Search Results

All Results 435
ソート
Resource Type
Applicable Versions
Deployment Approach
Capability
Feature
セッションタイムアウトの時間を、インスタンスごとに設定したいです。
legacy
, knowledgeArticleType: reference, legacy: true, name: セッションタイムアウトの時間を、インスタンスごとに設定したいです。, showDisclaimerMessage: true, sourceTeam: Support, ticketNumber: 109505, title: セッションタイムアウトの時間を、インスタンスごとに設定したいです。
「アイデンティティ・プロバイダーへリダイレクトしています...」というメッセージの画面の背景を変更可能ですか。
legacy
, knowledgeArticleType: reference, legacy: true, name: 「アイデンティティ・プロバイダーへリダイレクトしています...」というメッセージの画面の背景を変更可能ですか。, showDisclaimerMessage: true, sourceTeam: Support, ticketNumber: 102179, title:...
LiferayでのSAML設定方法
legacy How To
, knowledgeArticleType: howTo, legacy: true, name: LiferayでのSAML設定方法, showDisclaimerMessage: true, sourceTeam: Support, ticketNumber: , title: LiferayでのSAML設定方法
DXPで「ldap.import.create.role.per.group」を使用する方法
legacy How To
, knowledgeArticleType: howTo, legacy: true, name: DXPで「ldap.import.create.role.per.group」を使用する方法, showDisclaimerMessage: true, sourceTeam: Support, ticketNumber: , title:...
SCIM Support for Microsoft Entra ID
legacy
Issue Is there complete out-of-the-box SCIM support for Microsoft Entra ID in Liferay DXP? Environment Versions before 2025.Q2.0. Resolution Full support for Microsoft Entra ID with Liferay's SCIM functionality was...
Web Content Templates cache Absolute image URLs, not Relative URLs
legacy Troubleshooting
Issue The templates cache absolute image URLs instead of relative URLs. Environment 2024.Q1.12, 2024.Q1.18 Resolution Upgrade to 2024.Q2.0+ or Request a hotfix with LPD-23196, knowledgeArticleType: troubleshooting,...
Does Liferay have an Attestation of Compliance to be PCI certified?
legacy
Issue We are in the process of reviewing application compliance and want to know if Liferay has an attestation of compliance (related to PCI), specifically the Payment Card Industry Data Security Standard? Environment...
B2C SSO Configuration with OpenID Connect Not Working
legacy Troubleshooting
Issue Setting up Business-to-Consumer (B2C) single sign-on (SSO) configuration with Liferay using OpenID Connect (OIDC) in Azure AD B2C is not working as expected. After enabling OpenID under Instance Settings in...
Application Accept Special Characters in Input Fields
legacy
Issue The application accepts special characters in input fields. Ex: " ' ` * ; % _ = & | \ ? ~ < > ^ () [] {} $ \n\ Steps to Reproduce: 1. Start Liferay server. 2. Navigate to the user’s profile. 3. Click on...
Liferay Marketplace App Manager Web XSS Vulnerability (CVE-2025-4388)
legacy Troubleshooting
Issue A reflected cross-site scripting (XSS) vulnerability (CVE-2025-4388) in /o/marketplace-app-manager-web/icon.jsp allows a remote non-authenticated attacker to inject JavaScript into the...
Step-by-Step SAML Integration with Liferay and Keycloak
legacy How To
Issue Is Keycloak supported with Liferay? If yes, how can SAML be configured with Liferay? Environment Lifeary DXP [All versions] Resolution As per Liferay’s official compatibility matrix, Keycloak is not listed as a...
Re-enabling Basic Authentication when Unable to Access the DXP Control Panel
legacy How To
Issue My Basic Authentication was disabled at the Instance Level, and now I am unable to access the DXP Portal because of it. How do I re-enable Basic Authentication without logging in?   Environment Quarterly...
Changes to Site Templates are not propagated to pages
legacy Troubleshooting
Issue Changes made to a site template are not propagated to the pages that use the template. We can see the next error in the server log: [LayoutSetPrototypeMergeBackgroundTaskExecutor:219] Merge fail count...
Security scan detected a "Reference to Windows file path is present in HTML"
legacy Troubleshooting
Issue Our security scan detected a "Reference to Windows file path is present in HTML" in the following URL:...
Session lost on page redirect using POST method when request header is SameSite=LAX
legacy Troubleshooting
Issue The problem is happening when using POST method to receive data from another portal on a different domain, which is considered unsafe when request header is SameSite=LAX, that because if this header is not...
HttpOnly flag in JSESSIONID cookie using JBOSS application server
legacy Troubleshooting
Issue JSESSIONID cookie does not contain the HttpOnly flag. Environment Liferay Portal 6.2 JBOSS Resolution You need to change it on your application server configuration, in the...
Do source map (.map) files for JS source code represent a vulnerability issue?
legacy
, knowledgeArticleType: reference, legacy: true, name: Do source map (.map) files for JS source code represent a vulnerability issue?, showDisclaimerMessage: true, sourceTeam: Support, ticketNumber: 76754, title:...
