Skip to Content
avatar image
Former Member

xsaccess anonymous user

Hello all,

I have the following setup:

- SAPUI5 BSP Application on BW ABAP Server

- HANA xsodata Service on HANA Server

- SAPUI5 Application access via SAP BW User

- User do not have a HANA User

- Anonymous access with a fixed user works

Now I have the following question:

Security: How can I disable the access if someone uses the direct url to the OData Service?

Atm if someone knows the odata service url he has access to the service.

But we only want to allow the access from our SAPUI5 application.

I tried to set the fixed user in the OData:

sap.ui.model.odata.v2.ODataModel(sServiceUrl, false ,'User','Password');

But that does not work.


Can I restrict in the xsaccess file from odata servcie that access is only allowed from one specific point?



Add comment
10|10000 characters needed characters exceeded

  • Get RSS Feed

0 Answers