03-28-2024 11:57 AM - edited 04-04-2024 9:28 AM
Hi Experts,
I developed an App that uses the Workflow capabilites from SAP Build Process Automation. After deploying the App to the Launchpad, everything works fine (using managed application router).
But if I start the App from within BAS ("npm start") the fetching of the XSRF-Token fails. Read-Access on the Workflow service is working.
I can read workflow instances etc. without problems but if I try to change something on an instance and therefore try to fetch a XSRF-Token it fails with "403 User does not have sufficient privileges."
I am using the same user in BAS as in Launchpad, so I wonder why there should be an authorization Problem with my user.
This is my xs-app.json:
And this is the relevant part of my ui5.yaml:
I also tried these parameters, no success:
My User has these Roles:
Any hint is highly appreciated...
Regards,
Jürgen
Hello Archana,
thanks for your answer. I added csrfProtection: false to my xs-app.json but the error is still the same.
I also followed the post from korayyersel_q in the comments of yout Blog (CF: bind a service to a locally run application") but this did also not help.
Any other ideas maybe?
Regards,
Juergen
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hello @thejk ,
If you notice in your xsapp.json you are using xsuaa authentication which means it will route through the service instance key and not through the user roles. Please ensure that you have disabled csrfTokenProtection.
Please follow my earlier blog - troubleshooting section . This blog is based on old workflow service, but the concept remains the same.
Hope that helps,
Archana
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hello Archana,
thanks for your answer. I added csrfProtection: false to my xs-app.json but the error is still the same.
I also followed the post from korayyersel_q in the comments of yout Blog (CF: bind a service to a locally run application") but this did also not help.
Any other ideas maybe?
Regards,
Juergen
User | Count |
---|---|
76 | |
10 | |
8 | |
6 | |
6 | |
6 | |
5 | |
4 | |
4 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.