Search Results

This article is a legacy article. It applies to previous versions of the Liferay product. While the article is no longer maintained, the information may still be applicable. Wiki Permissions can be "layered" because of the multiple permission levels that can go into accessing Wiki...

The principles below are adopted from general industry standard patch management best practices. Following these will help mitigate the risk of change on production servers. Awareness Liferay communicates the availability of maintenance updates for Liferay products through Announcements....

This article documents a known behavior where Message Boards' CKEditor—when configured to HTML—will have text stripped from hyperlinks after a post. This is usually observed after setting the protocol to Other. Resolution This behavior is expected under Liferay DXP's Antisamy...

CVE-2018-3831 reports that, "Elasticsearch Alerting and Monitoring in versions before 6.4.1 or 5.6.12 have an information disclosure issue when secrets are configured via the API. The Elasticsearch _cluster/settings API, when queried, could leak sensitive configuration information such...

The following Common Vulnerabilities and Exposures (CVE) have been reported for Apache Struts 2: CVE-2017-9805 CVE-2017-12611 CVE-2018-1327 - REST XStream FreeMarker CVE-2018-11776 How are Liferay DXP (both 7.0 and 7.1) and Liferay Portal affected by the Apache Struts 2 Vulnerability?...

This article documents Liferay's position regarding the Session Identifier (JSESSIONID), including how and why a new JSESSIONID is generated.  Resolution Customers doing their own security scan of the Liferay platform might have noticed that a new JSESSIONID may have been generated....

This article serves as a reference guide on how to use the getOriginalServletRequest function to get the default queryString when using the OSGi framework. Developers familiar with Liferay Portal 6.2 EE and now using DXP 7.0 (also 7.1, 7.2 or 7.3) will find that certain requests are now...

For customers working on Liferay DXP 7.1, the following table has been formed to serve you and provide current information regarding known issues that have been discovered, reported, or resolved. Please be sure to check the linked LPS ticket for more information on an issue. We also...

This article highlights several changes to front-end tools and features with User Interface for Liferay DXP 7.0. Resolution Here are some highlighted changes followed by brief explanations of new projects: Modularization; css and javascript files can be moved with modified file...

The Liferay WYSIWYG portlet allows for WYSIWYG editing capabilities in a very simplified package. While the lightweight nature of the Liferay WYSIWYG portlet can be useful, Liferay Marketplace indicates that the app, "should only be used when the full capabilities of Liferay's CMS system...

The Liferay platform's JSONWS page is available to unauthenticated users at your Liferay_URL/api/jsonws. However, this does not mean that guest users have access to execute JSON web services. Even if the web services are listed in JSONWS page when accessing as Guest, most of the web...

Liferay Support does not recommend or endorse specific third-party products over others. Liferay is not responsible for any instructions herein or referenced regarding these products. Any implementation of these principles is the responsibility of the subscriber. This article documents...

Many apps from Liferay Marketplace are now included in Liferay Digital Experience Platform 7.0 Suites, and are updated through Fix Packs and Service Packs.  Please see the complete list below: Resolution Collaboration Suite Liferay Notifications Liferay Wiki Navigation Forms and Workflow...

The Patching Tool 2.0.8 is a maintenance release for Liferay Digital Experience Platform 7.0 and 7.1, which includes fixes and minor updates.  Resolution Release Highlights:  Introduces the command, system-info, which provides additional hardware information, such as number of CPUs, disk...

This article documents Liferay's position on duplicating a database to create a staging environment. The Use Case In order to enable Remote Live Staging, system administrators must have two databases: a staged environment and a live environment. One assumption is that it should be...

This article describes the behavior in which permissions do not propagate from the parent folders to the files or children folders uploaded in the Document Library. Also, this article will discuss what the following properties do in the portal with respect to permission inheritance....

This article documents some recommended suggestions that administrators should be mindful of when they prepare to use Staging on their Sites, or when they are managing their already existing Staging infrastructure. Resolution When planning to use Staging, one of the first decisions that...

問題 ユーザーをAPI経由で登録しています。 パスワード、パスワードポリシーはどのような値が設定されますか。 環境 DXP 7.4 解決 APIでユーザーを登録時にパスワードを指定しない場合、自動生成されたパスワードが設定されます。 関連ソースコード：UserLocalServiceImpl.java パスワードポリシーは、「Default Password Policy」が適用されます。 追加情報 ①ヘッドレスREST API 「http://localhost:8080/o/api」へアクセスし、UI上から実行した際のサンプル。 API：...

問題 既存ページの一覧を取得する必要があります。 環境 DXP 7.0+ 解決 ページ一覧はLayoutテーブルに保存されていますが、コントロールパネル等の管理用ページやコンテンツページのドラフトページ等も、全て含まれています。 以下のAPIを利用することで、サイトIDを指定して公開ページ及び非公開ページを取得できます。 ・LayoutLocalServiceUtil.getLayouts 上記APIは localhost:8080/api/jsonws/ からも確認できます。 ・/layout/get-layouts...

問題 Monitoringで表示されているメモリ使用率が上昇し続けます。 コントロールパネル＞サーバ管理から確認できるメモリ使用率と一致しません。 環境 Liferay PaaS 解決 Monitoringのメモリ使用率が上がり続ける動作は正常です。 表示されているグラフは、GKE（Google Kubernetes Engine）上から見える各ポッド上におけるコンテンのメモリ使用率がそのまま表示されます。 サービス起動時は、設定された最小メモリに近い値で起動します。 アプリケーションサーバーに負荷が全くかからない場合は、メモリの使用率は増加しません。...