In a launchpad configuration file, you can set parameters for the SAP Fiori launchpad. It is important that you make sure that only authorized persons can edit these files.
For security reasons, the system considers a launchpad configuration file only if it originates from a path that is included in the configurationFileFolderWhitelist parameter of the FioriLaunchpad.html file. In the configuration delivered by SAP, a launchpad configuration file may only be located in one of the following folders:
Make sure that only authorized persons have write access in these folders.
If you would like to restrict the list of allowed paths further, or allow additional paths, you can edit the FioriLaunchpad.html file. This file is located in the BSP repository of your front-end server, in the folder .
The FioriLaunchpad.html file is delivered by SAP. If you modify this file, your changes might be overwritten when you upgrade your system to a new release or support package. For this reason, remember to create a backup copy of the FioriLaunchpad.html file before upgrading.