// API callback
relpostimgcuplik({"version":"1.0","encoding":"UTF-8","feed":{"xmlns":"http://www.w3.org/2005/Atom","xmlns$openSearch":"http://a9.com/-/spec/opensearchrss/1.0/","xmlns$blogger":"http://schemas.google.com/blogger/2008","xmlns$georss":"http://www.georss.org/georss","xmlns$gd":"http://schemas.google.com/g/2005","xmlns$thr":"http://purl.org/syndication/thread/1.0","id":{"$t":"tag:blogger.com,1999:blog-3826368468004556615"},"updated":{"$t":"2023-12-26T13:46:15.660-08:00"},"category":[{"term":"sapui5"},{"term":"SAP ABAP"},{"term":"sap"},{"term":"ABAP Interview Questions"},{"term":"SAP Technical Interviews"},{"term":"Sap RAP"},{"term":"sap fiori"},{"term":"sap web ide"},{"term":"interview questions"},{"term":"custom sapui5 app extension"},{"term":"extending apps"},{"term":"odata"},{"term":"Navigation"},{"term":"Routing"},{"term":"SAP netweaver gateway"},{"term":"odata tutorial"},{"term":"ABAP"},{"term":"ABAP Coding Best Practices"},{"term":"ABAP Developer Tips"},{"term":"ABAP Development"},{"term":"ABAP Job Interview Insights"},{"term":"ABAP Job Preparation"},{"term":"Latest ABAP FAQs"},{"term":"SAP ABAP Certification"},{"term":"SAP Bussiness Application Studio"},{"term":"SAP CAP"},{"term":"node.js"},{"term":"sap capm"},{"term":"sap cloud platform"},{"term":"ABAP CDS Views"},{"term":"ABAP Code Examples"},{"term":"ABAP Data Modeling"},{"term":"ABAP HANA Integration"},{"term":"Answers"},{"term":"Developer Tips"},{"term":"HANA Development"},{"term":"HANA Modeling"},{"term":"HANA Performance Tuning."},{"term":"RAP Implementation"},{"term":"RAP Model"},{"term":"SAP ABAP on HANA"},{"term":"SAP HANA clould cockpit"},{"term":"SAP Interview Prep"},{"term":"SAP RAP Tutorial"},{"term":"cloud foundary"},{"term":"json"},{"term":"sap BTP CAPM"},{"term":"sap btp"},{"term":"CAP"},{"term":"CDS"},{"term":"HANA"},{"term":"MockSever"},{"term":"RAP"},{"term":"Routing in sapui5"},{"term":"associations"},{"term":"authentication"},{"term":"charts"},{"term":"cloud foundry"},{"term":"configuring destination in sap web ide"},{"term":"css"},{"term":"enterprise portal"},{"term":"import"},{"term":"introduction to sap web ide"},{"term":"odata v4"},{"term":"sap fiori portal site"},{"term":"sap mobile services"},{"term":"sap portal site"},{"term":"video tutorial on routing"},{"term":"Classical report"},{"term":"Cloud Application Programming Model"},{"term":"Interactive Reports"},{"term":"Internal Tables"},{"term":"Introduction"},{"term":"Introduction to sap enterprise portal"},{"term":"Mock data"},{"term":"SAP BAS"},{"term":"SAP Mobile cards"},{"term":"SEGW"},{"term":"Visual studio code"},{"term":"Web IDE"},{"term":"aggregation binding"},{"term":"android"},{"term":"app router"},{"term":"btp"},{"term":"capm"},{"term":"component preload"},{"term":"controller"},{"term":"controller extension"},{"term":"controls and views"},{"term":"create OData service"},{"term":"crud"},{"term":"csv"},{"term":"data binding"},{"term":"dataset"},{"term":"delete"},{"term":"extending sapui5 apps"},{"term":"fiori"},{"term":"formatter"},{"term":"git"},{"term":"github"},{"term":"google maps api"},{"term":"i18n"},{"term":"ios"},{"term":"list"},{"term":"manifest.json"},{"term":"mobile development kit"},{"term":"mta"},{"term":"mtar"},{"term":"multi target application"},{"term":"operations on internal table"},{"term":"properties"},{"term":"push a project in github"},{"term":"python"},{"term":"register odata service"},{"term":"routing in full application"},{"term":"sap cloud platform SDK"},{"term":"sap fiori enterprise portal"},{"term":"sapui5 github"},{"term":"search"},{"term":"setup sap bussiness application studio"},{"term":"sicf"},{"term":"sort"},{"term":"table"},{"term":"tables"},{"term":"video tutorial on nested views and fragments"},{"term":"xml"},{"term":"- SAP ABAP performance optimization\n\n- ABAP performance tuning\n\n- SAP ABAP best practices\n\n- SAP ABAP performance tips\n\n- ABAP performance optimization techniques\n\n- SAP ABAP performance improvements"},{"term":"ABAP 