openSAP course guide – SAP HANA Cloud Platform Essentials – week 2
Welcome
Hi everyone,
our new openSAP course SAP HANA Cloud Platform Essentials started last week, on May 10th 2016, and ends on June 29th 2016. It’s a 6 week course followed by another week for the final exam. The document openSAP course guide – SAP HANA Cloud Platform Essentials gives an overview over the course and has the links to all the week guides. This blog post you are reading just now will guide you through week 2 of the course and provide you with additional material, explanations or Q&A around the topic of the week. Depending on the feedback and questions inside the forum of the course I might also add additional material (e.g. videos) during and after the course to address the frequently asked questions so that you have a one-stop-shop for this course. I hope you will enjoy the week!
Content Week 2
The topic for week 2 is Security. Here are the units you can look forward to:
- Unit 1: Security Concept
- Unit 2: Securing HTML5 Apps
- Unit 3: Securing Java Apps
- Unit 4: Securing Web APIs
- Unit 5: Securing SAP HANA Native Services – Part 1
- Unit 6: Securing SAP HANA Native Services – Part 2
Table of Contents
Unit 1 – Security Concept
See the video here: https://open.sap.com/courses/hcp1/items/3RwOCbE4BYbpuEBoPIUNqK
What you will learn
- Authentication & Single Sign-On
- Authorization Management
- WEB API Protection
- Identity Propagation
Additional links
- …
Q&A
- …
Unit 2 – Securing HTML5 Apps
See the video here: https://open.sap.com/courses/hcp1/items/0VuFMKEEQftbFrHqd8pdtB
What you will learn
- Authenticating user via SAML
- Managing permissions and roles
Additional links
- …
Q&A
- I can’t import the provided sample application from the additional material, what can I do? If the import fails for you then please delete the “Disclaimer_additional_material.docx” out of the ZIP archive and then test the import again. See https://open.sap.com/courses/hcp1/question/29d6aaee-27c8-4458-8462-6c54ee4b586b.
Unit 3 – Securing Java Apps
See the video here: https://open.sap.com/courses/hcp1/items/3OqdPIirBGxAGnc5I3FUIY
What you will learn
- Authenticating user via SAML
- Managing groups and roles
Additional links
- …
Q&A
- I can’t import the provided sample application from the additional material, what can I do? If the import fails for you then please delete the “Disclaimer_additional_material.docx” out of the ZIP archive and then test the import again. See https://open.sap.com/courses/hcp1/question/29d6aaee-27c8-4458-8462-6c54ee4b586b.
Unit 4 – Securing Web APIs
See the video here: https://open.sap.com/courses/hcp1/items/1qZ2sfBMI84zkCapKcrKxQ
What you will learn
- Protecting an API using OAuth 2.0
- Testing with a REST client
Additional links
Q&A
- I can’t import the provided sample application from the additional material, what can I do? If the import fails for you then please delete the “Disclaimer_additional_material.docx” out of the ZIP archive and then test the import again. See https://open.sap.com/courses/hcp1/question/29d6aaee-27c8-4458-8462-6c54ee4b586b.
Unit 5 – Securing SAP HANA Native Services – Part 1
See the video here: https://open.sap.com/courses/hcp1/items/1UXqKaq2rmkOGCo3icFgWo
What you will learn
- Configuring identity propagation between an HTML5 app and an SAP HANA XS service – part 1
- Configure the local service provider for HTML5 apps
- Set up trust in XS to the HTML5 local service provider
- Enable dynamic user creation in XS
Additional links
Q&A
- How do I get the xproject.xsjs into my SAP HANA MDC? See the blog post here Principal Propagation between HTML5- or Java-based applications and SAP HANA XS on SAP HANA Cloud Platform, download the xproject_xs from there and follow the steps to import via Eclipse or SAP HANA Web-based Development Workbench. See https://open.sap.com/courses/hcp1/sections/5eoLZR1Kc3bzeI5FHshXXl/question/b08beb7d-ba59-43a3-94ad-33a0e57cfc62 and https://open.sap.com/courses/hcp1/question/ca5d76cf-d144-4b45-a522-cb06a2cf0ac8.
- I have a problem with importing the certificate into my SAP HANA MDC/executing CREATE CERTIFICATE, what can I do? Please use openSSL to generate the certificate, follow the steps described here Principal Propagation between HTML5- or Java-based applications and SAP HANA XS on SAP HANA Cloud Platform. See https://open.sap.com/courses/hcp1/question/ad3fbd1f-306b-4aea-b49f-7c8ac3c4179c and https://open.sap.com/courses/hcp1/question/8edf396c-05f4-41d2-93a4-2d55a4c54b95.
Unit 6 – Securing SAP HANA Native Services – Part 2
See the video here: https://open.sap.com/courses/hcp1/items/0mXGU1yHNSY1p076zg1UNY
What you will learn
- Configuring identity propagation between an HTML5 app and an SAP HANA XS service – part 2
- Configure HTTP destination for application-to-application SSO
- Configure SAML in XS
- Test the scenario
Additional links
- …
Q&A
- …
All the best,
Sven
Thanks, Sven!
For the next couple of weeks, could you please NOT INCLUDE unnecessary disclaimer word-documents in the archives at all? Would make live considerably easier...
Thanks so much.
BR, Fred
Hi Fred,
thanks for the feedback.
All the best,
Sven
Hi Sven,
I am not able to download the link below for xproject source code.
https://mdocs.sap.com/mcm/public/v1/open?shr=OHRxAQwPDk6ldH8RHv2mOtwsS0Gk-UjVlrMYqEXJbyw&obj=aDtbR0k9cgPkCj6GYDKtitPViwib3_pV96276NkQ5Yo
Regards
Hock Lin
Hi Hock Lin,
please have a look at this blog post from Martin Raepple: https://blogs.sap.com/2016/03/21/principal-propagation-between-html5-and-sap-hana-xs-on-sap-hana-cloud-platform/
There you will find the download link, if the download expired, then make a comment there so that Martin can reshare the source code.
All the best,
Sven