Skip to Content
2
May 07, 2020 at 04:59 AM

CAP: XSUAA and IAS

604 Views

I am asking this question in the context of a CAP application.

Obviously even after reading lots of documentation about XSUAA and IAS, I am confused. Apologies for a newbie question here.

It will be great if you can validate my below understanding.

  • XSUAA is a service available on SCP (only on CF) for authentication and authorization management. You can plugin your own Identity Provider (IDP) in SCP. When you deploy the CAP MTA, it creates an instance of XSUAA service and binds this instance to app/srv/db applications.
  • IAS is a service available on SCP (both CF and Neo) for authentication and authorization management. You can plugin your own Identity Provider (IDP) in SCP. This service can be used by any app deployed on SCP.

So I am confused on

  • What is the difference between these two services (XSUAA & IAS)?
  • Do I need a subscription of both XSUAA and IAS service once I deploy my CAP app?

Any comments are useful.