Show TOC Start of Content Area

Procedure documentation Integrating UME Permissions in the Web Dynpro Application - Steps Locate the document in its SAP Library structure

The steps you will perform to protect access to the Web Dynpro car rental application using UME permissions are:

...

       1.      To use the UME functions in the EJB methods, you first have to include the UME libraries in the J2EE development project. You also have to include a reference to the WS Security service in the Web Dynpro project.

       2.      To acquire the user’s ID so that you can later check the corresponding role assignment, you will require authentication for access to the application:

                            a.      You will require authentication for access to the Web Dynpro client.

                            b.      You will require authentication for access to the Web service and specify that the Web service accepts logon tickets.

                            c.      To pass the user’s logon ticket to the Web service, the Web Dynpro uses the Destination service. Therefore, you will create a corresponding destination on the AS Java.

                            d.      You will set the name of the destination to use in the Web Dynpro client.

       3.      You will then use UME permissions to protect access to the EJB methods:

                            a.      You will create a permission class for the EJB.

                            b.      To check the permission, you will obtain the user’s ID from the current context.

                            c.      You will check the permission in the EJB’s methods using the checkPermission()method.

       4.      To retrieve the error messages that occur if a user does not have the correct permission, you will adjust the error message handling in the Web Dynpro application.

       5.      You will rebuild and redeploy the applications on the AS Java.

       6.      You will consolidate the permissions by specifying the actions to use in this tutorial in the actions.xml file.

       7.      You will build and deploy the corresponding archive file.

       8.      You will perform the administration steps:

                            a.      You will create the users to use for this tutorial.

                            b.      You will create the corresponding UME roles and assign them to the users.

       9.      You will test the role assignments.

Optional Step

You can also check the UME permissions in the Web Dynpro client. To learn how to integrate the UME permissions in the Web Dynpro client, see the following steps. In these steps, you will use the hasPermission()method to check for authorizations. If the user does not have the authorization to create or maintain reservations, then you will set the corresponding fields to read-only.

...

       1.      You include the UME libraries in the Web Dynpro project.

       2.      You will create a permission class to use for the Web Dynpro client.

       3.      You will check the permission in the Web Dynpro client.

       4.      You will rebuild and redeploy the application.

       5.      You will add the corresponding action to the actions.xml file and deploy it to the AS Java.

       6.      You will modify the UME roles.

       7.      You will retest the access protection.

Next Step:

Including the UME Libraries and Web Service References

 

End of Content Area