7.5"},{"term":"ABAP 7.6"},{"term":"ABAP Enhancements"},{"term":"ABAP Innovations"},{"term":"ABAP List Viewer"},{"term":"ABAP New Features"},{"term":"ABAP on HANA interview questions and answers"},{"term":"ALE"},{"term":"ALV Grid Report"},{"term":"ALV Grid Tutorial"},{"term":"ALV programming examples"},{"term":"ALV reports"},{"term":"Activate OData Service in SICF"},{"term":"Agile Development"},{"term":"BAS"},{"term":"BDC"},{"term":"Batch"},{"term":"Best practices"},{"term":"Binary Data Handling"},{"term":"Blobs in JavaScript"},{"term":"CAPM Apps"},{"term":"CDL"},{"term":"CLASSICAL REPORTS"},{"term":"CQL"},{"term":"CRUD operations"},{"term":"CSN"},{"term":"Cache"},{"term":"Cloud-Native Architecture"},{"term":"Configure Catalog and Groups in SAP Fiori Portal Sites"},{"term":"Configuring Fiori Tiles in sap portal sites"},{"term":"Custom Controls"},{"term":"Custom control to make a Radar Chart using Chart.js library in SAPUI5."},{"term":"DDIC"},{"term":"DPC"},{"term":"Data Storage"},{"term":"Data types"},{"term":"Debugging ABAP"},{"term":"Dev Tools"},{"term":"Development"},{"term":"Dialog sapui5"},{"term":"Environment variables"},{"term":"Event Handling"},{"term":"Field Catalog"},{"term":"File Manipulation"},{"term":"Fragment"},{"term":"Fragment in sapui5"},{"term":"Global sub routines"},{"term":"Globalization and localization"},{"term":"How to Change logon Page of Enterprise Portal"},{"term":"How to export SAP Web IDE Workspace projects"},{"term":"How to get Selected table index value?"},{"term":"Image Upload"},{"term":"Installation of sap ui5 plugin"},{"term":"Internal Table"},{"term":"Introduction and DDIC"},{"term":"Introduction to SAP portal sites"},{"term":"JDK"},{"term":"LOCAL SUB ROUTINES"},{"term":"Latest ABAP Updates"},{"term":"Logon Page in Enterprise Portal"},{"term":"Logon to SAP ABAP"},{"term":"MDK introduction"},{"term":"MPC"},{"term":"Mdk app"},{"term":"Microservices in SAP BTP"},{"term":"Module Pool"},{"term":"Most common examples in sap ui5"},{"term":"Mta yaml"},{"term":"Naming conventions"},{"term":"Navigation Properties"},{"term":"OData v2 benefits"},{"term":"OData v2 vs. OData v4"},{"term":"OData v4 advantages"},{"term":"OOPs Concepts"},{"term":"Offline app"},{"term":"Parts"},{"term":"Pass by reference"},{"term":"Pass by value (or) call by value"},{"term":"Pass by value and return"},{"term":"Plugin"},{"term":"Project structure"},{"term":"SAP ABAP Blog."},{"term":"SAP ABAP function modules"},{"term":"SAP ABAP video tutorials"},{"term":"SAP ABAP views"},{"term":"SAP Business Technology Platform"},{"term":"SAP Data Presentation"},{"term":"SAP Development"},{"term":"SAP ECC"},{"term":"SAP Fiori Configuration cockpit"},{"term":"SAP Fiori Launchpad Portal Site"},{"term":"SAP MTA"},{"term":"SAP NetWeaver Portal"},{"term":"SAP OData"},{"term":"SAP Programming"},{"term":"SAP S\/4HANA"},{"term":"SAP Tech Trends"},{"term":"SAP cloud solutions"},{"term":"SAP functional modules"},{"term":"SAP implementation."},{"term":"SAP modules"},{"term":"SAP overview"},{"term":"SAP technical modules"},{"term":"SAPUI5 data communication"},{"term":"SAPui5 application on SAP bussiness application studio"},{"term":"SUB ROUTINES"},{"term":"Sapui5 jobs"},{"term":"Scalable Applications"},{"term":"Search Help in DDIC"},{"term":"Security"},{"term":"Security Considerations"},{"term":"Setting Up an App Router in SAP CAPM Project on BTP: A Step-by-Step Guide"},{"term":"SmartForms"},{"term":"Sorting"},{"term":"Templates and Accelerators in SAP Portal sites"},{"term":"Transaction code"},{"term":"Transport Request Number"},{"term":"Tutorial series on SAP Enterpise Portal"},{"term":"Tutorials"},{"term":"UI5 Inspector"},{"term":"User Interaction"},{"term":"Web Application Development"},{"term":"XS-UAA"},{"term":"add"},{"term":"add and delete operation"},{"term":"admin cockpit sap cloud mobile services"},{"term":"aggregations"},{"term":"annotations"},{"term":"annotations in OData"},{"term":"api"},{"term":"appearance"},{"term":"append operation"},{"term":"application"},{"term":"apps"},{"term":"architecture