SAP Help OAuth 2.0 Service Sample request in my Gitlab repo I’ll show how you can obtain an OAuth 2.0 token in SAP Cloud Platform (SCP) and manage it for authentication of apps. For the example detailed here, I am going to use an OAuth authorization grant of type client Read more…
To be able to access an OData service with OAuth, a scope is needed. I blogged about how to create a scope (using the wizard or a report) already. While adding a scope to a service is very easy, deleting is a little bit more effort. For instance, when you Read more…
You can create an OAuth Scope for an OData service either by using a wizard or a report. Both don’t show you the already created scopes. If you have to assign a scope to a user, how can you find out the scope of the OData service? You can take Read more…
SAP Help: Setting Up an OAuth 2.0 Client In this step an OAuth client is added. This is the client that logs on to NW ABAP on behalf of the end user. For this, the OAuth client is using an SAP user to log on. This user was created earlier Read more…
SAP Help: Activate OData service Enable OAuth service For the OData service used, see my blog “Create an OData service from CDS”. Besides the option to activate an OAuth scope for an OData service manually, a wizard can be used. In that case, to enable OAuth for an OData service, Read more…
SAP Help: Enabling OAuth 2.0 Authentication for OData Services For the OData service used, see my blog Create an OData service from CDS. For each OData service you want to access through OAuth, a unique scope is needed. The scope is based on the OData service. The scope is needed Read more…
After performing the previous steps in Keycloak, an OAuth 2.0 scope and client is available. To get the scope after the OAuth 2.0 client authenticates against Keycloak, you need to assign the scope to the client. Log on to Keycloak and go to clients and select oidclient. This is the Read more…
OAuth uses scopes to restrict access to resources. “Scope is a mechanism in OAuth 2.0 to limit an application’s access to a user’s account. An application can request one or more scopes, this information is then presented to the user in the consent screen, and the access token issued to Read more…