Hi All, Please anyone cloud help me with the fix as i am not sure how to disable these methods on dispatcher. Need to disable  put,options,head,patch,delete and allow only post and get methods on dispatcher.     Regards, Mahesh

Hi All, Kindly help me to create CSR for subdomains. I already followed this link(https://experienceleaguecommunities.adobe.com/t5/adobe-experience-cloud-questions/how-to-generate-a-certificate-signing-request-csr-in-adobe/m-p/589151#M2669) and they are suggesting to use openssl which i am not sure ...

Hi All, Please could you help me with this error i am getting while merging two repo and keeping dispatcher module common. individual repos have no build issue but while merging it shows errors. Project 'com.adobe.cq.cloud:com.adobe.cq.cloud.testing.ui.cypress.tests:0.0.1-SNAPSHOT' is duplicated in ...

@girishb83316758 , the dam update asset workflow is indeed in transient mode that's the reason you don't see it in instance or archive console. It's an oob workflow which runs when you upload any assets so you can make it visible in the console if you uncheck the transient option from the model. @lu...

Hi @Peter_Puzanovs ,   I have a common rewrite file for all environment and if i add your rewrite rule for checking header then it is only for stage environment but what about dev/qa/production?   Thanks, Mahesh 

Hi @Vijayalakshmi_S ,   Even it is very less support for ISDESCENDANTNODE in suggest query it should give same result as what i am getting in local . As the contents are same so why it doesn't give results same as local in dev/qa environment?   Thanks, Mahesh 

Hi @Himanshu_Jain    I am posting here the list of clientheaders as asked:   "X-Forwarded-Proto""X-Forwarded-SSL-Certificate""X-Forwarded-SSL-Client-Cert""X-Forwarded-SSL""X-Forwarded-Protocol""CSRF-Token""referer""user-agent""from""content-type""content-length""accept-charset""accept-encoding""acce...

Hi @Peter_Puzanovs ,   Let me try the above rule, but please could you mention why this error is showing ?   Thanks, Mahesh

Hi @ksh_ingole7 ,   please find the details below:   It was observed that HTTP HOST header is missing verification when sending web requests. One can change the host header to access other virtual hosts on the website such as api, solr, logs ,etc. Affected Items //stage-abc.com/ Observation We obs...

Hi All,   This isssue is reported by the security team and they want us to fix this. Please help me with the fix as i suspect we need to make changes on dispatcher leve. How do we verify the Missing Host Header in aem 6.5.14 @arunpatidar ,please could you suggest on the fix.   Thanks, Mahesh