Your achievements

Level 1

0% to

Level 2

Tip /
Sign in

Sign in to Community

to gain points, level up, and earn exciting badges like the new
Bedrock Mission!

Learn more

View all

Sign in to view all badges

[AEM Gems Webinar] Accelerating Experience Manager as a Cloud Service development with Rapid Development Environments

XSSFilterImpl: Cannot use custom policies warning on /etc/clientcontext/default/content/jcr:content/stores.init.js


Level 2

We use AEM and AEM Community.

In my logs , I have a large number of warnings like the one below:

any hints / ideas on where i could start looking?

Perhaps in the xssProtection? But it's hard to tell what i should be looking for.

2 Replies


Level 6

Hi by chance do you see any method in com.adobe.granite.xss.impl.XSSFilterImpl  ? that might point to whats missing in your implementation


Level 4

According to a response from Daycare, these log messages can be ignored. However, we believe that certain requests (http://localhost:4502/bin/security/authorizables.json ) generate many such messages. Therefore it is possible slow down or even crash AEM under heavy load of authorizables.json for example. Daycare suggested it is to be fixed in AEM 6.4. in the meantime turning off logging on com.adobe.granite.xss.impl.XSSFilterImpl was the only short term option,