Technology Blogs by SAP
Learn how to extend and personalize SAP applications. Follow the SAP technology blog for insights into SAP BTP, ABAP, SAP Analytics Cloud, SAP HANA, and more.
cancel
Showing results for 
Search instead for 
Did you mean: 
Rui-Nogueira
Advisor
Advisor

Course Overview

ENROLL TO THE COURSE HERE (in case you haven't, yet): Course: Next Steps in SAP HANA Cloud Platform

You can find a list of the course guides for each week of this course in the corresponding parent project of this blog post.

Currently there is not much to add with regards to additional information. But once more questions pop-up in the forums I'll add FAQs into here.

Please use the SAP HANA Cloud Platform Developer Center or the corresponding openSAP forum for week 3 of this course to post your questions regarding the openSAP course.

Week 5: Securing Web APIs

This course week is all about securing web APIs on the SAP HANA Cloud Platform

Unit 1 - Protecting Web APIs

In this unit you learn what Web APIs are, when to use SAML 2.0 and oAuth and you also learn what the benefits of OAuth are.

Important/additional information

Unit 2 - OAuth 2.0 Fundamentals

This unit explains the fundamentals around OAuth 2.0.

Unit 3 - Protecting the Cloud Application

In the third unit of this week you learn how to protect APIs programmatically and how to configure the OAuth filter.

Important/additional information

Unit 4 - OAuth Configuration

This unit shows you how to register OAuth clients and how to configure scopes for your cloud application.

Important/additional information

In this unit you might notice that the video from minute 2:48 till 3:12 shows how I enter a wrong URL. It should be http://localhost:8000/oauthcallback, but in the video I enter http://localhost:8000/ouathcallback. Please enter the correct link http://localhost:8000/oauthcallback .

Unit 5 - Working with Multiple Identity Providers

Finally in unit 5 we develop an OAuth client. You learn how to integrate an OAuth Client with the SAP HANA Cloud Platform OAuth Authorization Server and how to implement a callback handler for the authorization code flow in a desktop client.