Skip to Content
avatar image
Former Member

DestinationException on jcoProperties.getProperty("jco.client.passwd")

hello all,

I'm using web dynpro java, below is error I'm getting for line jcoProperties.getProperty("jco.client.passwd")

com.sap.security.core.server.destinations.api.DestinationException: [com.sap.ASJ.dest.sv0655] Code-based destination service access denied to component sap.com/tcxiccbpm~pilist. Access to security-relevant internal destination properties (e.g. passwords, tickets, etc.) is restricted to few selected engine components and not generally available to any service or application.

sap.com/tcxiccbpm~pilist is my dc name.

Can you please help.

Add comment
10|10000 characters needed characters exceeded

  • Get RSS Feed

1 Answer

  • Jul 22, 2009 at 06:40 AM

    Hi

    Unfortunately you are trying to read user password stored in JCo destination. Such operation is forbidden by security reasons. Passwords are stored in Secure Store and you cannot simply read them. That's why you get such exception.

    Maybe in some old 7.0 releases this was possible, but the security hole was closed in 7.1.

    In general you cannot read any J2EE user passwords. This is forbidden.

    So, rethink of your application scenario. The main question is why do you need to read password?

    BR, Sergei

    Add comment
    10|10000 characters needed characters exceeded

    • Former Member Siarhei Pisarenka

      Hi Sergei,

      Here we are trying to use SSO ticket first for user authorizaton; which enrich the properties object.

      Rgds,

      Atul.