My Oracle Support Banner

SSXA Site Security Concern (Doc ID 1548998.1)

Last updated on MAY 14, 2018

Applies to:

Oracle WebCenter Content - Version 11.1.1.4.0 to 11.1.1.9.0 [Release 11g]
Information in this document applies to any platform.

Goal

"http://abc.com" is the public internet client site with contribution enable set to False (consumption site).

The following URL redirect to the WebCenter Content Server Home Page and it doesn't look correct: it seems to be a security issue since any user can look at public contents, metadata, perform searches against public contents, browse library folders.
http://abc.com/site-context-root/wcm/idc/idcplg?IdcService=GET_DOC_PAGE&Action=GetTemplatePage&Page=HOME_PAGE

It is perceived as a SSXA security issue since the contribution enable set to False.

Is there any parameter to change in order to disable this URL?

Solution

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Goal
Solution
References


My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.