cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Read only

Accessing SAP Leonardo IoT API-s with authorizations from third party apps

former_member655843
Discoverer

‎2020 Jan 16 10:49 AM - edited ‎2024 Feb 03 6:02 PM

0 Kudos
338

Hello,

We are struggling with a situation where we need to provide an API to the Thing data (measurements, metadata, etc.) in our SAP Leonardo IOT to users of third party apps. We were able to provide access as described in https://blogs.sap.com/2017/10/13/access-the-sap-iot-application-enablement-apis-using-postman/ (using the clientid and clientsecret).

As a next step we need to restrict the objects each user is allowed to access.

We have our user access rights set up within Leonardo IoT using authorization groups (each user is allowed to read only a subset of Things). Directly browsing the API (e.g. by browsing to https://<tenant>.iot-sap.cfapps.<zone>.hana.ondemand.com/advancedlist-thing-sap/CompositeThings/v1/T... and logging in when prompted) respects the access rights of the logged-in user as expected.

How can we make these same requests programmatically?

Know the answer?

Help others by sharing your knowledge.

Answer

Need more details?

Request clarification before answering.

Show replies
Show replies

Accepted Solutions (0)

Answers (1)

Answers (1)

marcus_behrens1
Product and Topic Expert
Product and Topic Expert
‎2020 Jan 27 4:31 PM
0 Kudos

Hi, you would have to pass the application context including the user session from your application to the call of the Leonardo IoT api. This would only be possible if both your application and Leonardo IoT have been configured to trust the same identity provider. I will ask a colleague to answer in more detail. Regards, Marcus

Show replies
Show replies
Ask a Question