cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

CPI OData Sender: CSRF protection possible?

former_member609822
Discoverer

on ‎05-02-2019 1:42 PM

0 Kudos

Dear experts,

I know that it is possible to enable CSRF protection of integration flows using an https sender adapter by enabling the checkbox

Is the same possible for integration flows using an OData sender adapter? I have not found any relevant options there.

Thank you for your advice!

Show replies
Show replies
Answer

Accepted Solutions (0)

Answers (3)

Answers (3)

saranya_baskaran2
Participant
‎10-31-2019 8:25 AM

Hi Florian,

OData sender adapter has CSRF enabled by default.
This cannot be disabled in OData Sender adapter.

BR
Saranya

Show replies
Show replies
Keerthana
Participant
‎06-29-2022 1:27 PM
0 Kudos

Hi saranya.baskaran2 ,

Even when we use oauth credentials odata sender adapter is asking for csrf token.Is there a way we can do a POST call to CPI with a single call instead of two call(one for fetch token and other the post call).Why the odata sender adapter doesn't handles the csrf token internally like the receiver adapter?

Thanks & Regards,
Keerthana

smitaghosh
Explorer
‎11-03-2022 3:41 PM
0 Kudos

Hi keerthana_jayathran,

We are facing similar issue wherein we have implemented OAuth 2.0 for OData service. While testing in Postman (POST), it is using OAuth credentials but failing due to Invalid CRSF token.

Were you able to solve this issue, if yes, do let us know the solution.

Thanks,

Smita

Show replies
Show replies
ElijahM
Advisor
Advisor
‎11-03-2022 6:51 PM
0 Kudos

Dear Smita,

As this thread is from 2019, and is moving towards 4 years of age, it is unlikely the original author would be monitoring this thread. I would ask that you can generate a new thread, and reference this thread/author there. This helps everyone by allowing you to add more detail and having your specific details surface for future searches.

Regards,
Elijah

vitor_lemberck
Employee
Employee
‎05-02-2019 6:21 PM
0 Kudos

Hello Florian,

Please check this Blog: https://blogs.sap.com/2017/07/06/handling-csrf-tokens-in-sap-cloud-platform-integration/

I hope this can help you a lot.

Regards, Vitor SAP Product Support

Show replies
Show replies
former_member609822
Discoverer
‎05-03-2019 8:25 AM
0 Kudos

Hello Vitor,

thank you for your reply. I also checked this blog, but it does not answer my question. My question refers to the OData Sender Adapter. for which currently I do not see an option to enable / disable the option for CSRF protection.

In contrast to the HTTP sender adapter where this is possible.

Thank you.

Regards,

Florian

Ask a Question