cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

SAP Web Analytics HeatMap - whitelist SAP Web Analytics in X-frame options

GeorgeAbraham
Participant

on ‎07-22-2020 11:55 AM

0 Kudos

Hi Team,

W.r.t. to the heat map, as per the documentation, I need to whitelist SAP Web Analytics in the X-frame options.

Below is the code added in the index.html page head tag, still the heat map loads but the page doesn't load.

NOTE: App is launched via FLP and I have an FLP Shell Plugin where I have instantiated the Web Tracker below code is within the app - I am guessing I need this also in the shell plugin, but how do I add it.

<script>
			window["sap-ui-config"] = {
			    whitelistService: 'https//events/wa/cfapps/us10/hana/ondemand/com/tracker/',
			    frameOptions: 'trusted',
			    frameOptionsConfig: {
			        callback: function(bSuccess) {
			            if (bSuccess) {
			                alert("App is allowed to run!");
			            } else {
			                alert("App is not allowed to run!");
			            }
			        }
			    }
			};
		</script>
		<script id="sap-ui-bootstrap"
			src="resources/sap-ui-core.js"
			data-sap-ui-theme="sap_fiori_3"
			data-sap-ui-resourceroots='{"abc.abc": "./"}'
			data-sap-ui-compatVersion="edge"
			data-sap-ui-oninit="module:sap/ui/core/ComponentSupport"
			data-sap-ui-async="true"
			data-sap-ui-frameOptions="trusted">
		</script>
Show replies
Show replies
Answer

Accepted Solutions (0)

Answers (1)

Answers (1)

keshav_kumar_gupta
Explorer
‎07-30-2020 10:23 AM
0 Kudos

HI,

There are 2 URLs in SAP Web Analytics.

https://events.wa.cfapps.us10.hana.ondemand.com/tracker/'

is for collecting the events and https://<<subaccountname>>.wa.cfapps.us10.hana.ondemand.com

is for accessing your SAP Web Analytics cockpit to see the reports.

As you can view heatmap reports on SAP Web Analytics cockpit, you should whitelist cockpit URL.

Hope this information helps.,

Thanks

Keshav

Show replies
Show replies
keshav_kumar_gupta
Explorer
‎07-30-2020 10:26 AM
0 Kudos

Your cockpit URL would start with subaccountname, like [accountname].wa.cfapps.us10.hana.ondemand.com

GeorgeAbraham
Participant
‎07-31-2020 1:04 PM
0 Kudos

Hi keshav.kumar.gupta

Tried the approach as it made sense, but still not working or making a difference.

Couple of things to note:

1. Based on the Web Analytics Help Document, it mentions as follows: "In order to allow SAP Web Analytics to load your webpage in an Iframe, you must whitelist SAP Web Analytics in your X-frame options.", so if we whitelist the FLP Cockpit, will it work

2. My WebAnalytics app is not on the direct individual app, rather its a standalone app deployed as a FLP Shell Plugin, so the whitelist script written in my index.html seems to be not triggering

3. In the SAP provided sample Ice Cream app, the bootstrap script does not have the addition of data-sap-ui-frameOptions="trusted" and still the heatmap loads. I tried the same here as well by removing the frameOptions still no luck.

Ask a Question