Secure a Basic Node.js App with the Authorization and Trust Management Service (XSUAA)

Tutorials: https://developers.sap.com/tutorials/cp-cf-security-xsuaa-create.html

Step 9 : Call your application from its secure route, 2. Navigate to your application with the secure route of your application router.

Until then everything went well, or so I thought 🙂

ISSUE :

the url

approuter-product-list-ap13.cfapps.eu10-004.hana.ondemand.com/products sends me an Internal Server Error message instead of no data .

Account & subaccount : innovationemeanorth/InnovationCF_eu10_004

API endpoint : https://api.cf.eu10-004.hana.ondemand.com

My yaml :

applications:# Product List Application- name: product-list instances: 1 memory: 128M routes: - route: product-list-ap13.cfapps.eu10-004.hana.ondemand.com path: myapp buildpacks: - nodejs_buildpack timeout: 180 services: - xsuaa-service-tutorial
# Application Router- name: approuter routes: - route: approuter-product-list-ap13.cfapps.eu10-004.hana.ondemand.com path: approuter buildpacks: - nodejs_buildpack memory: 128M services: - xsuaa-service-tutorial env: destinations: > [ {"name":"products-destination", "url":"https://product-list-ap13.cfapps.eu10-004.hana.ondemand.com", "forwardAuthToken": true} ]

And my xs-security.json :

{ "xsappname": "product-list", "tenant-mode": "dedicated", "scopes": [ { "name": "$XSAPPNAME.read", "description": "With this scope, USER can read products." } ],
"role-templates": [ { "name": "Viewer", "description": "Role to get the list of products", "scope-references": [ "$XSAPPNAME.read" ] } ], "role-collections": [ { "name": "ProductListViewer", "description": "Product List Viewer", "role-template-references": [ "$XSAPPNAME.Viewer" ] } ], "oauth2-configuration": { "redirect-uris": ["https://approuter-product-list-ap13.cfapps.eu10-004.hana.ondemand.com/login/callback"] }}

Do you have any clue ?

tutoxsuaa.png

tutoxsuaa-trustconfiguration.png

--------------------------

Write here what you need help with ...