of sap fiori"},{"term":"authorization"},{"term":"backend components"},{"term":"batch processing in OData"},{"term":"begin set"},{"term":"beginset"},{"term":"boolean"},{"term":"branding"},{"term":"cache buster"},{"term":"catalogs"},{"term":"changeset"},{"term":"chart.js"},{"term":"charts in sapui5"},{"term":"chrome"},{"term":"cluster"},{"term":"code quality"},{"term":"combo box"},{"term":"commit"},{"term":"component configuration"},{"term":"component.js"},{"term":"configure catalogs and groups"},{"term":"configuring tiles"},{"term":"containers"},{"term":"contrller"},{"term":"controller hooks"},{"term":"controller.js"},{"term":"create"},{"term":"create cloud foundary account"},{"term":"create destinations to connect mobile services from sap web ide"},{"term":"css folder"},{"term":"csv upload validation"},{"term":"custom control"},{"term":"custom fiori app"},{"term":"custom image"},{"term":"custom login page"},{"term":"data element"},{"term":"database views"},{"term":"debug files in production environment"},{"term":"debugging javascript files"},{"term":"deman pop-in"},{"term":"deploy to cloud foundry"},{"term":"design principles"},{"term":"distance"},{"term":"doalog"},{"term":"domain"},{"term":"drag and drop"},{"term":"dv"},{"term":"dynamic"},{"term":"edit"},{"term":"enable sap web ide"},{"term":"event"},{"term":"events"},{"term":"events in classical reports"},{"term":"example classical report example"},{"term":"example of CAP"},{"term":"examples"},{"term":"excel"},{"term":"export project"},{"term":"export sap projects"},{"term":"export sapui5 project"},{"term":"expression"},{"term":"external library"},{"term":"external style"},{"term":"file"},{"term":"file reader"},{"term":"filter"},{"term":"filtering"},{"term":"fiori app"},{"term":"fiori apps"},{"term":"fiori jobs"},{"term":"fiori launchpad"},{"term":"fiori tiles"},{"term":"formatters"},{"term":"frontend components"},{"term":"function"},{"term":"geocoder"},{"term":"get cursor"},{"term":"get expanded entity"},{"term":"get expanded entityset"},{"term":"globalization"},{"term":"google maps"},{"term":"grouping"},{"term":"groups"},{"term":"gulp"},{"term":"handling localized texts"},{"term":"hcp"},{"term":"header item relationship"},{"term":"hello world"},{"term":"hello world application"},{"term":"help views"},{"term":"hierarchial ALV"},{"term":"icf"},{"term":"implementing SAP Fiori"},{"term":"import project"},{"term":"index"},{"term":"index of list"},{"term":"inline expressions"},{"term":"inner join"},{"term":"interactive reports events"},{"term":"interactive reports example"},{"term":"internal style"},{"term":"interview tips"},{"term":"introduction to ERP"},{"term":"introduction to odata annotations"},{"term":"introduction to sap abap"},{"term":"introduction to sap fiori"},{"term":"introduction to sapui5"},{"term":"item"},{"term":"iwfnd"},{"term":"javascript"},{"term":"javascript code editor"},{"term":"job search"},{"term":"joins"},{"term":"js"},{"term":"json model"},{"term":"jwt token"},{"term":"large string"},{"term":"launchpad"},{"term":"launchpad configuration"},{"term":"layout"},{"term":"layouts"},{"term":"local development"},{"term":"local service"},{"term":"login"},{"term":"login configuration"},{"term":"logo"},{"term":"logon page"},{"term":"lpd_cust"},{"term":"maint_service"},{"term":"maintainability"},{"term":"maintainence view"},{"term":"margins"},{"term":"marker"},{"term":"mdk"},{"term":"metadata.xml"},{"term":"mfa"},{"term":"minScreenWidth"},{"term":"mobile services in cloud foundary"},{"term":"model folder"},{"term":"modules"},{"term":"multi cloud environment"},{"term":"nested view"},{"term":"npm"},{"term":"odat v4"},{"term":"odata deep structures"},{"term":"odata tutorial series"},{"term":"odata v2"},{"term":"offline capabilities"},{"term":"online training abap"},{"term":"openui5"},{"term":"optimization"},{"term":"outer join"},{"term":"package"},{"term":"padding"},{"term":"parameter"},{"term":"pass multiple