Skip to Content
avatar image
Former Member

webservice authenticastion using sap_j_security_check

Hi,

I have a web application for which I used a FORM based authentication. The loginform is a JSP which is like:

<form name="loginForm" method="post" action="/sap_j_security_check">

Username: <input type="text" name="j_username"/>

<br/>

Password: <input type="password" name="j_password">

<br/>

<input type="submit" name="btnSubmit" value="Sign In" />

</form>

however, whenever I submit the button providing right userid and password. It gives a 404 error not found. Any help is appreciated.

I am on netweaver CE7.2 server.

Thanks,

Nitin

Add comment
10|10000 characters needed characters exceeded

  • Get RSS Feed

2 Answers

  • avatar image
    Former Member
    Sep 20, 2010 at 02:39 PM

    Hello Nitin,

    Can you please provide more information about the error? With the information provided I can only think of the possibility that

    /sap_j_security_check cannot be found. Can you please check if the problem is not there and it is accesible?

    I hope this helps you.

    Regards,

    Blanca

    Add comment
    10|10000 characters needed characters exceeded

  • avatar image
    Former Member
    Sep 21, 2010 at 07:59 AM

    Hi,

    How would I know whether the /sap_j_security_check is found. or not.

    Now, after making some changes I have got a 403 resource forbidden error.

    It seems it found the sap_j_security_check but don't have correct role authorized. Now, I have a portal role in assigned to user in CE. how would I make sure in my J2EE app will authroize the same portal role to access the web resource or do I need to maintain seprate roles for webapp and portal role and then do some mapping.

    web.xml for your reference.

    <security-constraint>

    <web-resource-collection>

    <web-resource-name>web_resource_name</web-resource-name>

    <url-pattern>/rest/*</url-pattern>

    <http-method>GET</http-method>

    <http-method>POST</http-method>

    </web-resource-collection>

    <auth-constraint>

    <role-name>pcd:portal_content/com.sap.gd.forex.forexapps/com.sap.fx.pages/travelforex</role-name>

    </auth-constraint>

    <user-data-constraint>

    <transport-guarantee>NONE</transport-guarantee>

    </user-data-constraint>

    </security-constraint>

    <security-role>

    <role-name>pcd:portal_content/com.sap.gd.forex.forexapps/com.sap.fx.pages/travelforex</role-name>

    </security-role>

    Thanks,

    Nitin

    Add comment
    10|10000 characters needed characters exceeded