- Communities 指南
- AEM Communities简介
- 部署
- 管理
- AEM Communities中的用户和UGC管理服务
- 社区站点
- 社区控制台
- 社区功能的Analytics配置
- 配置启用功能
- 配置消息传送
- 审核社区内容
- 配置电子邮件
- 社区通知
- Communities 订阅
- 社区评分和徽章
- 管理用户和用户组
- 社区组控制台
- 使用Facebook和Twitter进行社交登录
- SRP — 社区内容存储
- 社区站点控制台
- 成员和组管理控制台
- 审核控制台
- Communities工具
- 站点模板
- 组模板
- 社区功能
- 存储配置
- 徽章控制台
- 启用资源控制台
- 报表控制台
- 用于启用功能的MySQL配置
- 适用于社区的FFmpeg
- 上下文审核
- 高级评分和徽章
- ASRP -Adobe存储资源提供程序
- MSRP - MongoDB存储资源提供程序
- 如何为演示设置MongoDB
- DSRP — 关系数据库存储资源提供程序
- DSRP的MySQL配置
- JSRP - JCR存储资源提供程序
- SRP的解决方案配置
- 标记支持资源
- 标记用户生成的内容
- 翻译用户生成的内容
- Communities用户同步
- 会员缴费限制
- 开发
- 发展社区
- 社交组件框架
- 社区组件指南
- 组件、功能和功能要点
- 教程
- 疑难解答
- 编码准则
- 服务器端自定义
- 客户端自定义
- SCF Handlebars Helpers
- 存储资源提供程序概述
- 社区站点要点
- 活动流要点
- 工作总揽
- 博客要点
- 日历要点
- 目录要点
- 适用于社区组件的Clientlibs
- 评论要点
- 适用于社区组件的OSGi事件
- 特色内容要点
- 文件库要点
- 论坛要点
- 社区组要点
- 构思要点
- 排行榜要点
- 称赞要点
- 消息传送要点
- 问题解答要点
- 评级要点
- 评论要点
- 富文本编辑器要点
- 评分和徽章要点
- 搜索要点
- 组件侧加载
- 社交图要点
- SRP和UGC要点
- 标记要点
- 计数要点
- 投票要点
- 设置网站结构
- 创建SCF沙盒
- 初始沙盒应用程序
- 初始沙盒内容
- 开发沙盒应用程序
- 开发沙盒内容
- 添加Clientlibs
- 叠加注释组件
- “创建评论”页
- 创建节点
- 更改外观
- 创建组件
- 将注释添加到示例页面
- 扩展注释组件
- 更改外观(HBS)
- 创建示例页面
- 使用SRP访问UGC
- 将Maven用于社区
- 命名约定
- SocialUtils重构
- 创作
为社区配置Dispatcher
AEM Communities
对于AEM Communities,需要配置Dispatcher以确保社区站点正常运行。 在包含社区启用和社交登录等功能时,需要额外配置。
