topic ABAP Proxy Generated Classes - Security Checks in Application Development and Automation Discussions https://community.sap.com/t5/application-development-and-automation-discussions/abap-proxy-generated-classes-security-checks/m-p/12765724#M2022756 <P>Hello all,</P> <P>I have a question about ABAP proxy consumer classes.</P> <P>If you generate consumer classes from a SAP PI-ESR via SPROXY transaction, do you need to explicitly build in authentication checks before calling the ABAP proxy method?</P> <P>So by means of "AUTHORITY-CHECK OBJECT &lt;object&gt;" and own Z-/Y--authorization objects?</P> <P>Is there a recommendation or a rule? Unfortunately I did not find anything in the SNOTES.</P> <P>Only the protection by SOAMANAGER. But this refers, as I understand it, only to the technical user.</P> <P>Could you please send me SNOTES links or other sources?</P> <P>Thank you very much.</P> Sat, 09 Sep 2023 08:33:21 GMT timurc 2023-09-09T08:33:21Z ABAP Proxy Generated Classes - Security Checks https://community.sap.com/t5/application-development-and-automation-discussions/abap-proxy-generated-classes-security-checks/m-p/12765724#M2022756 <P>Hello all,</P> <P>I have a question about ABAP proxy consumer classes.</P> <P>If you generate consumer classes from a SAP PI-ESR via SPROXY transaction, do you need to explicitly build in authentication checks before calling the ABAP proxy method?</P> <P>So by means of "AUTHORITY-CHECK OBJECT &lt;object&gt;" and own Z-/Y--authorization objects?</P> <P>Is there a recommendation or a rule? Unfortunately I did not find anything in the SNOTES.</P> <P>Only the protection by SOAMANAGER. But this refers, as I understand it, only to the technical user.</P> <P>Could you please send me SNOTES links or other sources?</P> <P>Thank you very much.</P> Sat, 09 Sep 2023 08:33:21 GMT https://community.sap.com/t5/application-development-and-automation-discussions/abap-proxy-generated-classes-security-checks/m-p/12765724#M2022756 timurc 2023-09-09T08:33:21Z Re: ABAP Proxy Generated Classes - Security Checks https://community.sap.com/t5/application-development-and-automation-discussions/abap-proxy-generated-classes-security-checks/m-p/12765725#M2022757 <P>From my point of view, the connection between SAP ERP and PI should be already considered as being secure.<BR />Anyways it’s just using the technical user to connect to PI.</P><P>Of course you can perform an authority check on ERP side to make surr the user running the program etc. is allowed to call the proxy.<BR />But this needs only to be done if you call the proxy in dialog mode.</P> Sat, 09 Sep 2023 08:42:38 GMT https://community.sap.com/t5/application-development-and-automation-discussions/abap-proxy-generated-classes-security-checks/m-p/12765725#M2022757 thkolz 2023-09-09T08:42:38Z