Can you check if mp-editors and content-authors group exists in the CRX ? Also, check if the "random authorizable" setting ws changed in AEM 6.1 ? If yes, this would have to reverted prior to the upgrade to 6.3
For someone reason(either cookie getting dropped or an extra redirect happening somewhere) could causing this. I'd suggest to open a daycare case so that someone can debug this dedicatedly.Provide the following information once you raise the case :- HAR file for a full cycle of login cycle- SAML con...
Can you add '-Djavax.net.debug=all' to your startup arguments, restart the system and retest the scenario ? Once replicated, share the stdout.log for review
content fragments in my opinion are used to expose assets from AEM so they can consumed within aem or externally. As you assets you are outside AEM, either you expose an API on the system where your assets are stored and use it OR import the metadata properties using importer and create node struct...
You can try the following approach - Use contextHub gelocation store for identifying the location of the user- Have images tagged with city tags or embed metadata pointing to city, state or province to identify the location of the assets- Use reverse geolocation APIs by google maps to identify nearb...
This is expected as /system/sling/login doesn't actually exist in the system and per the SAML config and the attribute 'Default redirect' points to / hence the redirect you see.
This looks like a case of index corruption. I would suggest to first update your instance to the latest oak release and once completed, reindex the damAssetLucene index