cancel
Showing results for 
Search instead for 
Did you mean: 

SCP Open Connectors Authorization header

Hello,

when CURL'ing my newly created open connector instance I must provide an Authorization header:

This header consists of my User and Organization secret as well as unique connector instance id (I guess).

To access the connector from my Fiori application divya.mary in her blog offers to hard-code the Authorization header with my credentials.

Question 1: what if I want to provide the fiori application User's credentials instead of mine (as I'm a creator of a connector but not the expected user).

Question 2: this specific format "Authorization: User XXXX, Organization XXX, Element XXX", how does it work with other SAP Cloud Platform services in terms of Authentication? For example I'm still trying (with no luck) to create a destination from SCP Mobile Service to SCP Open Connector instance and the problem is in Authorization header.

There's one workaround by using SCP API Management Service as described here but I find this solution a huge overkill for just inserting one header into a request.

How to provide proper authorization credentials to Open Connector Service without doubtful code manipulations with request headers?

Thanks in advance.

Accepted Solutions (1)

Accepted Solutions (1)

divyamary
Contributor

Hi Anton,

SAP Cloud Platform Open Connectors provides normalized authentication to third-party application and this is done by the usage of the token based authorization tokens which consists of user secret, organization secret and elements/connectors secret. This way irrespective of whether the authentication to third party happens via Basic Authentication or OAuth based authentication or API key, that abstraction is done by the SAP Cloud Platform Open Connectors and then from the client you can connect using these key or token based authorizations.

For the time being in order to connect via SAP Cloud Platform Connectivity services ( Destinations) you can use SAP Cloud Platform API Management as the token mediator and use it to inject the headers. This way from your mobile application or Fiori application you can connect using SSO and from API Management you can connect using tokens to SAP Cloud Platform Open Connectors.

We are also working with our teams to support this from Connectivity services in a standard manner for our future releases.

Thanks and Best Regards,

Divya

Hi Divya,

thank you for the clarification. SCP API Management is a great service, though my inner voice cries loud that API Mngmt is much more than only header injector. I'll be waiting eagerly for Connectivity services to be supported.

Thanks,

Anton

Answers (1)

Answers (1)

haricahy1
Participant
0 Kudos

Hi Divya,

My customer already have subscription to SAP CPI PI Edition and Open Connectors, but they don't have subscription to API management, is there any way to get the authorization token dynamically?

Kindly advise.

Thanks and Regards,

Hari

divyamary
Contributor

Hi Hari,

The authorization header could be set using SAP Cloud Platform Integration as well. In SAP Cloud Platform Integration, there is also an Open Connectors adapter available.

Thanks and Best Regards,

Divya

haricahy1
Participant
0 Kudos

Hi Divya,

Thank you, for the information.

Best Regards,

Hari