on 2011 Nov 22 8:50 PM
Hi,
We are using SAP Portal to access backend ABAP Webdynpro's. Users are first using SAP portal to login and then some of them are using the SAP ITS URL in the same browser. It works becuase they have the SAPLOGONTICKET. Is there any way to prevent this ?
Request clarification before answering.
Let me make it clear... We are already using webdynpro iviews in the portal.
Backend URL is something like: http://host:port/sap/bc/webdynpro/sap/wdt_master_detail?sap-client=320
When users login to the portal and in the same browser enter the backend webdyrpro URL, the user gets direclty logged on. I want to completely block direct access to the webdyrnpro from the browser. Users should only be able to access the backend webdynpro's from the Portal only.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi,
We cannot avoid this. To communicate between portal and backend thru portal you should have already set the trust between the systems. so If you use the WebGUL URL in the same session it will use the same SAPLOGON Ticket and logs in. If you want to stop this process then the Webdynpro iView will always ask for user name and password whenever you are calling from portal. So this is unavoidable.
Thanks,
Mahendran B.
Hi,
In my opinion, the only way is to forbid the use of SAP ITS with abap rôles or to deactivate SAP ITS URL from SICF.
Regards,
Olivier
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi,
I did not understand what you meant by "prevent this". What do you exactly want to do?
Thanks
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
77 | |
30 | |
10 | |
8 | |
8 | |
7 | |
7 | |
5 | |
4 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.