Skip to Content

Using HANA REST API for file upload in SAP UI5 Service layer without 2-level authorization

We are developing a HR application based on Sap UI5/Service layer on our XS Server. Everything is going fine, however we have a question we could not resolve anywhere.

To upload all kinds of files for an employee,apart from Service layer REST API, we also use HANA Api. The service is located under "xsserver/sap/hana/xs/dt/base/xfer/import/..." . Everything works fine, except that before using this API, the application has to fetch for XSRF Token, which is impossible, unless HANA user is authorized. (Like SYSTEM User). So, even if we have .xsaccess properties set up with asking no HANA XS authorization for users to use it (user only authorizes to B1 Database to use Service layer), then we can't use HANA API. This causes some inconvenience, because we don't want the user to authenticate twice, first for HANA server and then for Service layer DB.

Is there any solution/workaround so we can set up HANA so users can use HANA API ("xsserver/sap/hana/xs/dt/base/xfer/import/...") on particular directories without authorization ?

Thank you in advance, we would greatly appreciate your help.

Respect, Giorgi and SAP Team from Tbilisi, Georgia.

Add comment
10|10000 characters needed characters exceeded

  • Get RSS Feed

1 Answer