Capability

Security

検索バー

Liferay DXP is built with security in mind. A variety of standards based authentication methods and integrations can be used to ensure secure access to a site and its resources. Robust role-based access control with permissions gives you fine grained control over what authenticated and unauthenticated users can access, share, or edit. Liferay DXP’s web services also have a multi-layered and configurable approach to security and authorization.

Feature
Deployment Approach
Auditing the remote client IP address changed after upgrade
legacy How To
Issue After upgrading from Liferay 7.0 to a more recent Quarterly Release we are facing changes to the Audit_AuditEvent table, which was storing, in the clientIP column, the content of the 'X-FORWARDER-FOR' HTTP...
Checking Commerce Permissions in Fragments Always Returns True
legacy
Issue When using Freemarker variables userPermission and permissionChecker in a fragment to check if a user has specific permissions for their commerce account, the check always returns true, even for non-existent...
Expiring license error occurs in clustered environment for Liferay PaaS
legacy Troubleshooting
Issue The following expired licensing error displays in Liferay PaaS logs: ERROR [main][LicenseManager:-1] Digital Enterprise Unlimited Enterprise-Wide license is expired Environment Liferay PaaS Resolution There are two...
Vulnerability CVE-2024-52046 in Liferay DXP
legacy How To
Issue Is Liferay vulnerable to the vulnerability described in CVE-2024-52046? Environment Liferay DXP 7.3 and above Resolution Liferay uses the affected Apache Mina library (`mina-core`) only in LDAP-related code. If...
Certificate Renewal Failing with 403 Error on Liferay PaaS
legacy Troubleshooting
Issue When attempting to renew the SSL certificate generated by Let’s Encrypt, the process fails with multiple 403 (Forbidden) errors. The error messages suggest a security restriction that is preventing the...
'Error: Please enter content with valid content size no larger than 1 MB' when using Liferay Forms
legacy Troubleshooting
Issue When I am saving a form with a large amount of data, I get the following error:  Error: Please enter content with valid content size no larger than 1 MB. Environment Liferay Quarterly Releases Resolution...
Received "java.lang.IllegalArgumentException: Unsupported class file major version 65" when using JDK 21
legacy Troubleshooting
Issue I encountered the following error when compiling my custom JSON Webservice Module with JDK 21.  exception    "Unsupported class file major version 65" throwable    "java.lang.IllegalArgumentException:...
How to change the URL of the Site Logo
legacy How To
Issue How can I change the logo link to redirect to a URL different than the home page?  Environment Liferay Quarterly Release Resolution By default, the logo links to /web/site-friendly-url (Site Display URL),...
Does upgrade touch the doclib?
legacy
Issue We are preparing the upgrade from a Liferay 7.3 FP2 to a Liferay 7.4 2024.Q1 and we are trying to prepare a rollback system if something goes wrong and we need go reinstall the 7.3. My question is about the document...
Locating Default Asset Publisher Templates
legacy
Issue Where can I find the default display templates used by the Asset Publisher? Environment Quarterly Releases: 2024.Q3, 2024.Q2, 2024.Q1, 2023.Q4, 2023.Q3 Liferay DXP 7.4+ Resolution The templates are located in...
Browser Back Button Issue with Multiple Asset Publishers
legacy Troubleshooting
Issue When a page contains multiple Asset Publishers, the browser's back button may not work as expected. Clicking the back button may require multiple clicks to return to the previous page. Environment Liferay DXP...
Insufficient Permissions to Access Folders When Uploading Documents to Web Content
legacy Troubleshooting
Issue Users with a role other than Administrator, for example, the "Editor" role, receive a permissions error when they try to access folders within Documents and Media while uploading a document to Web Content. The...
Adaptive Media Images Not Displaying for Users in Product Catalog Search Results
legacy Troubleshooting
Issue When using Adaptive Media with images in Product Catalog search results, the images are displayed correctly for some users, but not others. For example, Adaptive Media is not working for...
When using a form, the email notification does not send the value selected from the dropdown menu
legacy Troubleshooting
Issue When using a configured form with "Object" as the storage with Picklist in use, the email notification that populates after each submission is not displaying the correct values from when the form was submitted....
Changing the Displayed Time Zone for Audit Logs
legacy Troubleshooting
Issue Even after changing the time zone for the instance within the Instance Settings, the time zone for the Create Date for the logs in Audit are still displayed in UTC.   Environment Liferay DXP 7.4 Quarterly Release...
Web Content "Modified by" User Appears to be Incorrect After Translation
legacy Troubleshooting
Issue After translating existing web content, the last modified user displayed is the original author, not the translator. Environment Liferay DXP 7.4+ Resolution The "Modified by" user and timestamp for web content...
On RSS Feed feature deprecation and removal
legacy
Issue When reviewing documentation such as https://help.liferay.com/hc/en-us/articles/360028820652-Configuring-RSS-Feeds the RSS Feed feature is listed as deprecated, and has been 7.1 but is still available in 7.4. 1. If...
Getting BadPaddingException errors in the logs after an upgrade
legacy Troubleshooting
Issue After upgrading Liferay DXP, javax.crypto.BadPaddingException errors appear in the logs when using 'Auto Login' feature ('Remember me'). Example error message: ERROR [AutoLoginFilter:247] Current URL /home...
Customizing Email Notifications in Forms application after upgrading to Liferay Quarterly Release
legacy How To
Issue In previous versions, we were customizing the email notifications sent by Forms application following the instructions of these articles: How can I configure or customize the look and content of email notifications...
"http://localhost:8080/o/oauth2/authorize" URL redirect to the Login Page
legacy Troubleshooting
Note: please note that Liferay has renamed its Liferay Experience Could offerings to Liferay SaaS (formerly LXC) and Liferay PaaS (formerly LXC-SM). Issue When accessing the OAuth2 authorization URL...