values"},{"term":"path"},{"term":"pdf"},{"term":"pfcg"},{"term":"pool"},{"term":"portal"},{"term":"portal site"},{"term":"projection views"},{"term":"pull"},{"term":"pull a project"},{"term":"push"},{"term":"radar chart"},{"term":"re usability"},{"term":"read"},{"term":"read table"},{"term":"register cloud platform"},{"term":"reports"},{"term":"resource bundle"},{"term":"resources"},{"term":"responsive"},{"term":"responsive table"},{"term":"responsive table in sapui5"},{"term":"responsiveness"},{"term":"rest"},{"term":"roles"},{"term":"routing in split app"},{"term":"saml"},{"term":"sap MDK"},{"term":"sap abap tutorials"},{"term":"sap app"},{"term":"sap backend system"},{"term":"sap cloud foundary"},{"term":"sap cloud platform for portal sites"},{"term":"sap cloud platform mobile services"},{"term":"sap custom portal sites"},{"term":"sap enterprise portal"},{"term":"sap fiori application"},{"term":"sap fiori apps"},{"term":"sap fiori configuration cockpit portal sites"},{"term":"sap fiori elements"},{"term":"sap fiori enterprise portal sites"},{"term":"sap fiori jobs"},{"term":"sap fiori launchpad"},{"term":"sap fiori launchpad configuration"},{"term":"sap fiori tools"},{"term":"sap fiori tutorial"},{"term":"sap freestyle portal sites"},{"term":"sap mobile development kit"},{"term":"sap mobile services tutorial"},{"term":"sap mobility jobs"},{"term":"sap ui5"},{"term":"sap ui5 excel upload"},{"term":"sap viz frame"},{"term":"sap web IDE Workspace export"},{"term":"sap web ide deprecated"},{"term":"sap webide"},{"term":"sap.m.list"},{"term":"sap.m.table"},{"term":"sapui5 apps"},{"term":"sapui5 best practices"},{"term":"sapui5 code editor"},{"term":"sapui5 code validator"},{"term":"sapui5 csv file upload import"},{"term":"sapui5 diagnostics window"},{"term":"sapui5 excel import"},{"term":"sapui5 lint"},{"term":"sapui5 nested view"},{"term":"sapui5 project"},{"term":"sapui5 project structuring"},{"term":"sapui5 xml editor"},{"term":"scp"},{"term":"searching"},{"term":"selected"},{"term":"selected index"},{"term":"setup"},{"term":"sheet.js"},{"term":"smart table"},{"term":"smarttable"},{"term":"speech recognition"},{"term":"spider chart"},{"term":"split app"},{"term":"srv"},{"term":"stage"},{"term":"step by step process to create odata"},{"term":"string"},{"term":"submitbatch"},{"term":"system objects"},{"term":"tab"},{"term":"tag"},{"term":"technical interview questions"},{"term":"test Odata service"},{"term":"tiles"},{"term":"token"},{"term":"transparent"},{"term":"tree table"},{"term":"types of subroutines"},{"term":"types of tables"},{"term":"types of views"},{"term":"ui5"},{"term":"universal worklist"},{"term":"update"},{"term":"upload"},{"term":"use strict"},{"term":"user experience sap"},{"term":"util"},{"term":"v4"},{"term":"validate using headers"},{"term":"validation"},{"term":"value"},{"term":"variable names"},{"term":"version"},{"term":"video tutorial on formatter and inline expressions"},{"term":"video tutorial on globalization"},{"term":"view"},{"term":"view extension"},{"term":"view extensions"},{"term":"view modification"},{"term":"view replacement"},{"term":"viz charts"},{"term":"viz control"},{"term":"vizframe control"},{"term":"voice recognition"},{"term":"walkthrough admin cockpit"},{"term":"web dynpro"},{"term":"webIDE application"},{"term":"webapp"},{"term":"work Area"},{"term":"workflow"},{"term":"xls"},{"term":"xlsx"},{"term":"xml code editor"},{"term":"xml view"},{"term":"xs security"}],"title":{"type":"text","$t":"SAP Development: Mastering SAP UI5, BTP, Fiori, CAPM, RAP, ABAP; and More!"},"subtitle":{"type":"html","$t":"Welcome to the ultimate SAP UI5, BTP, Fiori, CAPM, RAP, ABAP blog! Explore comprehensive tutorials, interview questions, and real-world examples to master SAP development. Elevate your skills in creating stunning UI5 apps, harnessing the power of BTP, and building Fiori applications. Unlock the potential of CAPM, RAP, and ABAP, and learn to integrate seamlessly with the enterprise portal. Whether you're a beginner or an experienced developer, this blog is your go-to resource for SAP expertise!"