In the SAML 2.0 SSO logon with automatic user creation scenario, the user is created in the SAP system by a BADI. The user information send by the SAML 2.0 IdP is contained in the SAML response. In my previous blog I have shown how the user profile is configured Read more…
The user creation scenario is an extension to the “simple” SAML 2.0 SSO scenario. Therefore, a pre-requisite is to have the SAML 2.0 IdP and SP configured to trust each other. A logon from IdP to SP with an existing user must work. In my case, the external Identity Provider Read more…
The ICF configuration is more complex than the standard SAML 2.0 configuration. Instead of just validating the SAML 2.0 response, the response must be validated, and a user created or update. To be able to create / update a user, the response received must be handled by a service user. Read more…
SAP is ending the SAP Cloud Platform Neo (SCP Neo) Trial and for everyone to learn and try out SCP services, the SCP Cloud Foundry (SCP CF) Trial is the only offering left. I wrote down my thoughts on this and why I think that the free trial approach is Read more…
SAP Help In the previous blog I detailed the BADI provided by SAP for creating and updating a user that logs on via SAML 2.0 and what to take care of. In this blog I’ll detail how to implement the BADI. The implementation means that some ABAP coding is needed. Read more…
The BADI you have to extend to be able to create or update a user in the SAP NW system based on the SAML 2.0 information is BADI_SAML20_USER_CREATE_UPDATE. It offers two methods, one for creating a new user, one for updating an existing user. Keep in mind that the SAP Read more…
SAP decided to end SAP Cloud Platform (SCP) Neo trial some time ago and now also communicated the date when they will plug the plug: 13th November 2020. SAP announced long ago that they are investing in the SCP cloud foundry stack (SCP CF), and that Neo is out of Read more…
Assume that you use SAP WebIDE for developing an application and that you have to consume an OData service from an on-premise NetWeaver ABAP system. In SCP, the destination is configured, and SAP Cloud Connector is working. For principal propagation, X.509 is used. Problem When you select the OData service Read more…
Die Corona Warn App (CWA) ist seit einiger Zeit verfügbar. Die Benutzung ist freiwillig, wer will und kann darf die App verwenden. Da die Entwicklung öffentlich in GitHub erfolgte kann der Quellcode eingesehen werden. So weit wie SAP und die Telekom das ermöglicht haben. Die ersten Entwicklungen erfolgten erst intern Read more…
SAP Help OAuth 2.0 Service Sample request in my Gitlab repo I’ll show how you can obtain an OAuth 2.0 token in SAP Cloud Platform (SCP) and manage it for authentication of apps. For the example detailed here, I am going to use an OAuth authorization grant of type client Read more…