User Information Overview¶
The majority of use cases addressed by enterprise applications requires some sort of user login, and as consumers we are used to having a personalized experience. Depending on the authentication flow chosen, however, information such as the user name may simply not be available to the authenticating application, or it may merely be in terms of a technical user name, such as when using Basic authentication. The User Information feature allows developers to query mobile services for information about the currently logged-in user in order to display personalized data. Additionally, when used in conjunction with Access Control policies, developers can access user role information in order to deliver role-based experiences and control access to app features.
Prerequisite: Access Control Policy
In the access control policy, define which roles are relevant for the current mobile application. The Role service checks each role in the Access Control policy, and returns those that are assigned to the current user.
If the user does not have the required role and tries to register for an application, the access control policy returns a 403 error message.
- Define an access control policy for your app in the SAP mobile service cockpit.
- Assign roles to users to enable them to access the app
- Use the SAP BTP SDK for Android or iOS to access user and role information in your app.
|Read user information
|Access information such as the actual user name and email address through the Cross-domain Identity Management (SCIM) protocol
|Build role-based apps
|Leverage roles defined for users to build role-based screens
|Multiple authentication schemas
|Expose user information in apps using SAML or OAuth authentication