了解特定部署和站点设计所需的内容
- 联系客户关怀
另请参阅主Dispatcher文档。
调度程序缓存
概述
AEM Communities的调度程序缓存是指调度程序能够提供社区网站页面的完全缓存版本。
目前,仅支持匿名网站访客(例如浏览社区网站或因搜索而登陆社区页面的用户)以及为页面编制索引的搜索引擎。 其好处是匿名用户和搜索引擎将体验到改进的性能。
对于已登录的成员,调度程序绕过缓存,直接将请求转发给发布者,以便所有页面都是动态生成和交付的。
当配置为支持调度程序缓存时,将在标头中添加基于TTL的“最大页面”过期时间,以确保调度程序缓存的页面是最新的。
要求
-
Dispatcher版本4.1.2或更高版本(有关最新版本,请参阅安装Dispatcher)
-
- 版本3.3.2或更高版本
ACS AEM Commons - Dispatcher Cache Control Header - Max AgeOSGi配置
配置
OSGi配置ACS AEM Commons - Dispatcher Cache Control Header - Max Age设置在指定路径下显示的缓存页面的过期时间。
-
找到
ACS AEM Commons - Dispatcher Cache Control Header - Max Age -
选择“+”图标以创建新连接配置
-
筛选模式
(必需) 一个或多个到社区页面的路径。例如,
/content/sites/engage/(.*). -
Cache-Control Max Age(缓存控制最大年龄)
(必需) 要添加到缓存控制标头的最大页面(以秒为单位)。值必须大于零(0)。
Dispatcher客户端标头
在dispatcher.any的/clientheaders部分中,如果列出了一组特定的标头,则必须包含"CSRF-Token",才能使启用功能正常工作。
调度程序过滤器
dispatcher.any文件的/filter部分记录在配置对内容的访问 — /filter中。
本节介绍社区功能正常运行可能需要的条目。
过滤器属性名称遵循使用四位数字来指示应用过滤器模式的顺序的惯例。 对一个请求应用了多个筛选模式时,最后一个应用的筛选模式生效。因此,第一过滤模式通常用于拒绝所有内容,使得以下模式用于以受控方式恢复访问。
以下示例使用的属性名称,该属性名称可能需要进行修改以适合任何特定的dispatcher.any文件。
另请参阅:
注意
属性名称示例
所显示的所有属性名称(如**/0050**和**/0170**)都应调整为适合现有dispatcher.any配置文件。
注意
请参阅 Dispatcher 安全检查清单以了解使用 Dispatcher 限制访问时的更多注意事项。另外,请阅读AEM安全检查列表,了解有关AEM安装的其他安全详细信息。
