03-09-2010 12:05 PM
Hi all,
we are running ECC6 and have customzed our netweaver login screen (copied CL_ICF_SYSTEM_LOGIN to <ownClass>, redefined HTM_LOGIN, maintained it in SICF, etc.).
And it works great - but:
At the first call the system wants login/pw of each mime used on the login screen.
But only for the first time.
I can't repeat it.
But it happens to every user.
Correctly deleting cookies (close all screens; control->internet options-> delete cookies) CANNOT repeat the behaviour.
Globally invalidating http server cache CANNOT repeat the behaviour.
mimes on login screen are called like:
https://<servername>:<https-port>/sap/bc/bsp/sap/public/bc/bsp/<applname>/xy.jpg
So we need a login to see our login screen
pls help...
03-10-2010 12:17 PM
Hi,
This is a classical problem.
You just need to create an alias in SICF :
/sap/public/bsp/sap/public/<applname> --> /sap/bc/bsp/sap/public/bc/bsp/<applname>/
All URLs under /sap/public run with user SAPSYS and so don't need any login.
Regards,
Olivier
03-09-2010 8:16 PM
Hi,
that's weird. Do you use all constants required by SAP such as me->m_sap_application. Probably you've already looked at this but there is an example CL_ICF_EXAMPLE01_LOGIN. Have you tried to enable HTTP trace in SMICM to see why SAP needs to ask for password again? As a workaround you could define a new SICF service which would just serve all images and other objects. You could set up this service that it would be accessible for anybody. But I would suggest to solve your issue rather than implementing various workarounds.
Cheers
03-10-2010 12:17 PM
Hi,
This is a classical problem.
You just need to create an alias in SICF :
/sap/public/bsp/sap/public/<applname> --> /sap/bc/bsp/sap/public/bc/bsp/<applname>/
All URLs under /sap/public run with user SAPSYS and so don't need any login.
Regards,
Olivier
03-10-2010 1:14 PM
> All URLs under /sap/public run with user SAPSYS and so don't need any login.
Bugger here is that the code which retrieves the object from the MIME repository makes an authorization check.
CL_MIME_SERVICES method -> MIME_CHECK_AUTHORITY
So it cannot run under SAPSYS as the user cannot be assigned any authority, let alone S_DEVELOP... (which in my opinion is much too strict here...). You will need to save a SERVICE user's logon credentials into the ICF service to make it visible to the user who has not logged in yet.
Or... use SSO..
Cheers,
Julius
03-12-2010 10:42 PM
Hi Olivier,
Your answer is correct.
My comment was based on our use of the workbench method to display the MIME objects from SE80, which we used in the web service as well and hence the authority-check.
So it is a programming error on our side.
Cheers,
Julius
03-16-2010 3:49 PM
03-16-2010 10:49 PM
11-26-2014 2:59 PM
HI Oliver, If I create an alias, it is doing an auto login with out asking for user id and password. How to stop at login screen.