Skip to Content

xsaccess anonymous user

Dec 20, 2017 at 01:24 PM


avatar image

Hello all,

I have the following setup:

- SAPUI5 BSP Application on BW ABAP Server

- HANA xsodata Service on HANA Server

- SAPUI5 Application access via SAP BW User

- User do not have a HANA User

- Anonymous access with a fixed user works

Now I have the following question:

Security: How can I disable the access if someone uses the direct url to the OData Service?

Atm if someone knows the odata service url he has access to the service.

But we only want to allow the access from our SAPUI5 application.

I tried to set the fixed user in the OData:

sap.ui.model.odata.v2.ODataModel(sServiceUrl, false ,'User','Password');

But that does not work.


Can I restrict in the xsaccess file from odata servcie that access is only allowed from one specific point?



10 |10000 characters needed characters left characters exceeded
* Please Login or Register to Answer, Follow or Comment.

0 Answers