应将以下条目添加到/filter部分的末尾,特别是所有拒绝条目之后。
# design and template assets
/0050 { /type "allow" /url "/etc/designs/*" }
# collected JS/CSS from the components and design
/0051 { /type "allow" /url "/etc/clientlibs/*" }
# foundation search component - write stats
/0052 { /type "allow" /url "/bin/statistics/tracker/*" }
# allow users to edit profile page
/0054 { /type "allow" /url "* /home/users/*/*/profile.form.html*" }
# all profile data
/0057 { /type "allow" /url "/home/users/*/profile/*" }
# required for social "Sign In" link.
/0059 { /type "allow" /url "/etc/clientcontext/*" }
# required for "Sign Out" operation
/0063 { /type "allow" /url "* /system/sling/logout*" }
# enable Facebook and Twitter signin
/0064 { /type "allow" /url "/etc/cloudservices/*" }
# enable personalization
/0062 { /type "allow" /url "/libs/cq/personalization/*" }
# for Enablement features
/0170 { /type "allow" /url "/libs/granite/csrf/token.json*" }
/0171 { /type "allow" /url "/content/sites/*/resources/en/*" }
/0172 { /type "allow" /url "/content/communities/enablement/reports/*" }
/0173 { /type "allow" /url "/content/sites/*" }
/0174 { /type "allow" /url "/content/communities/scorm/*" }
/0175 { /type "allow" /url "/content/sites/*" }
/0176 { /type "allow" /url "/libs/granite/security/userinfo.json"}
/0177 { /type "allow" /url "/libs/granite/security/currentuser.json" }
# Enable CSRF token otherwise nothings works.
/5001 { /type "allow" /url "/libs/granite/csrf/token.json *"}
# Allow SCF User Model to bootstrap as it depends on the granite user
/5002 { /type "allow" /url "/libs/granite/security/currentuser.json*" }
# Allow Communities Site Logout button work
/5003 { /type "allow" /url "/system/sling/logout.html*" }
# Allow i18n to load correctly
/5004 { /type "allow" /url "/libs/cq/i18n/dict.en.json *" }
# Allow social json get pattern.
/6002 { /type "allow" /url "*.social.*.json*" }
# Allow loading of templates
/6003 { /type "allow" /url "/services/social/templates*" }
# Allow SCF User model to check moderator rules
/6005 { /type "allow" /url "/services/social/getLoggedInUser?moderatorCheck=*" }
# Allow CKEditor to load which uses a query pattern.
/6006 { /type "allow" /url "/etc/clientlibs/social/thirdparty/ckeditor/*.js?t=*" }
/6007 { /type "allow" /url "/etc/clientlibs/social/thirdparty/ckeditor/*.css?t=*" }
# Allow Fonts from Communities to load
/6050 { /type "allow" /url "*.woff" }
/6051 { /type "allow" /url "*.ttf" }
# Enable CQ Security checkpoint for component guide.
/7001 { /type "allow" /url "/libs/cq/security/userinfo.json?cq_ck=*"
调度程序规则
dispatcher.any的规则部分定义了应根据请求的URL缓存哪些响应。 对于社区,使用规则部分定义不应缓存的内容。
# Never cache the client-side .social.json calls
/0001 { /type "deny" /url "*.social.json*" }
# Never cache the user-specific .json requests
/0002 { /type "deny" /url "/libs/granite/csrf/token.json*" }
/0003 { /type "deny" /url "/libs/granite/security/currentuser.json*" }
/0004 { /type "deny" /url "/libs/granite/security/userinfo.json*" }
# Never cache the private community groups pages in case - add your own deny rules in there
/0005 { /type "deny" /url "/content/*/groups/*" }
# Never cache the assignments page in case the Enablement feature is in use - add your own deny rules in there
/0006 { /type "deny" /url "/content/*/assignments/*" }
# Never cache user generated content
/0208 { /type "deny" /url "/content/usergenerated/*" }
疑难解答
导致问题的一个主要原因是插入过滤器规则时不会注意对早期规则的影响,特别是在添加规则以拒绝访问时。
第一个过滤器模式通常用于拒绝所有内容,以便后续过滤器以受控方式恢复访问。 当多个过滤器应用于一个请求时,应用的最后一个过滤器即是生效的过滤器。
Dispatcher.any示例
以下是一个dispatcher.any示例文件,其中包含Communities /filters和/rules。
# Each farm configures a set of load balanced renders (i.e. remote servers)
/farms
{
# First farm entry
/website
{
# Request headers that should be forwarded to the remote server.
/clientheaders
{
# Forward all request headers that are end-to-end. If you want
# to forward a specific set of headers, you'll have to list
# them here.
"*"
}
# Hostname matching for farm selection (virtual domain addressing)
/virtualhosts
{
# Entries will be compared against the "Host" request header
# and an optional request URL prefix.
#
# Examples:
#
# www.company.com
# intranet.*
# myhost:8888/mysite
"*"
}
# The load will be balanced among these render instances
/renders
{
/rend01
{
# Hostname or IP of the render
/hostname "127.0.0.1"
# Port of the render
/port "4503"
