system user is having all required permission in publish environment -

 @Activate
    public void createLocalUser() {
        try {
            Map<String, Object> param = new HashMap<>();
            param.put(ResourceResolverFactory.SUBSERVICE, "system-user");
            ResourceResolver resolver = resolverFactory.getServiceResourceResolver(param);
            UserManager userManager = resolver.adaptTo(UserManager.class);
            Authorizable user = userManager.createUser("newlocaluser", "password");
            user.setProperty("firstName", "test");
            user.setProperty("lastName", "user");
            user.addGroup("group1");
            userManager.updateUser(user);
            LOG.info("Local user newlocaluser created successfully.");
            resolver.close();
        } catch (LoginException | RepositoryException e) {
            LOG.error("Error creating local user: {}", e.getMessage());
        }

View solution in original post

Umesh_Thakur · 1/19/23

did you check the permission of the system user, you are using to save the user node.?

Please verify that.

MandaPavanKumar · 1/19/23

Yes I ahve verified the permissions to the system user and that user is having enough permissions to create user

Siva_Sogalapalli · 1/19/23

Below is the sample code to create user:

Map<String, Object> param = new HashMap<String, Object>();

param.put(ResourceResolverFactory.SUBSERVICE, "service-userid");

ResourceResolver resolver = resourceFact.getServiceResourceResolver(param);

org.apache.jackrabbit.api.security.user.UserManager userManager = resolver.adaptTo(org.apache.jackrabbit.api.security.user.UserManager.class);
if(userManager == null)
{
    log.error("userManager == null!");
    return;
}else {
    String username = "mytestuser";
    String password = "password";
    org.apache.jackrabbit.api.security.user.User user = userManager.createUser(username, password);
}

Note: please make sure system user has permissions to create user.

MandaPavanKumar · 1/19/23

Hi Siva,

Can you please correct me that in this line the login is reffering to username right.

 org.apache.jackrabbit.api.security.user.User user = userManager.createUser(login, password);

Thanks,

Pavan

Siva_Sogalapalli · 1/19/23

yes, you're right, it was typo mistake, corrected it.

MandaPavanKumar · 1/19/23

Hi Siva,

I have adoubt when we try to create user at published site then I am facing the issue. Can you please help me.

Thanks,

Pavan

Siva_Sogalapalli · 1/19/23

You mean, are you trying to create the user on publisher instance ? or you need to create user on AEM author /publisher when the user submits request from the published site etc?

MandaPavanKumar · 1/19/23

Yes

Kiran_Vedantam · 1/19/23

Hi @MandaPavanKumar

Please check similar query with the solution here:: https://experienceleaguecommunities.adobe.com/t5/adobe-experience-manager/programmatic-user-creation...

Hope this helps!

Thanks,
Kiran Vedantam.

MandaPavanKumar · 1/19/23

I followed the same implementation still it is showing access denied

Nitin_laad · 1/20/23

Hi @MandaPavanKumar you can try below sample code, assuming system user is having all required permission in publish environment -

 @Activate
    public void createLocalUser() {
        try {
            Map<String, Object> param = new HashMap<>();
            param.put(ResourceResolverFactory.SUBSERVICE, "system-user");
            ResourceResolver resolver = resolverFactory.getServiceResourceResolver(param);
            UserManager userManager = resolver.adaptTo(UserManager.class);
            Authorizable user = userManager.createUser("newlocaluser", "password");
            user.setProperty("firstName", "test");
            user.setProperty("lastName", "user");
            user.addGroup("group1");
            userManager.updateUser(user);
            LOG.info("Local user newlocaluser created successfully.");
            resolver.close();
        } catch (LoginException | RepositoryException e) {
            LOG.error("Error creating local user: {}", e.getMessage());
        }

MandaPavanKumar · 1/22/23

Hi Nitin,

Let me try it and will you know if I face any issue.

Thanks,

Pavan

MandaPavanKumar · 1/23/23

Hi Nitin,

I tried but its not working for me. Even thoug I have provided the enough permissions to the system user that I had created.

Thanks,

Pavan

Shivam153 · 1/22/23

You can use repository initialization concept here.

https://sling.apache.org/documentation/bundles/repository-initialization.html

Hope it will work!

Thanks!

MandaPavanKumar · 1/23/23

Hi Shivam,

Correct me if I am wrong that when the site was published at dispatcher level. And now if we try to create the user at AEM end is it possible ? can you please hlpe me on this.

Thanks,

Pavan