since ‎20-05-2015
Online
wimsymons
Level 3
Re: How to fix OakAccessControl0013: Duplicate ACE wimsymons - Adobe Experience Manager
I did some more research. ACTool can't handle the duplicates, but if I remove the duplicate using CRX/DE before running ACTool it works fine. I can remove the duplicate ACL. After that ACTool has no more issues either. If I bump into the problem again I will try the Access Control Editor.
76
Views
0
Likes
0
Comments
Re: How to fix OakAccessControl0013: Duplicate ACE wimsymons - Adobe Experience Manager
Just checked. There is no duplicate entry in the old repository. We migrated content from 6.4.4.0.
98
Views
0
Likes
0
Comments
How to fix OakAccessControl0013: Duplicate ACE wimsymons - Adobe Experience Manager
Hi all,I hit this roadblock today. 🙁I have a duplicate ACE on /content/cq:tags and there seems to be no way to remove it.Here is a screenshot from CRX/DE:I'm running AEM 6.5.6.0.When I click the red (-) icon on either one of the duplicate ACL to remove it, I get the following error: Caused by: org.apache.jackrabbit.oak.api.CommitFailedException: OakAccessControl0013: Duplicate ACE '/content/cq:tags/rep:policy/allow7' found in policy at org.apache.jackrabbit.oak.security.authorization.accesscont...
124
Views
0
Likes
5
Answers and Comments
Re: Deleting old packages programatically in AEM wimsymons - Adobe Experience Manager
Thanks for liking my article Nirmal!
2260
Views
0
Likes
0
Comments
Re: /libs/granite/dispatcher/content/vanityUrls.html does not exist on AEM 6.4.3 wimsymons - Adobe Experience Manager
Indeed sameerb50449612​ you are correct.I didn't follow up on this thread, but you need to do 2 things:install the VanityURLS-Components package on the publisherapply your own ACL to allow read access to /libs/granite/dispatcher/content/vanityUrls for anonymousRegardsWim
1156
Views
0
Likes
0
Answers
New Medium post: 13 steps to rock-stable AEM package installs wimsymons - Adobe Experience Manager
Hi community,I just published a new Medium article where we share the knowledge we gathered at VRT on how we have developed a safe way to install AEM packages, after 5 years of perfecting the process.Read it at https://medium.com/vrt-digital-studio/13-steps-to-rock-stable-aem-package-installs-d9bbba1f7b15 Hope you like it!Wim
3641
Views
2
Likes
3
Replies
Re: crx2oak for AEM 6.5? wimsymons - Adobe Experience Manager
The idea crossed my mind today. I’ll create a daycare ticket tomorrow morning. Thanks!
1022
Views
0
Likes
0
Answers
Re: crx2oak for AEM 6.5? wimsymons - Adobe Experience Manager
That is indeed version 1.10.0. But I think Adobe should make it available on Index of /groups/public/com/adobe/granite/crx2oak as well.And update their documentation pages for 6.5.
996
Views
0
Likes
0
Answers
crx2oak for AEM 6.5? wimsymons - Adobe Experience Manager
It looks like there is no release yet for crx2oak for AEM 6.5.Normally, this should match the oak repository major version. So something like 1.10.x, but no trace of it in Index of /groups/public/com/adobe/granite/crx2oak , nor does the release notes page exist for AEM 6.5: https://helpx.adobe.com/experience-manager/6-5/release-notes/crx2oak.html​.Will there be such a release soon?We have used crx2oak 3x successfully now for upgrading AEM using an offline content copy.Would be nice to keep this ...
1661
Views
1
Like
4
Answers and Comments
Re: AEM S3 configuration for binaryless replication (what is secret setting?) wimsymons - Adobe Experience Manager
My guess is that it used by the replication agent to check whether or not you are connected to the correct shared datastore. If the secret matches with the one in the datastore, binaryless replication is allowed. If it doesn't match, binaryless replication is denied.
939
Views
0
Likes
0
Answers
Re: AEM 6.4.1.0 - Grant different permissions from different views for same content path wimsymons - Adobe Experience Manager
I would create a user group which has access to the particular area (/content/custom-folder). You can regular user accounts to that group for users who need access. Also create a service user, add it to the group and let your custom consoles use the service user to access and control the content instead of the logged in user.
2035
Views
1
Like
0
Replies
Re: Proper place to store background job related data? wimsymons - Adobe Experience Manager
You can store it below /var. We store all such data in a subfolder below /var/companyname. For your case, I’d suggest /var/yourcompany/solr where you have a property lastindextime of type Date.
601
Views
0
Likes
0
Answers
Re: /libs/granite/dispatcher/content/vanityUrls.html does not exist on AEM 6.4.3 wimsymons - Adobe Experience Manager
So how is this suppose to work?
1127
Views
0
Likes
0
Answers
Re: /libs/granite/dispatcher/content/vanityUrls.html does not exist on AEM 6.4.3 wimsymons - Adobe Experience Manager
After installing the vanityurls-components package 1.0.2 the content appeared in CRX/DE, but the URL was not accessible for "everyone".When I added an ACL to allow read on /libs/granite/dispatcher/content/vanityUrls, the unauthenticated http call to http://localhost:4502/libs/granite/dispatcher/content/vanityUrls.html works as expected.Strange the package doesn't contain such an ACL rule.On the other hand, I read the Replication agent configuration​ documentation again. There, they speak of an "...
