cancel
Showing results for 
Search instead for 
Did you mean: 

SAP MDK Apps + Allow Anonymous Access

itsumerfarooq
Participant
0 Kudos
467

Hi Experts,

We are creating an SAP MDK app that will be published on iOS and Android app stores.

We have our oData V4 service that is configured in BTP and mobile services and our app communicates to that.

There is a custom login/signup process that is embedded in the app that uses our oData V4 service.

We see that in in MDK app in mobile services -> Security section, it is using OAuth based security

Requirement: We do not want the app to ask for the BTP credentials at the start rather it should land to our page straight away. I see the support for "API Key only" in Security but not sure how to use that.

Can any one help on this?

View Entire Topic
bill_froelich
Product and Topic Expert
Product and Topic Expert
0 Kudos

MDK only supports OAuth security. All other security types are not supported by MDK at this time. Users will need to authenticate through Mobile Services.

itsumerfarooq
Participant
0 Kudos

Hi Bill,

The apps will be deployed on App stores and will be a public apps. So all the users cannot authenticate through BTP, I suppose?

What is the workaround for such Mobile apps? Should we build them through different technology like SAP Build Apps or SAP Fiori for iOS and Android?

What are our options here?

When I tried with API Key only, It shows me this error at app start. Not sure if I can pass Api Key some where that i generated in Security -> Allow Anonymous access.

SolGarciaLinfozzi
Discoverer
0 Kudos
Hi Bill, I hope you're doing well! We are currently working on a project where we are using OData V4 services configured in SAP BTP MDK, and we're encountering a challenge similar to what itsumerfarooq described. Our goal is to bypass the BTP login prompt and directly land on either the app or our custom login page. We've come across the “API Key only” option in the security settings of Mobile Services but are unsure how to properly implement it. Have you found any way to allow users to access the app without BTP credentials upfront but still authenticate for specific functionalities when needed? Also, we're unsure whether we can deploy the app directly to the app stores and let users download it like a regular app, or if they’ll still need to access it via the “Mobile Services” app. I'd appreciate any guidance or insights you could offer based on your experience. Thanks so much in advance! Best regards, Sol