on 09-05-2008 8:16 AM
Hi,
I'm trying to configure a web-service created with CAF so that access is restricted to a particular UME group. I've found the page in the [SAP help |http://help.sap.com/saphelp_nwce10/helpdata/en/44/4d2bb1c6b00597e10000000a155369/content.htm] that describes the ability to configure the authentication for a particular web-service.
What I can't find is how to restrict the access to a particular UME group.
Anyone have any ideas?
Thanks.
Dick
Dear Richard,
I restricted access to my simple test web service to a defined UME group this way:
NetweaverAdministrator -> SOA Management -> Business Administration -> WebService Management:
- configure authentication method, e.g. user/pw
WebService implementation:
- restrict access to a JEE role with @RolesAllowed annotation
Example:
com.sap.demo.kaitest.modeled.appsrv.calculator.CalculatorBean {
@com.sap.caf.dt.CAFOperation(name = "sum")
@javax.jws.WebMethod(exclude=false, operationName="sum")
@javax.jws.WebResult(name="result")
@RolesAllowed("calculator")
public java.lang.Integer sum(@javax.jws.WebParam(name="val1")
java.lang.Integer val1, @javax.jws.WebParam(name="val2")
java.lang.Integer val2) {
return val1+val2;
}
After deploying the application the JEE role "calculator" is available as UME action in Identity management. You can then add this action to a UME role.
-> only users with this role can access the web service
Best Regards
Kai
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
95 | |
11 | |
10 | |
9 | |
9 | |
7 | |
6 | |
5 | |
5 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.