closed user group | Community
Skip to main content
varshsr
varshsr
New Participant
October 19, 2015
Solved

closed user group

  • October 19, 2015
  • 5 replies
  • 1439 views

We are planning to setup a portal with 10+ CUG for authenticated users via LDAP. These CUG's to have secure access to group only pages.

Also we want these pages to be cached and checking on permission sensitive caching.

1) for permission sensitive caching is it ok to support 10+ CUG's ?

2) what is the use of /sessionmanagement  in dispatcher.any , what is the effect of more that 1 CUG to this configuration

3) Need comparison between /sessionmanagement vs PSC  (/auth_checker) ,  what is the effect of more that 1 CUG to this configuration

This post is no longer active and is closed to new replies. Need help? Start a new post to ask your question.
Best answer by joerghoh

Hi,

to your questions:

1) yes, there is no technical limit on the number of supported CUGs.

2) /sessionmanagement has no effect on the CUG and/or PSC handling (at least I haven't dealt with it in the cases where I used PSC and CUGs)

3) From what I know, PSC does not rely at all on the sessionmanagement as offered by the dispatcher. You can combine both, that's fine. But PSC works when you identified users, and you need to check on the dispatcher, if the dispatcher is allowed to deliver a secured file to the user. PSC is the "call AEM and ask if this authenticated user is allowed to access the file" mechanism, for the authentication process you can choose whatever you want.

Jörg

5 replies

varshsr
varshsrAuthor
New Participant
October 23, 2015

Thank Jörg,

Few interesting questions,based on this link http://dev.day.com/docs/en/cq/current/howto/create_apply_cug.html

I see on one side it speaks about CUG needs /sessionmanagement and these pages cannot be cached (/allowAuthorized 0)

on other side CUG pages can be cached /auth_checker (/allowAuthorized 1)

When see form an AEM performance perspective and dispatcher should cache as much as possible 

is /sessionmanagement obsolete or there any relevant use cases for the same ? or only  /auth_checker is  valid in the context of CUG 

joerghoh
joerghohAccepted solution
Employee
October 22, 2015

Hi,

to your questions:

1) yes, there is no technical limit on the number of supported CUGs.

2) /sessionmanagement has no effect on the CUG and/or PSC handling (at least I haven't dealt with it in the cases where I used PSC and CUGs)

3) From what I know, PSC does not rely at all on the sessionmanagement as offered by the dispatcher. You can combine both, that's fine. But PSC works when you identified users, and you need to check on the dispatcher, if the dispatcher is allowed to deliver a secured file to the user. PSC is the "call AEM and ask if this authenticated user is allowed to access the file" mechanism, for the authentication process you can choose whatever you want.

Jörg

varshsr
varshsrAuthor
New Participant
October 22, 2015

Thanks ,Please share if any details 

kautuk_sahni
kautuk_sahni
Employee
October 20, 2015

hi sri003

I would ask internal engineering team, if they have some input for the same.

Please wait till next response. 

 

Thanks and Regards

Kautuk Saahni 

Kautuk Sahni
varshsr
varshsrAuthor
New Participant
October 20, 2015

any help / ideas on these topics ?

Terms & ConditionsAccessibility statement

Loading footer...