# Connect timeout in milliseconds, 0 to wait indefinitely
# /timeout "0"
}
}
# The filter section defines the requests that should be handled by the dispatcher.
#
# Entries can be either specified using urls, or elements of the request line:
#
# (1) urls will be compared against the entire request line, e.g.:
#
# /0001 { /type "deny" /url "* /index.html *" }
#
# matches request "GET /index.html HTTP/1.1" but not "GET /index.html?a=b HTTP/1.1".
#
# (2) method/url/query/protocol will be compared againts the respective elements of
# the request line, e.g.:
#
# /0001 { /type "deny" /method "GET" /url "/index.html" }
#
# matches both "GET /index.html" and "GET /index.html?a=b HTTP/1.1".
#
# Note: specifying elements of the request line is the preferred method.
/filter
{
# Deny everything first and then allow specific entries
/0001 { /type "deny" /url "*" }
# Open consoles
# /0011 { /type "allow" /url "/admin/*" } # allow servlet engine admin
# /0012 { /type "allow" /url "/crx/*" } # allow content repository
# /0013 { /type "allow" /url "/system/*" } # allow OSGi console
# Allow non-public content directories
# /0021 { /type "allow" /url "/apps/*" } # allow apps access
# /0022 { /type "allow" /url "/bin/*" }
/0023 { /type "allow" /url "/content*" } # disable this rule to allow mapped content only
# /0024 { /type "allow" /url "/libs/*" }
# /0025 { /type "deny" /url "/libs/shindig/proxy*" } # if you enable /libs close access to proxy
# /0026 { /type "allow" /url "/home/*" }
# /0027 { /type "allow" /url "/tmp/*" }
# /0028 { /type "allow" /url "/var/*" }
# Enable specific mime types in non-public content directories
/0041 { /type "allow" /url "*.css" } # enable css
/0042 { /type "allow" /url "*.gif" } # enable gifs
/0043 { /type "allow" /url "*.ico" } # enable icos
/0044 { /type "allow" /url "*.js" } # enable javascript
/0045 { /type "allow" /url "*.png" } # enable png
/0046 { /type "allow" /url "*.swf" } # enable flash
/0047 { /type "allow" /url "*.jpg" } # enable jpg
/0048 { /type "allow" /url "*.jpeg" } # enable jpeg
# Deny content grabbing
/0081 { /type "deny" /url "*.infinity.json" }
/0082 { /type "deny" /url "*.tidy.json" }
/0083 { /type "deny" /url "*.sysview.xml" }
/0084 { /type "deny" /url "*.docview.json" }
/0085 { /type "deny" /url "*.docview.xml" }
/0086 { /type "deny" /url "*.*[0-9].json" }
# /0087 { /type "allow" /method "GET" /url "*.1.json" } # allow one-level json requests
# Deny query
/0090 { /type "deny" /url "*.query.json" }
#######################################
## BEGIN: AEM COMMUNITITES ADDITIONS
#######################################
/0050 { /type "allow" /url "/etc/designs/*" }
/0051 { /type "allow" /url "/etc/clientlibs/*" }
/0052 { /type "allow" /url "/bin/statistics/tracker/*" }
/0054 { /type "allow" /url "* /home/users/*/*/profile.form.html*" }
/0057 { /type "allow" /url "/home/users/*/profile/*" }
/0059 { /type "allow" /url "/etc/clientcontext/*" }
/0063 { /type "allow" /url "* /system/sling/logout*" }
/0064 { /type "allow" /url "/etc/cloudservices/*" }
/0062 { /type "allow" /url "/libs/cq/personalization/*" } # enable personalization
# For Enablement features
/0170 { /type "allow" /url "/libs/granite/csrf/token.json*" }
/0171 { /type "allow" /url "/content/sites/*/resources/en/*" }
/0172 { /type "allow" /url "/content/communities/enablement/reports/*" }
/0173 { /type "allow" /url "/content/sites/*" }
/0174 { /type "allow" /url "/content/communities/scorm/*" }
/0175 { /type "allow" /url "/content/sites/*" }
/0176 { /type "allow" /url "/libs/granite/security/userinfo.json"}
/0177 { /type "allow" /url "/libs/granite/security/currentuser.json" }
# Enable CSRF token otherwise nothings works.
/5001 { /type "allow" /url "/libs/granite/csrf/token.json *"}
# Allow SCF User Model to bootstrap as it depends on the granite user
/5002 { /type "allow" /url "/libs/granite/security/currentuser.json*" }
# Allow Communities Site Logout button work
/5003 { /type "allow" /url "/system/sling/logout.html*" }
# Allow i18n to load correctly
/5004 { /type "allow" /url "/libs/cq/i18n/dict.en.json *" }
# Allow social json get pattern.
/6002 { /type "allow" /url "*.social.*.json*" }
# Allow loading of templates
/6003 { /type "allow" /url "/services/social/templates*" }
# Allow SCF User model to check moderator rules
/6005 { /type "allow" /url "/services/social/getLoggedInUser?moderatorCheck=*" }
# Allow CKEditor to load which uses a query pattern.
/6006 { /type "allow" /url "/etc/clientlibs/social/thirdparty/ckeditor/*.js?t=*" }
/6007 { /type "allow" /url "/etc/clientlibs/social/thirdparty/ckeditor/*.css?t=*" }
