Redirect manager does not work on AEM Cloud environment where SAML authentication is activated

[fbonheurCap]

Required Information

• AEM Version, including Service Packs, Cumulative Fix Packs, etc: 2024.10.18175.20241010T124406Z
• ACS AEM Commons Version: 6.0.10
• Reproducible on Latest? yes/no

Steps to Reproduce

On a cloud service environment follow the documentation to activate SAML authentication
https://experienceleague.adobe.com/en/docs/experience-manager-learn/cloud-service/authentication/saml-2-0

Create a ACS common redirection rule (originUrl towards targetUrl ) and publish it.

Seems to be a permission issue on the redirect manager configuration node on the publish instance because of the SAML default group membership.

Which permission to be assigned to the CUG that make the redirection on the publish instance ?

Acces the originUrl

Expected Behavior

The originUrl is redirected to the targetUrl

Actual Behavior

We stay on the originUrl

Links

[YegorKozlov]

What paths did you protect with SAML? Redirect Manager reads rules from /conf/*/settings/redirects/* and we set ACL for everyone in the repo-init script:

set ACL for everyone
    allow jcr:read on /conf  restriction(rep:glob,/*/settings/redirects)
    allow jcr:read on /conf  restriction(rep:glob,/*/settings/redirects/*)
end

do you have any CUGs that override it?

[fbonheurCap]

We are protecting our site pages "/content/ufrfront"
Indeed a CUG have been created but it is memberOf "everyone" group.