This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Register Now
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

SecurID® Governance & Lifecycle Blog

Subscribe to the official SecurID Governance & Lifecycle community blog for information about new product features, industry insights, best practices, and more.

Managing custom JSPs on RSA Identity Governance & Lifecycle 7.1.1 and above

MHelmy
Moderator Moderator
Moderator
5 2 446
‎2019-05-13 07:28 AM

We have introduced a new way to upload, access and secure custom JSPs in RSA Identity Governance and Lifecycle version 7.1.1.

 

Previously, there was only one location you could upload JSPs to, called “JSP Pages” under Admin > User Interface > Files. The application did not secure access to any JSP by requiring users to first login before accessing it, instead security had to be part of the JSP itself (if needed).

 

Starting with 7.1.1 there are two locations to upload JSPs under Admin > User Interface > Files.

  • JSP Pages
    • Files uploaded to this directory are secured. Users are required to login to RSA Identity Governance and Lifecycle before they can access pages in this directory.
    • They can be used only for internal activities after users have logged in (for example: Dashboard Components).
    • They can be accessed using the following relative path /aveksa/custom/jsp/example.jsp

 

  • External JSP Pages
    • Files uploaded to this directory are not secured. Users can access pages in this directory without logging in (they are publicly accessible).
    • They should be used only for external activities (for example: Request Form Validation URIs and Password Generator URIs).
    • They can be accessed using the following relative path /aveksa/custom/external_jsp/example.jsp

 

In both cases, files uploaded must end in .JSP and should meet your internal corporate standards.

 

This change may affect your existing usage of JSPs specially if you were using JSPs for:

  • Request Form validation URIs.
  • Request Form Field validation URIs.
  • Password Generator URIs.
  • Request Form JavaScript Blocks.
  • External URL Request Buttons.
  • Workflow REST Web Service node URLs.

 

RSA created the following reports queries (attached) which can be run to identify any existing configurations that will be affected by this change. For each affected JSP you will need to:

  1. Re-upload the JSP under External JSP Pages.
  2. Change any configuration referencing to them from /aveksa/custom/jsp to /aveksa/custom/external_jsp.

 

Please run this report before migrating to version 7.1.1 to be prepared for the change.

 

21/05/2019 Update: Included Workflow REST Web Services nodes and separate SQL query as a potentially affected configuration.

23/05/2019 Update: Included External URL Request Buttons and JavaScript Blocks as a potentially affected configuration.

workflowReportQuery.sql.zip
formReportQuery.sql.zip
Labels
2 Comments
© 2023 RSA Security LLC or its affiliates. All rights reserved.