我是这样设置的。。
使用库。下面-你需要将这些属性传递距离的Identity Provider(IDP)到数据库。你的json config通过xs-security将允许权限范围。
首先下载Python:
sap_xsseclib。它应该允许你获取 JWT 令牌的属性。其次,设置你的服务和安全
//import these lib. after downloading
from sap import xssec
from cfenv import AppEnv
// get your env.
myEnv = AppEnv()
// get your UAA service
myService = myEnv.get_service(name='<uaa_service_name>').credentials
// now your JWT access token for
contextWithAccessToken = xssec.create_security_context(access_token, myService)
接下来配置你的xs-security文件
Example xs-security.json File
{
"xsappname" : "node-hello-world",
"scopes" : [ {
"name" : "$XSAPPNAME.Display",
"description" : "display" },
{
"name" : "$XSAPPNAME.Edit",
"description" : "edit" },
{
"name" : "$XSAPPNAME.Delete",
"description" : "delete" }
],
"attributes" : [ {
"name" : "Country",
"description" : "Country",
"valueType" : "string" },
{
"name" : "CostCenter",
"description" : "CostCenter",
"valueType" : "int" }
],
"role-templates": [ {
"name" : "Viewer",
"description" : "View all books",
"scope-references" : [
"$XSAPPNAME.Display" ],
"attribute-references": [ "Country" ]
},
{
"name" : "Editor",
"description" : "Edit, delete books",
"scope-references" : [
"$XSAPPNAME.Edit",
"$XSAPPNAME.Delete" ],
"attribute-references" : [
"Country",
"CostCenter"]
}
]
}
// 为你的环境准备好用户值。 XS_APPLICATIONUSER或者$env.user.value
设置你 @sap/hana-client 调用
connection.session.XS_APPLICATIONUSER = <JWT TOKEN>;不要忘记设置
sap-jwt/py-jwt用于验证 jwt 令牌的库
刚设置
USE_SAP_PY_JWT = true
你完成了!