Your achievements

Level 1

0% to

Level 2

Tip /
Sign in

Sign in to Community

to gain points, level up, and earn exciting badges like the new
Bedrock Mission!

Learn more

View all

Sign in to view all badges

ankitg2807
Community profile ankitg2807 Level 2
Job title here
Location here
6 BADGES
Level 2

Level 2

Learn more
Joined the community 24-11-2020 5:01:23 AM
Offline
Top badges earned by ankitg2807
Customize the badges you want to showcase on your profile
Re: Initiate SAML logout request at IDP on session timeou...
Avatar
Give Back 5
Level 2
ankitg2807
Level 2

Likes

0 likes

Total Posts

10 posts

Correct reply

0 solutions
Top badges earned
Give Back 5
Ignite 3
Give Back 3
Give Back
Ignite 1
View profile
ankitg2807
- Adobe Experience Manager
HI ,I have configured logout on aem and it is successfully logging out user from aem & Okta , but after logout on Okta, okta submits a SAML Logout response to SingleLogoutService .This service URL I gave as /content/test/utils/secure/saml_logout , but when response is posted to this endpoint from okta, it get 500 errror in AEM as below - org.apache.sling.api.resource.PersistenceException: Resource at '/content/test/utils/secure/saml_logout' is not modifiablePlease can you let me know what should...

Views

170

Likes

0

Replies

0
Re: Initiate SAML logout request at IDP on session timeout on AEM.
Avatar
Give Back 5
Level 2
ankitg2807
Level 2

Likes

0 likes

Total Posts

10 posts

Correct reply

0 solutions
Top badges earned
Give Back 5
Ignite 3
Give Back 3
Give Back
Ignite 1
View profile
ankitg2807
- Adobe Experience Manager
HI ,I have configured logout on aem and it is successfully logging out user from aem & Okta , but after logout on Okta, okta submits a SAML Logout response to SingleLogoutService .This service URL I gave as /content/test/utils/secure/saml_logout , but when response is posted to this endpoint from okta, it get 500 errror in AEM as below - org.apache.sling.api.resource.PersistenceException: Resource at '/content/test/utils/secure/saml_logout' is not modifiablePlease can you let me know what should...

Views

178

Likes

0

Replies

0
Re: User Synchronization between publish for SAML Authent...
Avatar
Give Back 5
Level 2
ankitg2807
Level 2

Likes

0 likes

Total Posts

10 posts

Correct reply

0 solutions
Top badges earned
Give Back 5
Ignite 3
Give Back 3
Give Back
Ignite 1
View profile
ankitg2807
- Adobe Experience Manager
How to enable User Sync between the 2 publishers ?

Views

162

Likes

0

Replies

0
User Synchronization between publish for SAML Authentication
Avatar
Give Back 5
Level 2
ankitg2807
Level 2

Likes

0 likes

Total Posts

10 posts

Correct reply

0 solutions
Top badges earned
Give Back 5
Ignite 3
Give Back 3
Give Back
Ignite 1
View profile
ankitg2807
- Adobe Experience Manager
Hi,I have configured SAML Authn Handler to enable login on website. We have 2 publish instances behind 2 dispatchers and a loadbalancer.Encapsulated tokens are enabled on the 2 publish instances . When we login , user gets created on the publish instance serving the request but on refresh the request goes to 2nd publish instance and I get 404. On 2nd publish instance I can see the username of loggedin user in access log but the same user is not present in useradmin and request shows 404. How can...

Views

205

Likes

0

Replies

4
Re: AEM 6.4 translation for ContentFragments not working!
Avatar
Give Back 5
Level 2
ankitg2807
Level 2

Likes

0 likes

Total Posts

10 posts

Correct reply

0 solutions
Top badges earned
Give Back 5
Ignite 3
Give Back 3
Give Back
Ignite 1
View profile
ankitg2807
- Adobe Experience Manager
Hi,I tried adding the for my custom component in my custom site config translation_rules.xml but it didn't work. I then added my custom component to the global config using this : http://localhost:4502/libs/cq/translation/translationrules/contexts.html . After adding to global config, content fragments in my custom component started getting added to translation project. Is this ok ? Do we always add to global config ? Thanks!