},"link":[{"rel":"http://schemas.google.com/g/2005#feed","type":"application/atom+xml","href":"https:\/\/www.sapui5tutors.com\/feeds\/posts\/default"},{"rel":"self","type":"application/atom+xml","href":"https:\/\/www.blogger.com\/feeds\/3826368468004556615\/posts\/default\/-\/capm?alt=json-in-script\u0026max-results=50"},{"rel":"alternate","type":"text/html","href":"https:\/\/www.sapui5tutors.com\/search\/label\/capm"},{"rel":"hub","href":"http://pubsubhubbub.appspot.com/"}],"author":[{"name":{"$t":"Sanjo Thomas"},"uri":{"$t":"http:\/\/www.blogger.com\/profile\/06687889588258406801"},"email":{"$t":"noreply@blogger.com"},"gd$image":{"rel":"http://schemas.google.com/g/2005#thumbnail","width":"16","height":"16","src":"https:\/\/img1.blogblog.com\/img\/b16-rounded.gif"}}],"generator":{"version":"7.00","uri":"http://www.blogger.com","$t":"Blogger"},"openSearch$totalResults":{"$t":"2"},"openSearch$startIndex":{"$t":"1"},"openSearch$itemsPerPage":{"$t":"50"},"entry":[{"id":{"$t":"tag:blogger.com,1999:blog-3826368468004556615.post-8522356537014634487"},"published":{"$t":"2023-06-06T17:08:00.003-07:00"},"updated":{"$t":"2023-07-17T07:03:34.431-07:00"},"category":[{"scheme":"http://www.blogger.com/atom/ns#","term":"authentication"},{"scheme":"http://www.blogger.com/atom/ns#","term":"capm"},{"scheme":"http://www.blogger.com/atom/ns#","term":"saml"},{"scheme":"http://www.blogger.com/atom/ns#","term":"sap BTP CAPM"},{"scheme":"http://www.blogger.com/atom/ns#","term":"SAP CAP"},{"scheme":"http://www.blogger.com/atom/ns#","term":"Security"},{"scheme":"http://www.blogger.com/atom/ns#","term":"xs security"}],"title":{"type":"text","$t":"How does security and authentication works in SAP CAP based applications"},"content":{"type":"html","$t":"\u003Cp\u003ESAP Cloud Application Programming (CAP) provides a comprehensive framework for developing cloud-native applications with a focus on security and authentication. As with any cloud application, security is a top priority and must be carefully considered and implemented to protect sensitive information and ensure that only authorized users can access the application.\u003C\/p\u003E\u003Cdiv class=\"separator\" style=\"clear: both; text-align: center;\"\u003E\u003Ca href=\"https:\/\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEjEVSDitVrRYU9shs4vyNKSRsKtATPd_v4Ej2iHNVYLmWqfWLUj6cnzVCLa9ndoRfUCN5FS0P-SMoFQN46AkbNVEI29boi_ibJ7_VTIoaX1t8Ms-NPo6mn2axdHVkvDcPmz2yeSPSD1Qcig7qc8lZlNEY8wVxD65OItGCBxpxGvLSkca1SiwAwNP58\/s554\/IMG_1873.jpeg\" style=\"margin-left: 1em; margin-right: 1em;\"\u003E\u003Cimg border=\"0\" data-original-height=\"554\" data-original-width=\"554\" height=\"200\" src=\"https:\/\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEjEVSDitVrRYU9shs4vyNKSRsKtATPd_v4Ej2iHNVYLmWqfWLUj6cnzVCLa9ndoRfUCN5FS0P-SMoFQN46AkbNVEI29boi_ibJ7_VTIoaX1t8Ms-NPo6mn2axdHVkvDcPmz2yeSPSD1Qcig7qc8lZlNEY8wVxD65OItGCBxpxGvLSkca1SiwAwNP58\/w200-h200\/IMG_1873.jpeg\" width=\"200\" \/\u003E\u003C\/a\u003E\u003C\/div\u003E\u003Cbr \/\u003E\u003Cp\u003E\u003Cbr \/\u003E\u003C\/p\u003E\u003Cp\u003EAuthentication is the process of verifying the identity of a user or system, and SAP CAP provides several options for authentication, including OAuth 2.0, SAML, and OpenID Connect. OAuth 2.0 is a widely used standard for authentication and authorization, and is the recommended method for securing CAP applications. OAuth 2.0 provides a secure mechanism for users to authenticate with the application and obtain an access token, which can be used to access protected resources.\u003C\/p\u003E\u003Cp\u003ESAP CAP also provides support for role-based access control (RBAC), which allows administrators to define roles and permissions for users and groups, and restrict access to sensitive data or functionality based on those roles. This helps ensure that only authorized users can perform certain actions within the application..