cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

SAML sender-vouches or ECP for REST web services?

former_member324090
Discoverer

on ‎09-08-2016 11:55 AM

0 Kudos

Hi Experts.

We use SAML in the environment with an SAP IdP. This works for some scenarios.

I am struggling with this:


We have an ABAP system (A) with a REST service (in SICF). A user (U) accesses some application on a 3rd party system (N) that in turn needs to access the SAP REST service to get some data from the SAP system, and this call should be performed in the context of the end user.

So U->N->A.

The user should be authenticated in A using SAML, and I found several profiles that could work: holder of key, sender-vouches, enhanced client proxy (ECP).

But both the documentation and the actual configuration options in the system look like these profiles only work for SOAP services(?), like you need to do things in the SOAMANAGER for example.

Are SAML profiles like sender-vouches etc. supported for REST services (in SICF)?

Best regards

Jens

Show replies
Show replies
Answer

Accepted Solutions (0)

Answers (1)

Answers (1)

former_member324090
Discoverer
‎09-13-2016 11:34 PM
0 Kudos

this is an example of how it should work:

https://help.sap.com/saphelp_nwpi71/helpdata/en/44/322225a52d5447e10000000a422035/content.htm

Unfortunately, the SAP documentation does not describe for which SAP systems this will work, but as this text is for PI, I would assume PI is the intermediary/consumer, and the backend is some other SAP system.

But does not work as described here, see earlier post, and we get a redirect to the SAP IdP from the Service Provider (REST service on AS ABAP).

Show replies
Show replies
Ask a Question