Capability

Security

検索バー

Liferay DXP is built with security in mind. A variety of standards based authentication methods and integrations can be used to ensure secure access to a site and its resources. Robust role-based access control with permissions gives you fine grained control over what authenticated and unauthenticated users can access, share, or edit. Liferay DXP’s web services also have a multi-layered and configurable approach to security and authorization.

Feature
Deployment Approach
Java & Liferay - 2025 and Beyond
legacy
The next major evolution of Java is here and Liferay is poised and ready to embrace the next generation. Like with any software or technology change, adoption will require work and will take time. That's why...
JournalArticleAssetEntryClassTypeIdUpgradeProcess WARN traces during upgrade process
legacy
Issue After upgrading from 7.3 to 2024.Q3 we are getting lots of WARN traces related to com.liferay.journal.internal.upgrade.v5_1_1.JournalArticleAssetEntryClassTypeIdUpgradeProcess upgrade process: 2024-11-20...
How can we translate the Custom Heading of a Custom Facet?
How To
Issue We have a search page with several facets. One of them is the "Custom Facet" widget. How can we translate the Custom Heading of a Custom Facet, to display in multiple languages on our site? The configuration page...
I cannot use the PUT method of the Object API's Batch endpoint with External Reference Codes (ERC)
legacy How To
Issue It is not possible to mass update a custom object's entries if: using the PUT method of the object's batch API endpoint and the External Reference Code (ERC) is given instead of the object entry's ID. The...
Unknown system variable 'tx_isolation'
legacy Troubleshooting
Issue After update database service to MySQL 8 in PaaS Liferay can not connect to database due to unknown system variable 'tx_isolation' error.  [dxp] WARN [main][PoolBase:452] HikariPool-1 - Default...
Back Button is Unresponsive After Opening a Notification
legacy Troubleshooting
Issue After opening a notification, I'm unable to return to the previous page by using the back button. The back button is unresponsive if I'm viewing a notification. Return button does not work when...
Google Drive authentication randomly fails in a multi-node cloud environment
legacy Troubleshooting
Issue Google Drive authentication usually works correctly, but sometimes it randomly fails with java.lang.IllegalStateException: Authorization oAuth2State not initialized errors in the logs. Google Drive was...
Slow Content Search with SearchUtil API
legacy Troubleshooting
Issue In 7.4 q2.12, searching using SearchUtil API is taking upwards of 3-4 minutes when the expected response is in milliseconds. Environment 7.4 2024.q2.12 Resolution Do one of the following: Upgrade to...
How to remove or deselect the theme for a specific page?
legacy How To
Issue The user has deployed a custom theme as a WAR file, and it is configured as the default. As soon as they create a new page, the same theme is applied, but they want to remove or deselect the theme for that...
Query regarding special character (~) in the URL
legacy
Issue There is a special character (~) observed in the URL when navigating to site settings. Is this special character "~" a part of the URL design pattern of the product or is this is a security concern?...
Empty search lists all the message board threads
legacy
Issue We created a few message board threads in the portlet and if we run an empty string search, all threads are displayed in the search result. Environment Liferay DXP 7.0+ Resolution This is the...
Creating a New User in Liferay Whenever a Liferay Object Entry is Added with Default Site, Role, and Password
legacy How To
Issue Creating a new user in Liferay whenever a new entry is created in the Liferay Object with a default Site, Role, and password? Environment Liferay DXP 7.4 Resolution In Liferay objects, object action defines...
How to Customize Webserver Log Format
legacy How To
Issue How can I customize the log format of the webserver service? Environment Liferay PaaS Resolution To tailor the log format of your webserver service to your specific needs, you can adjust the following...
Unable to remove form records without permission to also remove form itself
legacy
Issue We're looking into giving a user the ability to remove their own form records; however we found that the owner of a forminstancerecord cannot remove the forminstancerecord unless they get the permission to remove the...
ERROR: You have exceeded the maximum number of processor cores allowed for this server
legacy Troubleshooting
Issue The customer has reported that they are encountering one of the following errors: ERROR [fileinstall-directory-watcher][LicenseManager:?] DXP Production license validation failed java.lang.Exception: You have...
Uncaught SyntaxErrors in browser console when rendering custom fields
legacy Troubleshooting
Issue Custom fields are not rendering correctly when added to a form.  Exceptions such as the following ones can be seen in the browser's console: Uncaught SyntaxError: import declarations may only appear...
Outdated Patching Tool found in 2024.Q3.6-.9 Docker Images
legacy Troubleshooting
Issue A different patching tool version was found in 2024.Q3.6-.9 Docker Images, but not in bundles downloaded from the Help Center. Environment 2024.Q3.6-.9 Resolution The correct version of the patching...
How to retrieve relative URLs for document library assets?
legacy Troubleshooting
Issue Easily retrieve relative URLs for document library assets. Environment Liferay DXP 7.4 Resolution Kindly consider using the latest Liferay DXP 7.4 release. Another option request LPD-36856 on a...
Is Liferay Vulnerable to CVE-2023-45960?
legacy
Issue I would like to know if Liferay is vulnerable to CVE-2023-45960?  Is Liferay affected by CVE-2023-45960? Environment Quarterly Release 2024.Q1.7 Resolution The NIST listing for CVE-2023-45960 has been withdrawn and...
Use the Liferay server to send emails upon Form submission on your Cloud environment
legacy How To
Issue Liferay sends emails upon user-related events, such as creating new users or updating their passwords. Is it possible to use such an email capability to send emails from form submissions? Since...