Update 2021-06-25: making the diagrams more precise & explicitly writing that the CSRF token is for one user session.
Update 2021-09-28: explaining cookies in more detail.
"Cross-Site Request Forgery (CSRF) is an attack that forces an end user to...
Update 2021-June-07: Fiori Apps Library approach added
Update 2021-June-14: What to do if the Service Implementation button isn't responding
You might face an issue with an OData service where you get stuck and want to open ticket as written in K...
Goal:
This blog is demonstrating step-by-step how to register with Postman to SAP Cloud Platform Mobile Services for Development and Operations via OAuth. Despite its primary goal is not to give a better understanding of the OAuth flow with SCPms, h...
Goal
This blog shows a possible approach of dealing with multiple LDAP servers through SAP Mobile Platform, i.e. stacking multiple LDAP Authentication Providers.
Note: the other common approach among the stacking one is the usage of an LDAP Load Bala...
To be more precise: even though the Gateway itself doesn't check for the matching cookie, the session cookie has to be sent, but the check for their matching happens on the ICF level (before the GW).
Hi Lingling,
Unfortunately I'm not sure about the exact parameter name. I suggest to open a support ticket on component: BC-SEC or maybe BC-MID-ICF
Best regards,
Ákos
Hi Lingling,
This is a great question, thanks for raising it! The default is 24 hour, however this can be customized. Disclosure: This information might not be up to date since I left this product area for quite some time.
Thanks,
Ákos
Hi Velu, the tag used: "SAP Ariba Shopping" is for questions specific to the mobile app. This is a more generic question but there are no generic SAP managed Ariba tags available on the SAP Community. Maybe you can adjust the tags with custom tags so...