on 09-18-2015 3:01 PM
Hi all,
OData is a JS way to communicate with the server which means source can be seen in the browser.
How to prevent other people from using the URI?
Hi Ming,
As Dennis stated, the user has to authenticate to the Gateway HUB system where the OData service is exposed (via basic authentication, SAML, SSO,...). This user also needs the correct authorizations to be able to call the OData service. You have authorisations for accessing the service technically (help.sap.com) and you can (and should) also do authorization checks in the implementation of the service (which is done in your system with the IW_BEP software component, where your service OData model is created).
Good luck!
Best regards,
Maarten
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Ming
It is the same everywhere, URI, URL are public. However, the user (subject) needs to authenticate in order to get access to the services offered.
-D
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
74 | |
26 | |
10 | |
10 | |
7 | |
6 | |
4 | |
4 | |
4 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.