Hi All,
I have few queries in authenticating SUP user against SAP.
a) I use Basic HTTP authentication to authenticate the user against the SAP System. I use the URL
http://SAPSERVER.DEV.COM:8000/sap/bc/ping?sap-client=200 .
Is this a right approach to authenticate the user?
b) When we create Connection to SAP we create using the RFC user, After the application is deployed and when user logs in from his mobile application,
I can still see that BAPI's (GET_PO_DETAIL) is getting executed with the RFC username not under the context of named user who logs into the mobile device. Will that means any connection from SUP to SAP will be executed under the context of RFC User?
c) If my WF application is an Server initiated then whenever a DCN updates the SUP in that case how the authentication happens? Should we have to challenge credentials again or can we reuse the values provided by user during application initial login? How should we finalize the approach.
d) If I authenticate with method (a) and if there is an passcode change or user termination at the SAP side will that be intimated to application?
Please assume that in our environment we have SAP with Gateway support and SUP running with 2.1.3. We don't have SSO in our landscape.
Thanks
-Arun