Skip to Content
avatar image
Former Member

Authorization in Web Dynpro application

I can not find a solution to restrict the user in my Web Dynpro application. All users in the WAS can access my application. In help portal, it is said that Web Dynpro application only can use programmatic security role references. But there is no detail explaination. How to use programmatic security role references?

I found that I could know if the user belonged to a specific role in my code. If the user didn't belong to that role, I could force him log off. But I could not find a good place to do this task. If I put these code in the "onPlugDefault" event handler or other wdInit event handers, IE always prompted "Cannot find CSF".

Is there anyone who know the solution of this problem?

Thanks and Best Regards,

Jun Li

Add comment
10|10000 characters needed characters exceeded

  • Follow
  • Get RSS Feed

1 Answer

  • avatar image
    Former Member
    May 14, 2004 at 08:11 AM

    Hi Jun Li,

    Please note that there is a difference between authorization (done by the application) and authentication (done by UME within the J2EE Engine).

    The application has to decide, if the user is allowed to work with this application or not, e.g. use the startup plug in order to check this.

    Hope that helps.

    Best regards,

    Karin

    Add comment
    10|10000 characters needed characters exceeded

    • Former Member

      Hi Karin,

      I know that the application has to decide whether the user is allowed to work with this application or not. But how to do it? How to deploy the security roles with Web Dynpro project? I tried to check the permission in startup plug in the Interface view and force unauthorized user to lof off with code:

      WDClientUser.forceLogoffClientUser("");

      But the IE prompted a dialog box with "Can not find CSF". Where should I put this statement in?

      Thanks and Best Regards,

      Jun