Hi all,We have a custom servlet which exposes content fragments as JSON. When we hit this servlet with custom domain we are getting "No resource found" error. I have enabled dispatcher trace to debug and getting below error even after adding "allow" filter on GET method in customdomain_filter.any fi...

Hi all,We have a custom_publish_farm.any which support many virtualhosts domains and working fine till I have added a new farm(customfrag_publish_farm.any) for handling requests for a new domain. However after adding I'm observing lot of requests getting 500 internal error and dispatcher.log and mod...

Hi All, Do we have to maintain /conf as code in GIT repo or control this folder access using ACL's? what is  the best practice ? Even though we are in 6.5, we are not yet using Editable templates fully and just starated using Content Fragments. Also planning to move AEM as cloud service in Q3. Appre...

Hi All, We want to use Assets API to only expose Content Fragments as JSON and not allow Create, update and delete operation. What is the best way to block these operation? Add DENY rule in dispatcher filter on POST method for /api/assets path or any other options available? Appreciate inputs. Thank...

HI all, We are configuring 2 SAML configs for 2 sites in publisher. One SAML config is for SiteMinder and other SAML config is for Ping Identity. In each config, I have added content paths for each site, same ranking, updated IDP url's (SM and Ping IDP Url's) with separate Entity ID's, default redir...

Hi all, We are in AEM 6.5.4 with Dispatcher 4.3.2. We are having mulitple sites and maintaining seperate vhost file for each site. Infront of our sites we have CDN. For  TTL, we added below settings in vhost files and we are getting cache-control:max-age=1200 in response headers for all sites except...

Hi All, We have enabled SSO on AEM Author domain( custom) and it's working fine. For logging into crx/de we use internal domain which is directly pointed to Author and hitting this internal domain we used to get normal crx/de login page without triggering SSO login. However recently something change...

Hi all,When we hit our marketing site domain https://domain//libs/granite/core/content/login.html we are getting OOTB AEM login page. As per our security audit, we are not suppose to show login page and display a error page. In dispatcher we already have DENY rule on this path. But still when we hit...