SSXA Site Security Concern (Doc ID 1548998.1)

Last updated on MAY 03, 2017

Applies to:

Oracle WebCenter Content - Version 11.1.1.4.0 to 11.1.1.9.0 [Release 11g]
Information in this document applies to any platform.

Goal

"http://abc.com" is the public internet client site with contribution enable set to False (consumption site).

The following URL redirect to the WebCenter Content Server Home Page and it doesn't look correct: it seems to be a security issue since any user can look at public contents, metadata, perform searches against public contents, browse library folders.
http://abc.com/site-context-root/wcm/idc/idcplg?IdcService=GET_DOC_PAGE&Action=GetTemplatePage&Page=HOME_PAGE

It is perceived as a SSXA security issue since the contribution enable set to False.

Is there any parameter to change in order to disable this URL?

Solution

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms