- SAP Community
- Groups
- Interest Groups
- Application Development
- Discussions
- Single Sign On on Blackberry device calling ABAP W...
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
Single Sign On on Blackberry device calling ABAP Web Service
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-15-2009 9:25 AM
Hi,
Im developing a BlackBerry app who act like a client of an ABAP Web Service.
Is there any way to use single sign on by the email, pin device or something?
Im using stub generator from wireless toolkit to generate the client classes. How can I enclose a ticket or certificate in the code?
is there any solution to solve all of this?
Thanks in advance.
- SAP Managed Tags:
- Security
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-16-2009 4:22 AM
Hi,
Inorder to use certificate for authentication you need to do following things.
1) Generate a certificate and get it trusted from a CA. (You can use java's keytool)
2) Export the public key certificate(Base 64) of the corresponding generated certificate to ABAP system keystore.
a) You can install the generated certificate in browser and export the public key (.cer) file from browser itself.
b) Go to your ABAP system transaction 'extid_dn'. import the certificate (.cer) file and map it to corresponding user.
c) Make sure profile parameter 'icm/HTTPS/verify_client' is 1 in your ABAP system
3) Now call HTTPS ABAP webservice from your code using certificate.
Regards,
Dhana
- SAP Managed Tags:
- Security
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-16-2009 4:22 AM
Hi,
Inorder to use certificate for authentication you need to do following things.
1) Generate a certificate and get it trusted from a CA. (You can use java's keytool)
2) Export the public key certificate(Base 64) of the corresponding generated certificate to ABAP system keystore.
a) You can install the generated certificate in browser and export the public key (.cer) file from browser itself.
b) Go to your ABAP system transaction 'extid_dn'. import the certificate (.cer) file and map it to corresponding user.
c) Make sure profile parameter 'icm/HTTPS/verify_client' is 1 in your ABAP system
3) Now call HTTPS ABAP webservice from your code using certificate.
Regards,
Dhana
- SAP Managed Tags:
- Security
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-16-2009 10:58 AM
Thanks for your answer, but the app is not Web Dynpro Mobile, is a native app for BB. It calls an ABAP web service. So the browser is not on the scenario.
- SAP Managed Tags:
- Security
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-16-2009 11:15 AM
Hi,
You dont need browser here. I mentioned here just for exporting and importing the oublic key. You can do it even with java keytool utility.
Regards,
Dhana
- SAP Managed Tags:
- Security
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-16-2009 11:18 AM
Thanks.
How can I enclose the certificate in the web service calling? Im using a stub generator from java wireless toolkit.
Regards.
- SAP Managed Tags:
- Security
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-17-2009 7:26 AM
Hi,
1) First install your certificate in a keystore file using java keytool utility. Use the followinf link for help.
http://java.sun.com/j2se/1.4.2/docs/tooldocs/windows/keytool.html
2) Then insert the following code snippet just before calling the webservice.
Security.addProvider(new com.sun.net.ssl.internal.ssl.Provider());
System.setProperty("javax.net.ssl.trustStore", "C:
Program Files
Java
jdk1.6.0_11
jre
lib
security
cacerts"); " Your file location
System.setProperty("javax.net.ssl.trustStorePassword","pass");
System.setProperty("javax.net.ssl.keyStore", "C:
Program Files
Java
jdk1.6.0_11
jre
lib
security
cacerts"); " Your file location
System.setProperty("javax.net.ssl.keyStorePassword","pass");
System.setProperty("javax.net.ssl.keyStoreProvider","SUN");
System.setProperty("javax.net.debug","all");
Regards,
Dhana
- SAP Managed Tags:
- Security
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-17-2009 5:44 PM
>
> Im developing a BlackBerry app who act like a client of an ABAP Web Service.
> Is there any way to use single sign on by the email, pin device or something?
>
> Im using stub generator from wireless toolkit to generate the client classes. How can I enclose a ticket or certificate in the code?
> is there any solution to solve all of this?
1st question: what authentication method is demanded by the WS Provider (see WS Endpoint Configuration)?
2nd question: what kind of credentials are available on the WS Consumer (BlackBerry)?
If your BlackBerry is supporting SSL and if you have a X.509 client certificate (plus private key) available there, you could use mutual SSL authentication for SSO - provided that the WebService is configured to accept X.509 client certificates for authentication (via https). (Notice: do not mix up with "X.509 Token" - that relates to message-based authentication / WS-Security).
- SAP Managed Tags:
- Security
