Expand my Community achievements bar.

AEM 6.4 - Author - Intercept SAML2 Authentication

Avatar

Level 4
Level 4
3/1/24 4:49:31 AM

HI,

 

on Adobe Aem 6.4 Author machine login via Saml2 is active.

 

I would need to intercept user logins made via Saml2, what can I do?

 

Thank you

Views

421

Replies

7
Sign in to like this content

Total Likes

Translate
Translate
7 Replies

Avatar

Community Advisor
Community Advisor
3/1/24 5:27:57 AM

Can you elaborate on "intercept user logins"? If you are referring to checking how the data flows( viewing SAML messages), you could use something like this Chrome extension.https://chromewebstore.google.com/detail/saml-tracer/mpdajninpobndbfcldcmbpnnbhibjmch

 

Hope this helps 


Esteban Bustamante

Views

406

Replies

1
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Level 4
Level 4
3/4/24 1:15:57 AM
In response to arunpatidar

HI,
Thanks for the reply.

 

I cannot use the two suggested methodologies.

 

The first where AuthenticationInfoPostProcessor is used is not practicable as it is called for every single operation performed on the CMS, both Author and Publish. It is very demanding in terms of performance.

 

The second one is to create a Custom Authentication Handler is not possible as I am not allowed to create it.

 

Are there no alternative solutions?

 

Thank you

Views

311

Replies

2
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Community Advisor
Community Advisor
3/4/24 1:22:01 AM
In response to robertol6836527

Hi @robertol6836527 
You need to extend the existing SAML implementation if you want to intercept and extend the OOTB SAML integration.

 

e.g.

 

public class ExtSamlAuthenticationHandler extends DefaultAuthenticationFeedbackHandler implements AuthenticationHandler {

 



Arun Patidar

Views

298

Replies

1
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Level 4
Level 4
3/4/24 6:17:01 AM
In response to arunpatidar

HI,


thanks for the answer but I have to look for an alternative route to the one suggested, I can't create a CustomAuthenticationHandler.

 

I have to find an alternative.

 

Greetings

Views

283

Replies

0
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Administrator
Administrator
3/7/24 6:39:21 AM

@robertol6836527 Did you find the suggestions from users helpful? Please let us know if more information is required. Otherwise, please mark the answer as correct for posterity. If you have found out solution yourself, please share it with the community.



Kautuk Sahni

Views

201

Replies

0
Sign in to like this content

Total Likes

Translate
Translate