Views

150

Likes

0

Replies

0
Re: Role based authorization after SAML Authentication
Avatar
Give Back 5
Level 2
ankitg2807
Level 2

Likes

0 likes

Total Posts

10 posts

Correct reply

0 solutions
Top badges earned
Give Back 5
Ignite 3
Give Back 3
Give Back
Ignite 1
View profile
ankitg2807
- Adobe Experience Manager
Hi,Thanks for pointing this out. As I mentioned earlier I dont have fixed groups which I can preset in AEM. Groups keep getting created & deleted in Active Directory. The filter I have written works fine for ".html" but was allowing access to page json as you mentioned, so I changed the filter to run on ".json" also and that prevents access to page json also. Is this approach fine ? Will the filter cause any performance issue since it will evaluate all html & json requests ?Thanks!

Views

367

Likes

0

Replies

0
Re: Role based authorization after SAML Authentication
Avatar
Give Back 5
Level 2
ankitg2807
Level 2

Likes

0 likes

Total Posts

10 posts

Correct reply

0 solutions
Top badges earned
Give Back 5
Ignite 3
Give Back 3
Give Back
Ignite 1
View profile
ankitg2807
- Adobe Experience Manager
Thanks for your comments. I have written Servlet filter code in which I am able to get page properties , including security groups. But before that I need to check if the page is secured or not. I am not able to get "cq:authenticationRequired" or "jcr:mixinTypes" in filter code. These are set when we check 'Enable Authentication' checkbox in Advanced page properties. In CRX DE , I dont see "cq:authenticationRequired" in jcr:content node properties, I do see "jcr:mixinTypes" as property of page n...

Views

406

Likes

0

Replies

0
Re: Role based authorization after SAML Authentication
Avatar
Give Back 5
Level 2
ankitg2807
Level 2

Likes

0 likes

Total Posts

10 posts

Correct reply

0 solutions
Top badges earned
Give Back 5
Ignite 3
Give Back 3
Give Back
Ignite 1
View profile
ankitg2807
- Adobe Experience Manager
Thanks for your response . Actually the groups are not fixed . New groups keep getting created for different campaigns , so I need to build it in a way so that I can assign any group to a page and during login Okta will tell me whether the user is part of that group. Following the filter approach suggested by sanketk90166544

Views

380

Likes

0

Replies

0
Role based authorization after SAML Authentication
Avatar
Give Back 5
Level 2
ankitg2807
Level 2

Likes

0 likes

Total Posts

10 posts

Correct reply

0 solutions
Top badges earned
Give Back 5
Ignite 3
Give Back 3
Give Back
Ignite 1
View profile
ankitg2807
- Adobe Experience Manager
Hi, I have a requirement to add role based authorization for some secure pages. I want to set a property for pages called "Security Groups". This property will contain group names which shall have access to that page. I have configured SAML authn handler with Okta IDP . After login when SAML response is submitted to AEM ACS url , viz - /content/****/saml_login , I want to read the "Security Groups" from page property and groups of loggedin user from SAML response , and if there is a match betwee...

Views

568

Likes

0

Replies

9
SAML authentication does not redirect to original page
Avatar
Give Back 5
Level 2
ankitg2807
Level 2

Likes

0 likes

Total Posts

10 posts

Correct reply

0 solutions
Top badges earned
Give Back 5
Ignite 3
Give Back 3
Give Back
Ignite 1
View profile
ankitg2807
- Adobe Experience Manager
Hi,We have configured SAML Authn handler in our AEM 6.5 . We have a public page (ex - /content/test/mypage.html ) which has a link to login page , ex - /content/test/login.html.Login page URL is configured in SAML Authentication handler & Sling Authentication Service. On click of login link, we redirect to http://localhost:4503/content/test/login.html?saml_request_path=http://localhost:4503/content/test/mypage.html . This takes us to Okta IDP login page and Okta then submits SAML response to ACS...

Views

232

Likes

0

Replies

1
Likes given to