The OAuth 2.0 based authentication between SCP and C4C requires the same user-id to exist in both SAP Cloud Platform and SAP Hybris Cloud for Customer.
基于OAuth 2.0的SAP Cloud Platform和C4C single sign on的場景要能夠工作,需要這兩個系統裡的user ID相同。
選擇subaccount登入進去,選擇Security菜單項下面的Trust,将Configuration Type設定為Custom,
将local provider name抄下來:
https://eu1.hana.ondemand.com/kf4i12wqm8把Signing certificate字元串的值拷貝到一個檔案裡,另存為.cer檔案:
登入C4C系統QXL 233,Administrator工作中心,common task視圖,Configure OAuth 2.0 Identity Provider:
建立一個OAuth 2.0 provider:
同樣在Administrator的OAuth2.0 Client Registration裡,建立一個OAuth 2.0 client:
Issuer Name字段的值,從下拉清單裡選擇剛剛建立的OAuth 2.0 Provider:
Scope字段,選擇為CC_HOME:
建立成功:
進入Common task的Configure Single Sign-on:
把這個local service provider的值記錄下來:qxl-cust233.dev.sapbydesign.com
在SAP Cloud Platform裡,存在和ABAP Netweaver裡SM59事務碼建立的Destination類似的概念:
In SAP Cloud Platform, destinations are the ports that allow access to external systems based on various options. Extension apps then refer to these destinations to connect to their desired external systems.
部署在SAP Cloud Platform上的應用,通過這些Destination同外界連接配接。
在SAP Cloud Platform控制台的Connectivity裡,建立一個新的destination:
參考一個例子:
更多例子,參考部落格:
https://blogs.sap.com/2017/11/14/configuring-oauth-2.0-between-sap-hybris-cloud-for-customer-and-sap-cloud-platform/本文來自雲栖社群合作夥伴“汪子熙”,了解相關資訊可以關注微信公衆号"汪子熙"。
![“雲管邊端”協同的邊緣計算安全防護解決方案0 引 言1 5G 及邊緣計算2 邊緣計算面臨的風險3 “雲管邊端”安全防護技術4 “雲管邊端”安全防護實踐5 結 語[圖]](data:image/gif;base64,R0lGODlhAQABAIAAAP///wAAACwAAAAAAQABAAACAkQBADs=)