Skip to Content

SAP Gateway - extra authentication check needed

Hi Experts.

I have the following requirement for a SAP UI5 application we are building:

  • In certain situations, users are required to authenticate themselves when performing special tasks.

Once they are logged in to the Gateway, they are ofcourse authenticating, and a browser cookie is stored, which is used as long as the browser session is alive.

But we need an extra authentication for these special tasks to know that the login user, is actually performing the task.

Does anybody have a good idea on how to perform this ?

We have discussed, that maybe it is possible to hash an entered password value in the frontend, and then passing the hash to the backend and compare to password hashes in table USR02 in SAP, but we don't know how to perform this hash consistently.

I hope somebody have a good idea on how to solve this - thanks.

Best regards,

Søren Hansen.

Add comment
10|10000 characters needed characters exceeded

  • Get RSS Feed

1 Answer

  • Feb 22 at 10:10 AM

    Is it an extra authentication or higher level of authorization?

    Any particular reason why the additional layer of authentication is being explored?

    Regards,

    Sharath

    Add comment
    10|10000 characters needed characters exceeded