on 08-16-2016 9:33 AM
Hi,
after we installed the WebIDE from the scratch we are struggling with the authorization, while we try to reach the WebIDE.
Authorization Request Error
There was an error. The request for authorization was invalid.
In my opinion the user has received all necessary privileges. Any idea what we missed?
We do also created and managed spaces. The user got SpaceDeveloper and SpaceManager.
We are on:
HDB Rev 122
XSA Patch 32
HRTT SP02 Patch 3
DI CORE SP12 Patch 1
WEB DIE SP12 Patch 3
Thanks!
Zoya could solve our problem!!!
Really a big thank you that you took so long time for us to get it fixed!!!
I don't like to say what the reason was, but I think I have to.
In the past we used only: https://host:51038/
After the new installation, the url changed and we have to use: https://host.domain.de:51012/
But I didn't realize the difference and changed only the port and tried it with the old url again and again.
Thanks for all your help!
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Omer,
thanks for this link, but it didn't help me, because I couldn't find this roles by this names anywhere.
"WebIDE_Administrator and WebIDE_Developer"
Also within the user guide and installation guide is nothing mentioned by this names (WebIDE_Administrator and WebIDE_Developer)
InstallationGuide: SAP HANA Platform SPS 12 SAP Web IDE for SAP HANA SPS 12 Patch 1 Document Version: 1.3 – 2016-07-28
3.2 Assign the SAP Web IDE Role Templates to the Role Collections SAP Web IDE supplies predefined role templates: DevxAdministrator, DevxDeveloper, and xsac_hrtt_developer_template
Even more within the installation guide are other names which I couldn't find somewhere.
1. I changed my profile settings, you should be able now. Click on my name.
2. Installation guide from the notes: "SAPWebIDE4HANASPS12.1_Installation"
2304873 - SAP Web IDE für SAP HANA SPS12 - Release-Informationen
Okay for the moment I got this problem solved.
As Florian said:
"You have to create roles and assign them to role collections (which are assigned to users) in the role builder."
I had to create a collection. I thought I was handling a collection, but it was only a role and couldn't find under "Application role collection" But now this collection is there.
And now I could pass this step.
The Space Enablement tool nees the WebIDE_Administrator privileges.
The assignment of permissions to the user is always done via role collection (the latest screenshot is a list of role collections)
That means you need first to create role collection (or use your existing one) and then assign it to a user.
1. To create role collection:
- open to Application Role Builder tile -> press on 'three parallel lines' (on the left upper side) -> choose Role Collection -> press + on the bottom to create a new Role Collection -> provide the name (e.g. WebIDE_Developer, WebIDE_Administrator) and assign Application Role:
- WebIDE_DEVELOPER role collection, select app name - webide!1, role template = application role - WebIDE_Developer
- WebIDE_ADMIN role collection, select app name - webide!1, role template = application role - WebIDE_Administrator
- Save
Information about Role Collection management should be available HANA / XSA Security Guide
2. Assign Role Collection to a user
- open User Management tile -> select a user -> got to Role Collection section -> add WebIDE_... role collection, depending on user responsibility -
Web IDE developer user - assign WebIDE_DEVELOPER RC
Web IDE administrator user (certificate management or space enablement) - WebIDE_ADMIN RC
Hope it will help.
Zoya
Hi Zoya,
thanks for your wide explanation. But even I assigned this collections to my user I'm not able to access the webide. (I did the assigning with the web workbench "Application Role Collections" because, within the "User Management" I have only read permissions, what I'm wondering, too.
Any ideas what I'm missing.
Thanks
Hi Dirk,
I am sorry but i need more info.
1. How the role collections you defined looks like
2. How did you succeed to add Role Collections, if you don't have required permission, what do you mean by web workbench (HANA Studio?)
In general, you should have XSA Admin user that has privileges to manage users.
3. Check that you logged out or cleared cache before login into web ide with updated user
Thanks,
Zoya
1. How the role collections you defined looks like
I only took the sap template and put it in a new collection, the same way as Thomas Jung described in his blog.
"New Role for Using the SAP Web IDE for SAP HANA"
2. How did you succeed to add Role Collections, if you don't have required permission, what do you mean by web workbench (HANA Studio?)
Also as Thomas described in his Blog:
"Now you can go to the user administration tool in either the XS Advanced Administration or the older SAP Web-based Development Workbench Security tool."
What I did, because I have only read permission for User Management Tool, and I don't know why?
3. Check that you logged out or cleared cache before login into web ide with updated user
Did it!
Thanks for your help!
I created also a new XSA_Admin user with the required permissions, but exactly the same behavior.
1. The xsa user has also only Read permission for the Management User Tool
2. The xsa user is not able to reach the webide, because of : Authorization Request Error
3. But both user are able to access the new "Space Enablement"
Some more infos:
This is the end of the url which tries to switch to the WebIDE:
callback&client_id=sb-webide!i1 --> Is this fine?
When I saw callback, I remembered that we had a similar problem long time ago. The reason was a missing set NO_PROXY value.
But now I set this value and still the same result, doesn't solved my problem.
User | Count |
---|---|
93 | |
10 | |
10 | |
9 | |
9 | |
7 | |
6 | |
5 | |
5 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.