\u003C\/p\u003E\u003Cp\u003EAnother one of these is the XS-Security service, which provides a framework for authentication, authorization, and secure communication between components in a cloud environment. XS-Security is an SAP BTP service that can be used to secure SAP CAP applications.\u003C\/p\u003E\u003Cp\u003EAuthentication in SAP CAP is managed by the XS-UAA (User Account and Authentication) service, which is responsible for verifying the identity of a user. When a user logs in to an application, the XS-UAA service authenticates the user and issues an access token, which is used to access protected resources in the application.\u003C\/p\u003E\u003Cp\u003E\u003Cbr \/\u003E\u003C\/p\u003E\u003Cp\u003EAuthorization is managed by the XS-Security service, which is responsible for enforcing access control policies. Access control policies can be defined using the XS-Security API, which allows administrators to specify which users or groups have access to specific resources in the application.\u003C\/p\u003E\u003Cp\u003E\u003Cbr \/\u003E\u003C\/p\u003E\u003Cp\u003ESecure communication between components in a cloud environment is managed by the XS-Security service. By default, all communication between components is encrypted using SSL\/TLS. This ensures that sensitive data cannot be intercepted or modified during transmission.\u003C\/p\u003E\u003Cp\u003EXS-Security also provides a mechanism for managing certificates and keys, which are used to secure communication between components. XS-Security can be used to generate and manage certificates and keys, and to ensure that they are securely stored and distributed to the appropriate components.\u003C\/p\u003E\u003Cp\u003EHere’s a text-based flowchart describing how XSUAA (SAP Business Technology Platform) service handles authentication in SAP CAP (Cloud Application Programming Model) applications:\u003C\/p\u003E\u003Cp\u003E\u003Cspan class=\"Apple-tab-span\" style=\"white-space: pre;\"\u003E\t\u003C\/span\u003E1.\u003Cspan class=\"Apple-tab-span\" style=\"white-space: pre;\"\u003E\t\u003C\/span\u003EUser accesses the SAP CAP application.\u003C\/p\u003E\u003Cp\u003E\u003Cspan class=\"Apple-tab-span\" style=\"white-space: pre;\"\u003E\t\u003C\/span\u003E2.\u003Cspan class=\"Apple-tab-span\" style=\"white-space: pre;\"\u003E\t\u003C\/span\u003EThe application’s authentication middleware verifies if the user has a valid access token.\u003C\/p\u003E\u003Cp\u003E\u003Cspan class=\"Apple-tab-span\" style=\"white-space: pre;\"\u003E\t\u003C\/span\u003E3.\u003Cspan class=\"Apple-tab-span\" style=\"white-space: pre;\"\u003E\t\u003C\/span\u003EIf the user doesn’t have a valid access token, the middleware redirects the user to the XSUAA service for authentication.\u003C\/p\u003E\u003Cp\u003E\u003Cspan class=\"Apple-tab-span\" style=\"white-space: pre;\"\u003E\t\u003C\/span\u003E4.\u003Cspan class=\"Apple-tab-span\" style=\"white-space: pre;\"\u003E\t\u003C\/span\u003EThe user is presented with a login page to enter their credentials.\u003C\/p\u003E\u003Cp\u003E\u003Cspan class=\"Apple-tab-span\" style=\"white-space: pre;\"\u003E\t\u003C\/span\u003E5.\u003Cspan class=\"Apple-tab-span\" style=\"white-space: pre;\"\u003E\t\u003C\/span\u003EUpon successful authentication, XSUAA generates an access token for the user.\u003C\/p\u003E\u003Cp\u003E\u003Cspan class=\"Apple-tab-span\" style=\"white-space: pre;\"\u003E\t\u003C\/span\u003E6.\u003Cspan class=\"Apple-tab-span\" style=\"white-space: pre;\"\u003E\t\u003C\/span\u003EThe access token is returned to the SAP CAP application.\u003C\/p\u003E\u003Cp\u003E\u003Cspan class=\"Apple-tab-span\" style=\"white-space: pre;\"\u003E\t\u003C\/span\u003E7.\u003Cspan class=\"Apple-tab-span\" style=\"white-space: pre;\"\u003E\t\u003C\/span\u003EThe application’s authentication middleware validates the access token received from XSUAA.\u003C\/p\u003E\u003Cp\u003E\u003Cspan class=\"Apple-tab-span\" style=\"white-space: pre;\"\u003E\t\u003C\/span\u003E8.