09-06-2011 5:27 PM
Hi Experts
We have an ABAP program in the SAP ERP to view files saved in SAP Portal (KM), the files are displayed in the ERP (SAP GUI).
The program working ok if we assign read only permissions to everyone group on the KM folders in SAP Portal.
Now for security reasons we deny the permissions to everyone group and the abap program in the ERP finish with the following error:
"403 The requested operation is forbidden for this resource. You do not have the permissions required to access this resource."
We have configured Single Sign On between SAP ERP and SAP Portal but in this scenario the logon ticket is not working because we obtain the 403 error with the abap program.
I need your help to know the way to view the files without assign read only permission on the everyone group. Is possible with SSO and ABAP Program?
In the ABAP program we have the following sentences to display the files in the ERP. Do we need a diferent sentences to send SAP logon ticket from ERP (sap gui) to SAP Portal?
DATA link(255).
DATA nombre(50).
link = -> Here is the URL in KM sap portal with the file path.
nombre = -> Here is a LINK name
EXPORT link TO MEMORY ID 'LINK'.
EXPORT nombre TO MEMORY ID 'NOMBRE'.
SUBMIT zmmrp_mostrar_link_html
VIA SELECTION-SCREEN
AND RETURN.
REPORT zmmrp_mostrar_link_html.
PARAMETERS: dummy TYPE c.
AT SELECTION-SCREEN OUTPUT.
DATA oref TYPE REF TO cl_gui_html_viewer.
DATA html TYPE w3htmltab.
DATA wa_html LIKE LINE OF html.
DATA url TYPE c LENGTH 255.
DATA link(255).
DATA nombre(50).
CLEAR: wa_html, url, link, nombre.
REFRESH: html.
IMPORT link FROM MEMORY ID 'LINK'.
IMPORT nombre FROM MEMORY ID 'NOMBRE'.
CREATE OBJECT oref
EXPORTING
parent = cl_gui_container=>screen0.
APPEND '<html>' TO html.
APPEND '<body>' TO html.
CONCATENATE 'POR FAVOR DE CLIC EN EL SIGUIENTE ENLACE PARA VISUALIZAR '
'EL ARCHIVO ADJUNTO<br>' INTO wa_html SEPARATED BY space.
APPEND wa_html TO html.
CONCATENATE '<h2><a href="' link '">' nombre '</a></h2>' INTO wa_html.
APPEND wa_html TO html.
APPEND '</body>' TO html.
APPEND '</html>' TO html.
oref->load_data( IMPORTING assigned_url = url
CHANGING data_table = html ).
oref->show_url( url = url ).
Thanks in advanced for your cooperation.
OMM
09-07-2011 12:43 AM
Hi,
not sure if it's going to help but HTML viewer has method enable_sso. Si I would try to call this method before loading HTML. Another thing is that it might not be related to SSO but access control on KM site.
Cheers
09-07-2011 3:53 PM
If the portal gave a detailed response about permission errors then one would hope that you have authenticated, so it is not the logon ticket.
For sure it is the permissions on the portal content when you removed. You will need to create a portal role and assign it as permissions to this node. Then assign the portal role to the users.
It would be best to contact the portal administrator about this.
Cheers,
Julius
09-09-2011 12:29 AM