Show TOC

Security Aspects for Back-End SystemsLocate this document in the navigation structure

Use

User interface add-on for SAP NetWeaver provides services based on SAP NetWeaver Gateway. These services are OData based and delivered independently of releases. They are required to decouple the ABAP back-end system from the application lifecycle for existing and new applications.

The framework is based on the OData Channel as part of SAP NetWeaver Gateway. SAP NetWeaver Gateway defines its provided security features and the required measurements in a security guide.

For more information about security for UI add-on for SAP NetWeaver, see the SAP Gateway Security Guide.

Authentication and Authorization Checks

  • Authorization checks in the back-end systems are implemented by the back-end services you use. The authorization check S_SERVICE checks whether services can be called.

  • In the event of data modifications, the back-end services will perform their own authorization checks. SAP Gateway provides an application log. If there are errors, a separate application log is provided by UI add-on for SAP NetWeaver.

More Information

For more information about security aspects and authorization for back-end systems, see also OData Channel.