/bin/project to be authenticated on dispatcher | Community
Skip to main content
S
sonaliku
New Participant
October 10, 2023
Solved

/bin/project to be authenticated on dispatcher

  • October 10, 2023
  • 4 replies
  • 1536 views

Hi,

We have servlets with basic authentication available on our author and publish instances. A service user having access to the required content is able to view the response from these servlets and if no Authentication is provided , we get a 401 - Not Authorized response as expected.

 

We want this capability to be available on the dispatcher as well. How can we achieve this?

 

We have both On Prem and AMS instances.

This post is no longer active and is closed to new replies. Need help? Start a new post to ask your question.
Best answer by sherinregi-1

Hi @sonaliku 

You can try to use basic authentication of Apache based on the path at dispatcher level. Specify the user here and need not depend on aem service user

Check the below blog

 

https://www.albinsblog.com/2015/06/enabling-basic-authentication-for-adobecq5-adobeaem.html#.Yhc9L5NBxhE

 

 

4 replies

kautuk_sahni
kautuk_sahni
Employee
October 11, 2023

@sonaliku Did you find the suggestions from users helpful? Please let us know if more information is required. Otherwise, please mark the answer as correct for posterity. If you have found out solution yourself, please share it with the community.

Kautuk Sahni
S
sonalikuAuthor
New Participant
October 11, 2023

Sounds good ! Thanks Kautuk. 

    sherinregi-1
    sherinregi-1Accepted solution
    New Participant
    October 10, 2023

    Hi @sonaliku 

    You can try to use basic authentication of Apache based on the path at dispatcher level. Specify the user here and need not depend on aem service user

    Check the below blog

     

    https://www.albinsblog.com/2015/06/enabling-basic-authentication-for-adobecq5-adobeaem.html#.Yhc9L5NBxhE

     

     

      S
      sonalikuAuthor
      New Participant
      October 11, 2023

      Thankyou ! Will try out this approach to see if it works as expected.

        S
        sonalikuAuthor
        New Participant
        October 10, 2023

        @estebanbustamante  We do not want to to be allowed to all the users but the specifed service user. How can that be achieved with below configuration?

          EstebanBustamante
          EstebanBustamante
          New Participant
          October 10, 2023

          Sorry, I didn't understand your question in the first instance, I assumed you have this functionality already working and you wanted to enable it in the dispatcher as well. 

           

          From what I can understand you could do the following:

          - Enable the servlet with an authentication method (preferred not basic auth, but OAuth2). This means that everyone with the servlet URL will be able to access but it will have to authenticate to actually see content from this servlet.

          - If the user is able to authenticate the servlet, then you just need to use a session using your system users to retrieve whatever content you have in mind[2].

           

          [1]. https://medium.com/tech-learnings/how-to-manage-the-protected-aem-resources-through-oauth-2-0-851ce4c7a5ef 

          [2]. https://medium.com/@manumathew28.94/aem-system-users-1b9ab48df19e  

           

          Hope this helps

          Esteban Bustamante
            EstebanBustamante
            EstebanBustamante
            New Participant
            October 10, 2023

            I think you just need to allow this servlet in your dispatcher configuration. Something like this:

            /0108 { /type "allow" /method "POST" /url "/bin/project" }

             

            Esteban Bustamante
              Terms & ConditionsAccessibility statement

              Loading footer...