Show TOC

Procedure documentationProtecting Web Dynpro Applications Locate this document in the navigation structure

 

This procedure describes how you can use user management engine (UME) permissions to protect a Web Dynpro application. SAP NetWeaver Application Server (AS) Java extends the permission concept of Java EE. In addition to named permissions, you can create action permissions for your applications.

Prerequisites

Procedure

In this procedure, you create a project for the UME permissions in addition to the project for your application.

  1. Set the Authentication application property of your Web Dynpro application to true.

    Setting this property ensures that the container enforces logon, when a user runs your Web Dynpro application.

    More information: Configuring Applications.

  2. Create a permission class for your application project with the following attributes:

    • In the Superclass field, enter the name of the super class appropriate to your authorization strategy:

      • For named permissions, enter NamePermission - com.sap.security.api.permissions.

      • For action permissions, enter ActionPermission - com.sap.security.api.permissions.

    • Select the Constructors from superclass checkbox.

    More information: Named Permissions and Action Permissions.

  3. Create a UME actions project.

    More information: Creating Development Components for UME Actions.

  4. Define UME permissions and group them in UME actions.

    More information: Creating UME Actions.

  5. Add the current user and permission checks to your application.

    More information: Checking Permissions.

  6. Build and deploy the UME actions project along with your application.

  7. On the target AS Java, assign the UME actions to UME roles and assign the UME roles to users.

    More information:

    SAP Help Portal: Administration of Users and Roles