Where is the SAML assertion information stored in Liferay?
legacy
, knowledgeArticleType: reference, legacy: true, name: Where is the SAML assertion information stored in Liferay?, showDisclaimerMessage: true, sourceTeam: Support, ticketNumber: 63806, title:...
Security vulnerability in CBOR 4.2.0 (Multi-Factor Authentication)
legacy Troubleshooting
, knowledgeArticleType: troubleshooting, legacy: true, name: Security vulnerability in CBOR 4.2.0 (Multi-Factor Authentication), showDisclaimerMessage: true, sourceTeam: Support, ticketNumber: , title: CBOR...
/html/common/referer_jsp.jsp vulnerability
legacy
, knowledgeArticleType: troubleshooting, legacy: true, name: /html/common/referer_jsp.jsp vulnerability, showDisclaimerMessage: true, sourceTeam: Support, ticketNumber: 45080, title: /html/common/referer_jsp.jsp...
The potential CSRF for Liferay default logout link (/c/portal/logout)
legacy
, knowledgeArticleType: reference, legacy: true, name: The potential CSRF for Liferay default logout link (<Site address>/c/portal/logout), showDisclaimerMessage: true, sourceTeam: Support, ticketNumber: , title: Liferay...
コンテンツセキュリティポリシーヘッダーの構成
Official Documentation
Configuring Content Security Policy Headers Modern browsers use Content Security Policy HTTP response headers to enhance web pages' security to mitigate certain types of attacks (like Cross-Site...
Webサービスの保護
Official Documentation
Securing Web Services Liferay DXP provides four security layers for web services: IP permission layer: The IP address from which a web service invocation request originates must be white-listed in...
CORSの設定
Official Documentation
Setting Up CORS CORS stands for Cross-Origin Resource Sharing. An Origin is a web server at a different domain, and a Resource is some asset stored on the server, like an image, PDF, or HTML file....
サービス・アクセス・ポリシーの設定
Official Documentation
Setting Service Access Policies Service Access Policies define what services or service methods can be invoked remotely. You can apply many of them at once to produce a combined effect. They are...
認証検証子の使用
Official Documentation
Using Authentication Verifiers Authentication Verifiers authenticate remote invocations of Liferay Portal's API in a centralized and extensible way. They have two main responsibilities: Verify...
クロスドメイン ID 管理システム (SCIM)
Official Documentation
System for Cross-domain Identity Management (SCIM) Liferay DXP 2024.Q1+ System for Cross-domain Identity Management or SCIM, is an open standard that automates user provisioning. In other words,...
アカウント
Official Documentation
Accounts Available 7.4+ Accounts provide administrators with a way to organize and manage users for various commerce or business needs. Unlike organizations or user groups, accounts help...
アカウントグループ
Official Documentation
Account Groups Available 7.4+ Use Account Groups to organize related accounts. For example, group accounts by region (Americas, Asia Pacific, Europe, etc.). Creating an Account Group Open the...
アカウントロール
Official Documentation
Account Roles Available 7.4+ Create different account roles with specific permissions and assign them to account users to manage access to accounts. There are two types of account roles: ...
アカウントアドレスへのサブタイプの追加
Official Documentation
Adding Subtypes to Account Addresses Liferay DXP 2025.Q2+ In addition to billing and shipping address types, administrators can define and assign custom subtypes for account addresses. This...
チャンネルのデフォルト
Official Documentation
Channel Defaults Available Liferay 7.4 U49+/GA49+ After creating a business account, set channel defaults to streamline ordering and tailor Commerce behavior for specific accounts. Channel...
チャンネルのデフォルトの設定
Official Documentation
Setting Channel Defaults Liferay 7.4 U49+/GA49+ Users with the necessary account management permissions can set channel defaults for business accounts. Open the Global Menu ( Global Menu ) and...
ユーザーと権限設定
Official Documentation
Users and Permissions Liferay comes with a comprehensive framework to manage user access and roles within Liferay. To support complex organizational needs, there are several entities within the...
アカウントアドレス
Official Documentation
Account Addresses Available 7.4+ Account addresses are the billing or shipping addresses associated with Business or Person accounts. Adding an Account Address Open the Global Menu (Global...
アカウント管理ウィジェット
Official Documentation
Account Management Widget Available 7.4+ Use Account Management widget to manage and access account information from any page. This provides access for those without permission to view the Control...
アカウントユーザー
Official Documentation
Account Users For Liferay 7.4 U55+/GA55+ Once you've created an account, you can associate existing users with it manually. Alternatively, you can create and associate users with an account...
チャンネルのデフォルトの権限リファレンス
Official Documentation
Channel Defaults Permissions Reference Liferay DXP 7.4 U75+/GA75+ Setting channel defaults for an account ensures that addresses, shipping options, terms and conditions, and payment methods are...
連絡先
Official Documentation
Contacts Liferay DXP 2024.Q2+/Portal GA120+ Using the new Contact tab on an account, you can add contact details related to the account: Addresses Phone Numbers Email Addresses Websites ...
アカウントでのワークフローの使用
Official Documentation
Using Workflow with Accounts Liferay 7.4 U49+/GA49+ Accounts are fully integrated with Liferay's workflow engine, so you can enable an approval process for account creation. To enable a workflow...