How to Restrict Access to Sitecore SXA Site with Identity Server

Let’s imagine that you need to restrict to secure your whole site, or only your Content Management instance. No anonymous access. As a Sitecore old school guy I tough about site requireLogin setting set to true and loginPage to /sitecore/login

From old Sitecore Developer Network

 

It changes with Sitecore 9.1 and Identity Server . A must read article, Understanding Sitecore authentication behavior changes,  says that the new format is  /identity/login/{your_sxa_site_name}/SitecoreIdentityServer. 

Continue reading

Sitecore compliance with GDPR- Part I

Part II 

AS you may know already, the European Union General Data protection Regulation (GDPR)  will reform, modernize and it replaced the 1995 EU Data Protection Directive. The objective is to harmonize data protection rules across 20 EU member states by creating a single, comprehensive EU data protection framework for the processing of and free flow of data with a one=stop shop mechanism for enforcement.   The reform aims to give control to EU citizens and strengthen consumer trust in digital economy.

GDPR

The new law has been voted and published in 2016 and will be effective on May 25th 2018. However, according to Gartner, more than 50% of companies affected by GDPR will not be in full compliance with its requirements.

Continue reading

Sitecore 9. Do you need to upgrade your Sitecore license ?

Yeah, Sitecore added support to other combined roles than stand alone. My worries are not valid any more.  Please look at my edit on November 22nd

My client licence is XP3 (3+3). We allow to have 3 production servers. It looks like for the moment (or not) the only supported role combination is XP0 (standalone) – which is recommended only for local development and testing. Here is a link to Sitecore documentation.

If you planning a fully featured Sitecore Experience Platform installation you need separated server roles: Content Delivery, Content Management, Processing, xConnect Collection, xConnect Collection Search,  xDB Reference Data, xDB Automation Operations, xDB Automation Reporting.  Is my old Sitecore licence good enough? I has been told on Sitecore slack by Sitecore employee :  ” From a licensing perspective, you probably want to look at transitioning to the subscription licensing model by speaking with your local sales contact.”

I will you keep posted.

Added on November 8th

Based on Webinar – Sitecore Pricing Overview for Partners I can tell that all xDB processing server are PRODUCTION now.

Added on November 22nd

It looks like it was a false alarm. Sitecore yesterday added new  combined roles

How to enable/disable visits tracking from content database.

I has been ask by business to find out a way to not track internal visits – easy stuff – we can add internal IP, public IP into <excludedIPAddresses> node of Sitecore.Analytics.ExcludeRobots.config file.

 

It worked for a while. Then I has been ask to disabled only on CM, but     …sometimes 😉 . Marketers, usually don’t want to see internal traffic to be tracked, but from time to time they would like to test some functionalities and  to track visits.  Deploying each time a config file is not an option.

I thought, it would be nice to add some logic into  the same pipeline (excludeRobots) where we filter already IP to exclude.

Continue reading

How to track from where visitor downloaded a PDF file

For the Website owner it is important to know how the data is accessed in order to understand the flow. This information will be used in Website personalization process to optimize.  For the content page we can use Path Analyzer.  For media assets it is a different story.  In our case a visitor cans download from landing page, case study detail page and search results page. He has to find a way how to track in xDB all PDF downloads regardless from where the visitor access it.

Continue reading

How to exclude a list of specific items from Solr search results

I’m pretty sure that happens to you to look for items that match specific criteria except  few specific ones. We all have friends that don’t  know what they want, but they know what they don’t want. (I love you baby).

In my case, the client wanted a list of case studies specific to an  industry except those that the visitor already saw.  The first thought is to get results from Solr and then filter those already seen. But what about metadata that helps us implement paging, or just get  first 10 items ? Do we need another query ? Tee answer is to sent exclusion param with our query .

Continue reading

Sitecore 8.2 Rendering Issues

We experienced issues with shared layout on few of our pages. Presentation assembling seemed not following Presentation Detail Information Flow.

Based on Sitecore documentation this is a flow

rendering

 

  • SharedLayout option uses __Rendering field
  • FinalLayout option uses __Final Rendering field
  • Going from right to left, if a field has a layout delta, it goes to the field to its left to gather more presentation information.

After the investigation we noticed that on Save Button click in Experience Editor, the full share layout is saved and not the delta in __rendering fields. ( in case when a page is inheriting renderings from standards values).

Sitecore provided us with a patch. You can request one – the reference number is 144214

Is your xDB Cloud Consumption plan right for you ?

When I join my current project first thing I did as architect is an audit.  Make sure that architecture is optimized for current traffic and all best practices has been followed.  The client website use Sitecore xDB Cloud with xDB Plus subscription. It allows you up to 250 000 contacts at anytime and up to 2 500 000 interactions per month.

Contacts

How it’s measured: Total identified contact stored at any time.

Interactions

How it’s measured: Net new interaction created in a given period of time.

I check our current consumption to find out that we can switch to xDB base subscription and pay 30% of what are paying right now.

In some cases you better pay overage price before switch to the next subscription plan.

2017-10-24 11_42_15-xDB - Sales Enablement - March 2015 V2.pptx [Protected View] - PowerPoint

In case you want to generate your own reports or load data directly from mongo, you can access to your xDB database using and mongo viewer application.
Open your connectionstrings.config file and find the “analytics” connection string:
mongodb://{user-name}:{password}@{host1}:{port1},{host2}:{port2}/{guid}-Analytics?ssl=true;replicaSet={hostX}
You have replicaset on XdbCloud so use the host1 and port1 to connect.
Set up values in the following way:

con 2

con 2

But the best approche is to use  sitecore xDB Cloud API

https://gateway-xdb-scs.cloud.sitecore.net/api/xdb/Consumption/licenseId/deploymentId/year/month

where

  • licenseId – your Sitecore license ID
  • deploymentId – the unique identification of the deployment
  • year – the consumption year
  • month – the consumption month

Important

To ensure that your customers only access their own xDB sets, you must use a valid authentication token whenever you make a call to the xDB Cloud API. You can generate these tokens by using a valid Sitecore license file to call the SSO Encode Sitecore License endpoint. You must include the generated token as a HTTP header in all other requests called X-ScS-Nexus-Auth.

Visit this page -> xDB Cloud Consumption