\u003Cspan class=\"Apple-tab-span\" style=\"white-space: pre;\"\u003E\t\u003C\/span\u003EIf the access token is valid, the user is granted access to the application’s protected resources.\u003C\/p\u003E\u003Cp\u003E\u003Cspan class=\"Apple-tab-span\" style=\"white-space: pre;\"\u003E\t\u003C\/span\u003E9.\u003Cspan class=\"Apple-tab-span\" style=\"white-space: pre;\"\u003E\t\u003C\/span\u003EThe application can make use of the user’s identity and authorization information provided by XSUAA for further authorization checks.\u003C\/p\u003E\u003Cp\u003E\u003Cspan class=\"Apple-tab-span\" style=\"white-space: pre;\"\u003E\t\u003C\/span\u003E10.\u003Cspan class=\"Apple-tab-span\" style=\"white-space: pre;\"\u003E\t\u003C\/span\u003EIf the access token is invalid or expired, the user is redirected back to XSUAA for reauthentication.\u003C\/p\u003E\u003Cp\u003E\u003Cspan class=\"Apple-tab-span\" style=\"white-space: pre;\"\u003E\t\u003C\/span\u003E11.\u003Cspan class=\"Apple-tab-span\" style=\"white-space: pre;\"\u003E\t\u003C\/span\u003EThe process repeats until a valid access token is obtained or the user chooses to cancel the authentication process.\u003C\/p\u003E\u003Cp\u003EIn conclusion, XS-Security is a powerful tool for securing SAP CAP applications. By leveraging XS-Security, developers can ensure that their applications are protected from unauthorized access and data breaches, and that sensitive information is kept confidential.\u0026nbsp;\u003C\/p\u003E\u003Cp\u003ESAP CAP provides a comprehensive framework for developing secure cloud applications, with support for multiple authentication mechanisms, RBAC, data encryption, and secure coding practices. By following best practices and leveraging the built-in security features of SAP CAP, developers can ensure that their applications are secure and protected from unauthorized access and data breaches.\u003C\/p\u003E"},"link":[{"rel":"replies","type":"application/atom+xml","href":"https:\/\/www.sapui5tutors.com\/feeds\/8522356537014634487\/comments\/default","title":"Post Comments"},{"rel":"replies","type":"text/html","href":"https:\/\/www.sapui5tutors.com\/2023\/06\/how-does-security-and-authentication.html#comment-form","title":"0 Comments"},{"rel":"edit","type":"application/atom+xml","href":"https:\/\/www.blogger.com\/feeds\/3826368468004556615\/posts\/default\/8522356537014634487"},{"rel":"self","type":"application/atom+xml","href":"https:\/\/www.blogger.com\/feeds\/3826368468004556615\/posts\/default\/8522356537014634487"},{"rel":"alternate","type":"text/html","href":"https:\/\/www.sapui5tutors.com\/2023\/06\/how-does-security-and-authentication.html","title":"How does security and authentication works in SAP CAP based applications"}],"author":[{"name":{"$t":"Sanjo Thomas"},"uri":{"$t":"http:\/\/www.blogger.com\/profile\/06687889588258406801"},"email":{"$t":"noreply@blogger.com"},"gd$image":{"rel":"http://schemas.google.com/g/2005#thumbnail","width":"16","height":"16","src":"https:\/\/img1.blogblog.com\/img\/b16-rounded.gif"}}],"media$thumbnail":{"xmlns$media":"http://search.yahoo.com/mrss/","url":"https:\/\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEjEVSDitVrRYU9shs4vyNKSRsKtATPd_v4Ej2iHNVYLmWqfWLUj6cnzVCLa9ndoRfUCN5FS0P-SMoFQN46AkbNVEI29boi_ibJ7_VTIoaX1t8Ms-NPo6mn2axdHVkvDcPmz2yeSPSD1Qcig7qc8lZlNEY8wVxD65OItGCBxpxGvLSkca1SiwAwNP58\/s72-w200-h200-c\/IMG_1873.jpeg","height":"72","width":"72"},"thr$total":{"$t":"0"}},{"id":{"$t":"tag:blogger.com,1999:blog-3826368468004556615.post-6045963812670513236"},"published":{"$t":"2023-06-05T12:12:00.005-07:00"},"updated":{"$t":"2023-06-05T12:12:54.399-07:00"},"category":[{"scheme":"http://www.blogger.com/atom/ns#","term":"boolean"},{"scheme":"http://www.blogger.com/atom/ns#","term":"capm"},{"scheme":"http://www.blogger.com/atom/ns#","term":"CDS"},{"scheme":"http://www.blogger.com/atom/ns#","term":"Data types"},{"scheme":"http://www.blogger.com/atom/ns#","term":"large string"},{"scheme":"http://www.blogger.com/atom/ns#","term":"sap BTP CAPM"},{"scheme":"http://www.blogger.com/atom/ns#","term":"string"}],"title":{"type":"text","$t":"CAPM: Data types in cds"},"content":{"type":"html","$t":"\u003Cp\u003EIn SAPUI5, developers often use the Cloud Application Programming Model (CAPM) to define the data structures that are used in their applications. One important aspect of CAPM is the use of data types in CDS (Core Data Services) to define the structure and content of data entities.