Capability

Security

検索バー

Liferay DXP is built with security in mind. A variety of standards based authentication methods and integrations can be used to ensure secure access to a site and its resources. Robust role-based access control with permissions gives you fine grained control over what authenticated and unauthenticated users can access, share, or edit. Liferay DXP’s web services also have a multi-layered and configurable approach to security and authorization.

Feature
Deployment Approach
Console errors when local staging is on
legacy Troubleshooting
Issue There is a staging initialization failure within the console when local staging is on.  Steps to reproduce:  Publishing > Staging > Toggle Local Staging On Navigate to the Home Page and check the console within...
How to create Web Content with large images from text file?
legacy Troubleshooting
Issue Copy-pasting large images from text file prevents the Web Content from being published, although it appears correctly in the editor. Environment Liferay DXP 7.4 Resolution When images are copy-pasted...
How to preserve the structureId and formId during export/import to avoid mismatches between environments?
legacy Troubleshooting
Issue When we export/import web content articles and forms, their IDs sometimes change.  How to preserve the structureId and formId during export/import to avoid mismatches between environments? Environment...
Modified date not match the author of a web content, document or any other asset.
legacy
Issue The author displayed for content/documents is inconsistent when modifications are made by users other than the original author. When a user edits and publishes the content, the displayed author is...
Handling an excess number of User Notifications
legacy Troubleshooting
Issue As my Liferay system sends out User Notifications over time, the UserNotificationEvent table accumulates many records quickly. I would like to schedule the cleanup of old User Notifications, so that the...
Defining Permissions for Object Entries
legacy
Issue The creator/owner of an object entry (or any other data type) has full permissions to manage that entry (update, delete, view). I would like to give Object Admins the possibility to define/restrict...
I can select a Display Date in the past for a Web Content
legacy How To
Issue After creating a Web Content, when I go to the Properties tab > Schedule section, I can select a Display Date in the past. No error message appears when I save the Web Content with a past Display Date....
Email Settings not resetting completely from Instance Settings
legacy Troubleshooting
Issue If a user wants to reset Mail Settings from Instance Settings, it is not resetting completely Environment SaaS Resolution Open a Help Center ticket to have Support manage the environment Additional...
Is it possible to create Style Books directly from a Client Extension?
legacy
Issue Is it possible to create Style Books directly from a Client Extension? Environment DXP Quarterly Release 2024.Q4.0 Resolution Client Extensions can be created to modify the Liferay backend elements, like the...
Using Required for system configurations.
legacy Troubleshooting
Issue We would like to add required = true configuration to our system configuration. Upon requesting the data through a groovy script the string returns empty when required = true is set. Environment DXP 7.4+...
Tomcat's vulnerability CVE-2023-44487
legacy
Issue Is DXP 7.4 affected by Tomcat's Rapid Reset CVE-2023-44487? Environment Liferay DXP 7.4 Resolution If user is not using Tomcat with DXP, then it is not affected by “Tomcat's Rapid Reset CVE-2023-44487”. If...
How to Determine if JUnit is installed on Liferay Cloud
legacy How To
Issue How to determine if JUnit is installed on Liferay Cloud? How do users install JUnit on Liferay Cloud and integrate it with Jenkins? Environment Liferay Cloud Resolution JUnit is pre-installed on Liferay...
If Form entries are saved into an Object, email notification about Form submission is not sent
legacy Troubleshooting
Issue We have created an Object and a Form. We save Form entries into the Object. When a Guest user submits the form, the notification is not sent out. We are getting the following error in the logs: ERROR...
How to clear the data folder of Glowroot in Liferay PaaS
legacy How To
Issue How to clear the data folder of Glowroot in Liferay PaaS. Environment Liferay DXP 7.4 Liferay PaaS Resolution To clear the data folder through the Glowroot UI. Follow the below steps: 1. Visit the site and...
Is Liferay vulnerable to CVE-2024-38819: SpringFramework (spring-core-5.3.39)?
legacy
Issue CVE-2024-38819: Path traversal vulnerability in functional web frameworks (2nd report) is related to the usage of WebMvc.jar. Is Liferay vulnerable to this vulnerability? Environment Liferay DXP 7.3...
Liferay instance node going into hang mode - Failed to validate connection
legacy Troubleshooting
Issue Liferay instance node goes into hang mode and the following error appears: HikariPool-1 - Failed to validate connection ... (This connection has been closed.) ... Possibly consider using a...
What is Synchronous Database Replication and how does It enhance Data Consistency in Liferay?
legacy
Issue What is Synchronous Database Replication and how does It enhance Data Consistency in Liferay? Environment Liferay DXP 7.4 Resolution Synchronous database replication is used in Liferay and it is a...
Multilingual PDF search indexing fails with web content
legacy
Issue Why does the main document entry contain only the metadata and not the content of PDFs? Is it possible to add the content of PDFs along with the metadata of PDFs in the main document entry? Steps to...
Vulnerabilities reported in classes generated by Liferay Service Builder
legacy Troubleshooting
Issue While performing security scans, there are vulnerabilities found in custom classes that are generated by Liferay Service Builder. Environment Liferay DXP 7.4 Resolution Sometimes, these warnings are...
Is there a release date for implementing the Content Security Policy (CSP) at Liferay?
legacy
Issue If CSP is in beta mode, how is Liferay protecting its system from vulnerability? Is there a timescale for when the CSP will be fully deployed in the portal? Once the CSP has been successfully implemented,...