Question: How do you remove features from the welcome screen, so that only restricted users can access what is allowed? (Eg. Deny a user from accessing the siteadmin Or damadmin).
You can remove read permission to any of the following nodes in order to deny users from seeing these features in the welcome screen (To deny read permission, please use the security admin console with a superuser) -
1. Modules
Disabling Read Permissions at below levels will disable all the CQ 'Modules' from the welcome screen as well as deny access to the direct urls..
Eg: Disabling Read permissions at ' /libs/wcm/core/content/siteadmin' will Remove 'Websites' option from the welcome screen as well as http://<host>:<port>/siteadmin.html will not be accessible.
Websites - /libs/wcm/core/content/siteadmin
Digital Assets - /libs/wcm/core/content/damadmin
Communities - /libs/collab/core/content/admin
Campaigns - /libs/mcm/content/admin
Inbox - /libs/cq/workflow/content/inbox
Users - /libs/cq/security/content/admin
Tools - /libs/wcm/core/content/misc
Tagging - /libs/cq/tagging/content/tagadmin
2. Resources
Cloud Services -
Welcome Screen - /libs/cq/core/content/welcome/resources/cloudservices
Url - /etc/cloudservices
Workflows
Welcome Screen - /libs/cq/core/content/welcome/resources/workflows
Url - /libs/cq/workflow/content/console
Task Management
Welcome Screen - /libs/cq/core/content/welcome/resources/taskmanager
Url - /libs/cq/taskmanagement/content/taskmanager
Replication
Welcome Screen - /libs/cq/core/content/welcome/resources/replication
Url - /etc/replication
Reports
Welcome Screen - /libs/cq/core/content/welcome/resources/reports
Url - /libs/wcm/core/content/misc
Publications
Welcome Screen - /libs/cq/core/content/welcome/resources/publishingadmin
Url - /libs/media/publishing/admin/content/admin
Manuscripts
Welcome Screen - /libs/cq/core/content/welcome/resources/manuscriptsadmin
Url - /libs/media/articles/admin/content/admin
3. Docs
Documentation
Welcome Screen - /libs/cq/core/content/welcome/docs/docs
Developer Resources
Welcome Screen - /libs/cq/core/content/welcome/docs/dev
4. Features
CRXDE Lite
Welcome Screen - /libs/cq/core/content/welcome/features/crxde
Url - As per my knowledge, we need to deny access at dispatcher level/ need to write custom service.
Packages
Welcome Screen - /libs/cq/core/content/welcome/features/packages
Url - libs/crx/cor/content/welcome/core/crx
Package Share
Welcome Screen - /libs/cq/core/content/welcome/features/share
Clustering
Welcome Screen - /libs/cq/core/content/welcome/features/cluster
Url - /libs/granite/cluster/content/admin
Backup
Welcome Screen - /libs/cq/core/content/welcome/features/backup
Url - /libs/granite/backup/content/admin
OSGi Console
Welcome Screen - /libs/cq/core/content/welcome/features/config
Url - Can't be accessible withour credentials..so there won't be any issue..
OSGi Console Status Dump
Welcome Screen - /libs/cq/core/content/welcome/features/statusdump
Url - /libs/crx/core/content/welcome/osgi/statusdump
Ref: http://helpx.adobe.com/cq/kb/remove-features-welcome-screen.html
Solution
You can remove read permission to any of the following nodes in order to deny users from seeing these features in the welcome screen (To deny read permission, please use the security admin console with a superuser) -
1. Modules
Disabling Read Permissions at below levels will disable all the CQ 'Modules' from the welcome screen as well as deny access to the direct urls..
Eg: Disabling Read permissions at ' /libs/wcm/core/content/siteadmin' will Remove 'Websites' option from the welcome screen as well as http://<host>:<port>/siteadmin.html will not be accessible.
Websites - /libs/wcm/core/content/siteadmin
Digital Assets - /libs/wcm/core/content/damadmin
Communities - /libs/collab/core/content/admin
Campaigns - /libs/mcm/content/admin
Inbox - /libs/cq/workflow/content/inbox
Users - /libs/cq/security/content/admin
Tools - /libs/wcm/core/content/misc
Tagging - /libs/cq/tagging/content/tagadmin
2. Resources
Cloud Services -
Welcome Screen - /libs/cq/core/content/welcome/resources/cloudservices
Url - /etc/cloudservices
Workflows
Welcome Screen - /libs/cq/core/content/welcome/resources/workflows
Url - /libs/cq/workflow/content/console
Task Management
Welcome Screen - /libs/cq/core/content/welcome/resources/taskmanager
Url - /libs/cq/taskmanagement/content/taskmanager
Replication
Welcome Screen - /libs/cq/core/content/welcome/resources/replication
Url - /etc/replication
Reports
Welcome Screen - /libs/cq/core/content/welcome/resources/reports
Url - /libs/wcm/core/content/misc
Publications
Welcome Screen - /libs/cq/core/content/welcome/resources/publishingadmin
Url - /libs/media/publishing/admin/content/admin
Manuscripts
Welcome Screen - /libs/cq/core/content/welcome/resources/manuscriptsadmin
Url - /libs/media/articles/admin/content/admin
3. Docs
Documentation
Welcome Screen - /libs/cq/core/content/welcome/docs/docs
Developer Resources
Welcome Screen - /libs/cq/core/content/welcome/docs/dev
4. Features
CRXDE Lite
Welcome Screen - /libs/cq/core/content/welcome/features/crxde
Url - As per my knowledge, we need to deny access at dispatcher level/ need to write custom service.
Packages
Welcome Screen - /libs/cq/core/content/welcome/features/packages
Url - libs/crx/cor/content/welcome/core/crx
Package Share
Welcome Screen - /libs/cq/core/content/welcome/features/share
Clustering
Welcome Screen - /libs/cq/core/content/welcome/features/cluster
Url - /libs/granite/cluster/content/admin
Backup
Welcome Screen - /libs/cq/core/content/welcome/features/backup
Url - /libs/granite/backup/content/admin
OSGi Console
Welcome Screen - /libs/cq/core/content/welcome/features/config
Url - Can't be accessible withour credentials..so there won't be any issue..
OSGi Console Status Dump
Welcome Screen - /libs/cq/core/content/welcome/features/statusdump
Url - /libs/crx/core/content/welcome/osgi/statusdump
Ref: http://helpx.adobe.com/cq/kb/remove-features-welcome-screen.html
No comments:
Post a Comment