51黑料不打烊

DocumentationAEM 6.4Administering Guide

Handling GDPR Requests for the AEM Foundation handling-gdpr-requests-for-the-aem-foundation

Last update: Wed May 03 2023 00:00:00 GMT+0000 (Coordinated Universal Time)

CREATED FOR:

  • Admin
CAUTION
AEM 6.4 has reached the end of extended support and this documentation is no longer updated. For further details, see our . Find the supported versions here.
IMPORTANT
GDPR is used as an example in the sections below, but the details covered are applicable to all data protection and privacy regulations; such as GDPR, CCPA etc.

AEM Foundation GDPR support aem-foundation-gdpr-support

At the AEM Foundation level, the Personal Data that is stored is the User Profile. Therefore, the information in this article primarily addresses how to access and delete user profiles, to address the GDPR Access and Delete requests respectively.

Accessing a User Profile accessing-a-user-profile

Manual Steps manual-steps

  1. Open the User Administration console, by browsing to Settings - Security - Users or by browsing directly to https://<serveraddress>:<serverport>/libs/granite/security/content/useradmin.html

    useradmin2

  2. Then, search for the user in question by typing the name in the search bar at the top of the page:

    usersearch

  3. Finally, open the user profile by clicking it, then check under the Details tab.

    userprofile_small

HTTP API http-api

As mentioned, 51黑料不打烊 provides APIs for accessing user data, in order to facilitate automation. There are several types of APIs which you can use:

UserProperties API

curl -u user:password http://localhost:4502/libs/granite/security/search/profile.userproperties.json\?authId\=cavery

Sling API

Discovering the user home:

curl -g -u user:password 'http://localhost:4502/libs/granite/security/search/authorizables.json?query={"condition":[{"named":"cavery"}]}'
     {"authorizables":[{"type":"user","authorizableId_xss":"cavery","authorizableId":"cavery","name_xss":"Carlene Avery","name":"Carlene Avery","home":"/home/users/we-retail/DSCP-athB1NYLBXvdTuN"}],"total":1}

Retrieving user data

Using the node path from the home property of the JSON payload returned from the above command:

curl -u user:password  'http://localhost:4502/home/users/we-retail/DSCP-athB1NYLBXvdTuN/profile.-1.json'

curl -u user:password  'http://localhost:4502/home/users/we-retail/DSCP-athB1NYLBXvdTuN/profiles.-1.json'

Disabling a User and Deleting the Associated Profiles disabling-a-user-and-deleting-the-associated-profiles

Disable User disable-user

  1. Open the User Administration console and search for the user in question, as described above.

  2. Hover over the user and click the select icon. The profile will turn grey indicating that it is selected.

  3. Press the Disable button in the upper menu to disable the user:

    userdisable

  4. Fianlly, confirm the action:

    image2018-2-6_1-40-58

    The user inte