cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

UI5 App without authentification shows popup in browser (HTTP 401) due to call of /sap/bc/lrep

Go to solution
Tim_T
Participant

on ‎2018 Mar 09 1:30 PM

0 Kudos
3,870

I would like to host a UI5 App without authentification. The app works well in Fiori Launchpad and via the direct link to the service in my user context.

To achieve it without authentification I entered a system user in the corresponding SICF services for the UI5 and the OData service. (like described here: https://blogs.sap.com/2015/08/05/disable-csrf-token-for-odata-calls-using-sap-netweaver-gateway/)

Example for the UI5 service:

Now I can call my two services without authentification:

/sap/bc/ui5_ui5/sap/z_system_info

/sap/opu/odata/sap/z_sm_system_info_srv

But the problem is that the browser shows a logon window like this:

As I found out this is caused by a call to sap/bc/lrep/flex/data/com.yourcompany.z_system_info.Component

All other resources are loaded fine and when I abort the message I can use the app without problems.

I thought about a problem with the CSRF Token, but the entry ~CHECK_CSRF_TOKEN=0 in the GUI_CONFIGURATION of the service as mentioned in the linked article did not change anything.

So I got the idea to switch the logon error page for the lrep service from explicit to system logon:

The result is that instead of a 401 the call gets back with a 200 status and a page where the user normally should log on:

But because it is loaded in the background it will never show up to the user.

I am aware that this is just a dirty workaround, so I would be interested if someone got the same problem or if there is a better solution to this problem? (Especially without modifying the lrep service.)

Know the answer?

Help others by sharing your knowledge.

Answer

Need more details?

Request clarification before answering.

Show replies
Show replies
Tim_T
Participant
‎2018 Apr 13 8:29 AM
0 Kudos

Hi,

now after a month without answers I would just like to know if there is a problem with the question or just nobody has been experiencing this problem so far?

I am curious about your feedback.

Accepted Solutions (1)

Accepted Solutions (1)

EkanshCapgemini
Active Contributor
‎2018 Aug 03 10:08 AM

Hello Tim,

I found the root cause of this problem. It is happening because of a dependecy in your manifest file. Once you create the app with WebIDE, a dependency of '"sap.ui.comp": {},' is added in manifest file along with many others. This is responsible for calling the LREP service.

If you remove this dependecy, it solves the issue.

Regards,

Ekansh

Show replies
Show replies
Tim_T
Participant
‎2018 Aug 06 11:23 AM
0 Kudos

Hello Ekansh,

many thanks for your answer. I tried your solution and it works well, but I had to adapt my routing configuration.

I had to add the "targetControl" property in manifest.json as described here, but I am not sure why:

Regards

Tim

Answers (3)

Answers (3)

ertugrul
Participant
‎2023 Nov 06 6:29 AM
0 Kudos

Hi Tim,

We also encountered the same problem. But we used smart structures. In this case, can't we prevent this service from being triggered from the front end? If there is no possibility, the following result occurs. Shouldn't we use smart in public applications ?

Show replies
Show replies
Tim_T
Participant
‎2023 Nov 06 6:54 AM
0 Kudos

Hi Ertuğrul,

I' m sorry, but I have no experience with smart structures, therefore I' m afraid, that I can't help you.

ertugrul
Participant
‎2023 Nov 06 8:01 AM
0 Kudos

Hi Tim,

I found the solution thanks to mihaly.ducz with this answer 🙂

Normally, when I control it from the network, it triggers the following service.

When I added the following code block, it stopped calling this service.

sap.ui.getCore().attachInit(function() {
  ...
  sap.ui.require(["sap/ui/fl/FakeLrepConnectorLocalStorage" 
    ], function (FakeLrepConnectorLocalStorage) { 
      FakeLrepConnectorLocalStorage.enableFakeConnector( 
        null, 
        "tl.ibp.manage.demand.lifecycle", // the ID of your project or namespace
        "1.0.0" // can be anything
      );
  });
  ...

instead it called the following js files

EkanshCapgemini
Active Contributor
‎2018 Aug 01 1:33 PM
0 Kudos

Hello Tim,

I am also facing the same problem. Did you get the proper solution for this?

FYI. My app is very simple and not using any smart controls or variant management etc.

Regards,

Ekansh

Show replies
Show replies
desiree_matas
Product and Topic Expert
Product and Topic Expert
‎2018 Apr 16 10:58 AM
0 Kudos

Hi Tim,

Check if the following KBA is useful for you:

2568947 - SmartVariantManagement - Setup and Authorizations

Best regards,
Désirée

Show replies
Show replies
Tim_T
Participant
‎2018 Apr 19 4:49 PM
0 Kudos

Hi Désirée,

thank you for the answer.

I read the KBA you provided, which describes how to set up Smart Variant Management, but in my case I do not need it at all. I just had to enable the lrep service because otherwise I could not start the UI5 app from Fiori Launchpad. This is described here https://launchpad.support.sap.com/#/notes/2467759 and it solved this particular problem.

But back to the KBA you mentioned: The problem is that I have no user to assign rights to, but I want to be able to open the URL anonymously. Which works due to the service user I entered except for the lrep service (that I technically not need for the app).

Best regards

Tim

Ask a Question