Adobe Experience Manager Sites & More

srinivasc110177 · 3/7/16

I am using AEM 5.6.1 and the requirement is that end user must be Authenticated to view few DAM assets in publish instance using an dispacther.Could you please suggest what is best mechanism i could use and any best practices in general i must look for.

Thanks

Kunal_Gaba_ · 3/7/16

If you have multiple PDFs/assets which require authentication then why not create an assets listing page which can be shown to authenticated users. You can set CUG (Closed user group) properties on the listing page so that only required group of users will have access to it via login.
If you want to restrict access to a particular PDF or asset then there is a way to set the CUG properties on individual assets. http://www.wemblog.com/2013/01/how-to-associate-cug-with-dam-asset-in.html
If you do not like applying these properties individually on multiple assets then other solution could be to create a custom servlet and bind it to a resource type and bind that resource type to a page. Then you can restrict access to that page by setting CUG properties on it. You can then expose the page url with asset path as parameter in the front end to the users. When they hit the page URL the AEM will check if the user is authenticated or not. If not then it will redirect to the login page and if yes then it will call the servlet and pass the asset path as param to it. The servlet then can redirect to the asset URL(passed as param to it).

CUG - https://docs.adobe.com/docs/en/aem/6-1/administer/security/cug.html

https://helpx.adobe.com/experience-manager/using/resourcetypes.html

https://cqdump.wordpress.com/2015/03/23/aem-coding-best-practice-servlets/

Thanks,

Kunal

View solution in original post

smacdonald2008 · 3/7/16

How will the user be looking at the assets? Do you you mean in an AEM web site that references DAM assets, or do you mean on CQ Author?

srinivasc110177 · 3/7/16

The anonymous users when hits on the PDF link to download on publish instance.He will be shown up with login page.Then followed by Authentication mechanism.That is he logs in and then we need a session present for sometime for the login.Then logout for the user

Kunal_Gaba_ · 3/7/16

If you have multiple PDFs/assets which require authentication then why not create an assets listing page which can be shown to authenticated users. You can set CUG (Closed user group) properties on the listing page so that only required group of users will have access to it via login.
If you want to restrict access to a particular PDF or asset then there is a way to set the CUG properties on individual assets. http://www.wemblog.com/2013/01/how-to-associate-cug-with-dam-asset-in.html
If you do not like applying these properties individually on multiple assets then other solution could be to create a custom servlet and bind it to a resource type and bind that resource type to a page. Then you can restrict access to that page by setting CUG properties on it. You can then expose the page url with asset path as parameter in the front end to the users. When they hit the page URL the AEM will check if the user is authenticated or not. If not then it will redirect to the login page and if yes then it will call the servlet and pass the asset path as param to it. The servlet then can redirect to the asset URL(passed as param to it).

CUG - https://docs.adobe.com/docs/en/aem/6-1/administer/security/cug.html

https://helpx.adobe.com/experience-manager/using/resourcetypes.html

https://cqdump.wordpress.com/2015/03/23/aem-coding-best-practice-servlets/

Thanks,

Kunal