Skip to Content

Archived discussions are read-only. Learn more about SAP Q&A

Securing WebDynpro with Roles

Hello Community,

fist: I'm running on NW CE 7.1 (SP5)

I want to secure my web-dynrpo (Java) application. For this i first set the application property "sap.authentication" to true. So only users which logged to the system can execute the web-dynpro.

But additionaly only users belonging to a specific role should execute the web-dynpro.

At the moment i only did it in my underlaying EJBs with help of Annotations (@RolesAllowed({"xxx","yyy"}) and the needed mapping of that App-Roles to Server-Roles in "ejb-j2ee-engine.xml".

This helps, when some unauthorized application is trying to use my beans and of course so it works with my Web-Dynpro Application.

But i would like to check before getting an exception from the ejb if the user is member of a specific server-role.

Any ideas to achive this?



Former Member
Not what you were looking for? View more on this topic or Ask a question