There is a problem when we are trying to login to webdynpro application via URL parameters SAP-USER and SAP-PASSWORD.
Getting the error "Logon with URL parameter not possible; logon cookie is missing" Error no. ICF_SYSTEM_LOGIN402
We understand the security risk but still we need this feature to be activated.
You will have to set "Deactivate Login XSRF Protection", see SAP note 1617090.
As suggested by Mr Samuli follow the note 1617090.
Activate or deactivate the logon cookie
You can configure whether the logon cookie is to be used and you can activate or
deactivate it in the service settings. The default value depends on your release. The
configuration switch is provided in transaction SICF. To access it, double-click a service
to call the service settings and choose the "Error Pages" tab. On the "Logon Errors" tab
page, choose the "Configuration" pushbutton for the system logon. In the system logon
settings, set the "Deactivate Login XSRF Protection" indicator accordingly.