1092
Views
0
Likes
0
Answers
/libs/granite/dispatcher/content/vanityUrls.html does not exist on AEM 6.4.3 wimsymons - Adobe Experience Manager
Hi all,According to the documentation at Configuring Dispatcher we no longer need to install the VanityURLS-Components package anymore on AEM instances > 6.3.I just setup an AEM 6.4.3 instance and there is no /libs/granite/dispatcher/content/vanityUrls.html to be found.Is the documentation just plain wrong?Has it been moved to another path? Or must we still install the VanityURLS-Components package on AEM 6.4 instances?Kind regards,Wim
3064
Views
0
Likes
7
Answers and Comments
Re: Content Fragment Models in AEM 6.3.3.1 wimsymons - Adobe Experience Manager
Enable it first. See Content Fragment Models
633
Views
0
Likes
0
Answers
Re: Memory leak:Getting heap dump at my AEM publisher wimsymons - Adobe Experience Manager
Looks totally fine. (We have similar settings).But your suspects are strange as they consume so little heap space. (214 MB for suspect 1, 79 MB for suspect 2).Are you sure you didn't miss something else?When we have OOM's on AEM, we find suspects holding 6 GB or more.
5907
Views
1
Like
2
Replies
Re: Memory leak:Getting heap dump at my AEM publisher wimsymons - Adobe Experience Manager
Strange. Looks legit to me.Can you take a look at http://:4502/system/console/memoryusage (the URL, not the path) and paste the content?That should show your current memory configuration and free space.
5907
Views
1
Like
4
Replies
Re: Autoscaling AEM in AWS wimsymons - Adobe Experience Manager
Don’t work with fixed ip’s in auto scaling groups. Use something like Consul. But there is much more to it than that. There is the issue of configuring your replication agents whenever a new Instance is added and when an instance is removed. You also need a way to copy your repository from live instances to new instances. Not something to take lightly. There were some good presentations about this in the last two Adobe Immerse events.
1323
Views
1
Like
0
Replies
Re: Memory leak:Getting heap dump at my AEM publisher wimsymons - Adobe Experience Manager
According to what I see, is that you only have 800mb of heap space. Seems to me you did not pass Xms and Xmx parameters to your publish instance. A production instance needs more than 1gb ram. Give it some more breathing room. For example 4gb.
5907
Views
1
Like
7
Replies
Re: crx2oak - AEM 6.2 (linux box1) to 6.4 (linux box2) wimsymons - Adobe Experience Manager
You can’t use remote paths. You must use local paths. To to do what you want to do, copy the full repository from box1 to box2 using for example scp or rsync to another location, like /data/source. Then run the crx2oak tool on box2 using /data/source as input and /opt/aem/crx-quickstart/repository/segmentstore.After that, you can delete /data/source on box2.
649
Views
0
Likes
0
Answers
Re: Dispatcher and Sling Servlet ignores POST configuration wimsymons - Adobe Experience Manager
Have you tried following the best practice as described in https://helpx.adobe.com/experience-manager/dispatcher/using/dispatcher-configuration.html#ConfiguringAccesstoContentfilter ?I mean, deny access to everything in your first filter rule, and then gradually allowing access to whatever is needed?If you deny access to everything all POSTs will be blocked.
4228
Views
0
Likes
0
Replies
Re: Dispatcher and Sling Servlet ignores POST configuration wimsymons - Adobe Experience Manager
I would upgrade to the latest version of the AEM dispatcher first. See AEM Dispatcher Release Notes . If I remember correctly we had the same issue in an earlier version of the dispatcher. About the testing tools, there is The Dispatcher Security Checklist and the dispatcher health checks in Operations Dashboard.
4228
Views
0
Likes
2
Replies
Re: Comments in Templates Render as Blank Lines wimsymons - Adobe Experience Manager
Does the same JSP trick work here? Just remove the newlines from the source. For example:Etc. If you are delivering content through the dispatcher and it does gzip encoding most of the white space bytes would be removed in the compressed version, so the overhead over the wire would be relatively small.
595
Views
0
Likes
0
Answers
Re: AEM S3 configuration for binaryless replication (what is secret setting?) wimsymons - Adobe Experience Manager
Just any value you want. It just needs to be the same on all instances connected to that shared data store.
911
Views
0
Likes
0
Answers
Re: Not seeing Testing panel in AEM under Tools->Operations wimsymons - Adobe Experience Manager
See the documentation at Hobbes.js Index. Don’t know if you still need write access to /apps though.
538
Views
0
Likes
0
Answers
Re: List all possible selectors and extensions for denial of service (DoS) attack mitigation wimsymons - Adobe Experience Manager
When you architect and implement your application, you know exactly which selectors you use, so it should not be rocket science to only allow those selectors in the dispatcher filter rules. The idea is to whitelist only what is needed. By default AEM allows for example to export your entire content tree as JSON. That on itself would require so much resources you would kill your instance.
959
Views
0
Likes
0
Answers
Re: Set saml_request_path cookie as httponly & secure wimsymons - Adobe Experience Manager
Do I need to mention your site should be on https?
1020
Views
0
Likes
0
Answers
Re: Set saml_request_path cookie as httponly & secure wimsymons - Adobe Experience Manager
Make sure your sslfilter is configured correctly if you are using ssl termination in the dispatcher or load balancer. See AEM redirecting user back to http if accessed through SSL terminated Load Balancer for details. We experienced the same issue. When the sslfilter is set correctly, the cookie becomes secure as well.
858
Views
0
Likes
0
Answers