\u003C\/p\u003E\u003Cp\u003E\u003Cbr \/\u003E\u003C\/p\u003E\u003Cp\u003EThere are several different types of data types that can be used in CDS in SAPUI5. These data types are used to define the properties of data entities, such as the data type, length, and precision of each property. Some of the most common data types in CDS include the following:\u003C\/p\u003E\u003Cp\u003E\u003Cbr \/\u003E\u003C\/p\u003E\u003Cp\u003E1. String: A string is a data type that is used to store text or alphanumeric characters. The length of a string can be specified using the length property.\u003C\/p\u003E\u003Cp\u003E\u003Cbr \/\u003E\u003C\/p\u003E\u003Cp\u003E2. Integer: An integer is a data type that is used to store whole numbers, such as 1, 2, 3, and so on. The range of an integer can be specified using the minvalue and maxvalue properties.\u003C\/p\u003E\u003Cp\u003E\u003Cbr \/\u003E\u003C\/p\u003E\u003Cp\u003E3. Decimal: A decimal is a data type that is used to store numbers with decimal places, such as 1.23, 4.56, and so on. The precision and scale of a decimal can be specified using the precision and scale properties.\u003C\/p\u003E\u003Cp\u003E\u003Cbr \/\u003E\u003C\/p\u003E\u003Cp\u003E4. Boolean: A boolean is a data type that is used to store true\/false values. It can be used to represent binary data, such as yes\/no or on\/off values.\u003C\/p\u003E\u003Cp\u003E\u003Cbr \/\u003E\u003C\/p\u003E\u003Cp\u003E5. Date: A date is a data type that is used to store dates, such as January 1st, 2023. The format of a date can be specified using the format property.\u003C\/p\u003E\u003Cp\u003E\u003Cbr \/\u003E\u003C\/p\u003E\u003Cp\u003E6. Time: A time is a data type that is used to store times, such as 12:00 PM. The format of a time can be specified using the format property.\u003C\/p\u003E\u003Cp\u003E\u003Cbr \/\u003E\u003C\/p\u003E\u003Cp\u003E7. Timestamp: A timestamp is a data type that is used to store date and time values, such as January 1st, 2023 at 12:00 PM. The format of a timestamp can be specified using the format property.\u003C\/p\u003E\u003Cp\u003E\u003Cbr \/\u003E\u003C\/p\u003E\u003Cp\u003EIn summary, SAPUI5 developers use the Cloud Application Programming Model (CAPM) to define data structures in their applications. Data types in CDS are used to define the properties of data entities, such as the data type, length, and precision of each property. Developers can choose from a variety of data types in CDS, including string, integer, decimal, boolean, date, time, and timestamp.\u003C\/p\u003E"},"link":[{"rel":"replies","type":"application/atom+xml","href":"https:\/\/www.sapui5tutors.com\/feeds\/6045963812670513236\/comments\/default","title":"Post Comments"},{"rel":"replies","type":"text/html","href":"https:\/\/www.sapui5tutors.com\/2023\/06\/capm-data-types-in-cds.html#comment-form","title":"0 Comments"},{"rel":"edit","type":"application/atom+xml","href":"https:\/\/www.blogger.com\/feeds\/3826368468004556615\/posts\/default\/6045963812670513236"},{"rel":"self","type":"application/atom+xml","href":"https:\/\/www.blogger.com\/feeds\/3826368468004556615\/posts\/default\/6045963812670513236"},{"rel":"alternate","type":"text/html","href":"https:\/\/www.sapui5tutors.com\/2023\/06\/capm-data-types-in-cds.html","title":"CAPM: Data types in cds"}],"author":[{"name":{"$t":"Sanjo Thomas"},"uri":{"$t":"http:\/\/www.blogger.com\/profile\/06687889588258406801"},"email":{"$t":"noreply@blogger.com"},"gd$image":{"rel":"http://schemas.google.com/g/2005#thumbnail","width":"16","height":"16","src":"https:\/\/img1.blogblog.com\/img\/b16-rounded.gif"}}],"thr$total":{"$t":"0"}}]}});