# Allow Fonts from Communities to load
/6050 { /type "allow" /url "*.woff" }
/6051 { /type "allow" /url "*.ttf" }
# Enable CQ Security checkpoint for component guide.
/7001 { /type "allow" /url "/libs/cq/security/userinfo.json?cq_ck=*"}
#######################################
## END: AEM COMMUNITITES ADDITIONS
#######################################
}
# The cache section regulates what responses will be cached and where.
/cache
{
# The docroot must be equal to the document root of the webserver. The
# dispatcher will store files relative to this directory and subsequent
# requests may be "declined" by the dispatcher, allowing the webserver
# to deliver them just like static files.
/docroot "/opt/dispatcher"
# Sets the level upto which files named ".stat" will be created in the
# document root of the webserver. When an activation request for some
# page is received, only files within the same subtree are affected
# by the invalidation.
#/statfileslevel "0"
# Flag indicating whether to cache responses to requests that contain
# authorization information.
/allowAuthorized "1"
# Flag indicating whether the dispatcher should serve stale content if
# no remote server is available.
#/serveStaleOnError "0"
# The rules section defines what responses should be cached based on
# the requested URL. Please note that only the following requests can
# lead to cacheable responses:
#
# - HTTP method is GET
# - URL has an extension
# - Request has no query string
# - Request has no "Authorization" header (unless allowAuthorized is 1)
/rules
{
/0000
{
# the matching pattern to be compared against the url
# example: * -> everything
# : /foo/bar.* -> only the /foo/bar documents
# : /foo/bar/* -> all pages below /foo/bar
# : /foo/bar[./]* -> all pages below and /foo/bar itself
# : *.html -> all .html files
/url "*"
/type "allow"
}
#######################################
## BEGIN: AEM COMMUNITITES ADDITIONS
#######################################
# Never cache the client-side .social.json calls
/0001 { /type "deny" /url "*.social.json*" }
# Never cache the user-specific .json requests
/0002 { /type "deny" /url "/libs/granite/csrf/token.json*" }
/0003 { /type "deny" /url "/libs/granite/security/currentuser.json*" }
/0004 { /type "deny" /url "/libs/granite/security/userinfo.json*" }
# Never cache the private community groups pages in case - add your own deny rules in there
/0005 { /type "deny" /url "/content/*/groups/*" }
# Never cache the assignments page in case the enablement feature is in use - add your own deny rules in there
/0006 { /type "deny" /url "/content/*/assignments/*" }
#######################################
## END: AEM COMMUNITITES ADDITIONS
#######################################
}
# The invalidate section defines the pages that are "invalidated" after
# any activation. Please note that the activated page itself and all
# related documents are flushed on an modification. For example: if the
# page /foo/bar is activated, all /foo/bar.* files are removed from the
# cache.
/invalidate
{
/0000
{
/url "*"
/type "deny"
}
/0001
{
# Consider all HTML files stale after an activation.
/url "*.html"
/type "allow"
}
/0002
{
/url "/etc/segmentation.segment.js"
/type "allow"
}
/0003
{
/url "*/analytics.sitecatalyst.js"
/type "allow"
}
}
# The allowedClients section restricts the client IP addresses that are
# allowed to issue activation requests.
/allowedClients
{
# Uncomment the following to restrict activation requests to originate
# from "localhost" only.
#
#/0000
# {
# /url "*"
# /type "deny"
# }
#/0001
# {
# /url "127.0.0.1"
# /type "allow"
# }
}
# The ignoreUrlParams section contains query string parameter names that
# should be ignored when determining whether some request's output can be
# cached or delivered from cache.
#
# In this example configuration, the "q" parameter will be ignored.
#/ignoreUrlParams
# {
# /0001 { /url "*" /type "deny" }
# /0002 { /url "q" /type "allow" }
# }
/enableTTL "1"
}
# The statistics sections dictates how the load should be balanced among the
# renders according to the media-type.
/statistics
{
/categories
{
/html
{
/url "*.html"
}
/others
{
/url "*"
}
}
}
}
}
Business.Adobe.com资源
更改语言
