cancel
Showing results for 
Search instead for 
Did you mean: 

Authorization in Web Dynpro application

Former Member
0 Kudos

I can not find a solution to restrict the user in my Web Dynpro application. All users in the WAS can access my application. In help portal, it is said that Web Dynpro application only can use programmatic security role references. But there is no detail explaination. How to use programmatic security role references?

I found that I could know if the user belonged to a specific role in my code. If the user didn't belong to that role, I could force him log off. But I could not find a good place to do this task. If I put these code in the "onPlugDefault" event handler or other wdInit event handers, IE always prompted "Cannot find CSF".

Is there anyone who know the solution of this problem?

Thanks and Best Regards,

Jun Li

Accepted Solutions (0)

Answers (1)

Answers (1)

Former Member
0 Kudos

Hi Jun Li,

Please note that there is a difference between authorization (done by the application) and authentication (done by UME within the J2EE Engine).

The application has to decide, if the user is allowed to work with this application or not, e.g. use the startup plug in order to check this.

Hope that helps.

Best regards,

Karin

Former Member
0 Kudos

Hi Karin,

I know that the application has to decide whether the user is allowed to work with this application or not. But how to do it? How to deploy the security roles with Web Dynpro project? I tried to check the permission in startup plug in the Interface view and force unauthorized user to lof off with code:

WDClientUser.forceLogoffClientUser("");

But the IE prompted a dialog box with "Can not find CSF". Where should I put this statement in?

Thanks and Best Regards,

Jun