topic Re: Validate user password in Application Development and Automation Discussions

Validate user password

Former Member — Wed, 06 May 2009 01:32:16 GMT

I'm looking for a way to validate a user's password. What I need is a FM that accepts a username and a password and I wan it to tell me if this is the correct password for the user. Is there anything like this?

Regards,

Davis

Re: Validate user password

Former Member — Wed, 06 May 2009 01:49:02 GMT

Davis,

I do't think you have any Standard FM for your requirement, if you need really I guess you need to develop your own FM.

Regards,

Suneel G

Re: Validate user password

Former Member — Wed, 06 May 2009 03:23:53 GMT

check with the following links

[Validation|http://help.sap.com/saphelp_nw04/helpdata/en/d2/141fb593c742b5aad8f272dd487b74/content.htm]

[Validate user name and password|http://help.sap.com/saphelp_xmii115/helpdata/en/Business_Logic_Services/SAP_WAS_Interface.htm]

Hope it helps you

Regards,

Rajani

Re: Validate user password

Former Member — Wed, 06 May 2009 03:28:29 GMT

I dont think SAP will give such kind of fm, as it would just help a brute force attack on user id's

Re: Validate user password

Former Member — Wed, 06 May 2009 03:43:26 GMT

Hi, is there any database table r u maintaining to store username and password?are u trying to compare the password with database table?...Please let me know

Regards

Kiran

Re: Validate user password

Former Member — Wed, 06 May 2009 03:51:44 GMT

Davis,

You will have to incorporate the logic for that. As far as I know there is no Standard FM that does the functionality what you are expecting..

If you are storing the username and password in the database. Scribble the password using any encryption FM and store it in the database.

When you enter the username and password in some other application, decrypt the password which is stored in the database in a scribbled way, compare it and then after validation either reject or approve the user to login.

Hope this helps you.

Thanks,

Babu Kilari

Re: Validate user password

Former Member — Wed, 06 May 2009 10:07:50 GMT

I am simply trying to put a username and password field on an adobe form but I want these fields to validate against their SAP logon. I am not maintaining separate passwords. The client wants to use the normal SAP logon information.

I too think that this isn't possible (due to a brute force attack) but I am not sure.

Regards,

Davis

Re: Validate user password

dev_parbutteea — Wed, 06 May 2009 10:42:56 GMT

Hi ,

Why don't you try to add via authorization checks , i.e, allow only some users to access the relevant transaction.

Regards.

Re: Validate user password

Former Member — Wed, 06 May 2009 10:45:52 GMT

Because I can't validate that the user is who he/she says they are unless I can authenticate it via a password. That's the issue. I need to be able to authenticate the user without storing/maintaining another password. The only way this will work is if I can validate the "normal" SAP logon.

Regards,

Davis

Re: Validate user password

dev_parbutteea — Wed, 06 May 2009 11:12:37 GMT

Hi,

Doesn't SAP already validate the logon when he logs in to the system? I don't see the use of validating the SAP logon again..

Re: Validate user password

Former Member — Wed, 06 May 2009 11:14:48 GMT

If you knew the scope of the requirements you would understand. I have no reason to post the entire scope because the original question covers the issue.

Re: Validate user password

Former Member — Wed, 06 May 2009 16:02:57 GMT

I found that SUSR_LOGIN_CHECK_RFC works for this.