Welcome

Hi everyone,

our new openSAP course SAP HANA Cloud Platform Essentials started last week, on May 10th 2016, and ends on June 29th 2016. It's a 6 week course followed by another week for the final exam. The document openSAP course guide - SAP HANA Cloud Platform Essentials gives an overview over the course and has the links to all the week guides. This blog post you are reading just now will guide you through week 2 of the course and provide you with additional material, explanations or Q&A around the topic of the week. Depending on the feedback and questions inside the forum of the course I might also add additional material (e.g. videos) during and after the course to address the frequently asked questions so that you have a one-stop-shop for this course. I hope you will enjoy the week!

Content Week 2

The topic for week 2 is Security. Here are the units you can look forward to:

• Unit 1: Security Concept
• Unit 2: Securing HTML5 Apps
• Unit 3: Securing Java Apps
• Unit 4: Securing Web APIs
• Unit 5: Securing SAP HANA Native Services - Part 1
• Unit 6: Securing SAP HANA Native Services - Part 2

Table of Contents

Unit 1 – Security Concept

See the video here: https://open.sap.com/courses/hcp1/items/3RwOCbE4BYbpuEBoPIUNqK

What you will learn

• Authentication & Single Sign-On
• Authorization Management
• WEB API Protection
• Identity Propagation

Additional links

• ...

Q&A

• ...

Unit 2 – Securing HTML5 Apps

See the video here: https://open.sap.com/courses/hcp1/items/0VuFMKEEQftbFrHqd8pdtB

What you will learn

• Authenticating user via SAML
• Managing permissions and roles

Additional links

• ...

Q&A

• I can't import the provided sample application from the additional material, what can I do? If the import fails for you then please delete the "Disclaimer_additional_material.docx" out of the ZIP archive and then test the import again. See https://open.sap.com/courses/hcp1/question/29d6aaee-27c8-4458-8462-6c54ee4b586b.

Unit 3 – Securing Java Apps

See the video here: https://open.sap.com/courses/hcp1/items/3OqdPIirBGxAGnc5I3FUIY

What you will learn

• Authenticating user via SAML
• Managing groups and roles
  

Additional links

• ...

Q&A

• I can't import the provided sample application from the additional material, what can I do? If the import fails for you then please delete the "Disclaimer_additional_material.docx" out of the ZIP archive and then test the import again. See https://open.sap.com/courses/hcp1/question/29d6aaee-27c8-4458-8462-6c54ee4b586b.

Unit 4 – Securing Web APIs

See the video here: https://open.sap.com/courses/hcp1/items/1qZ2sfBMI84zkCapKcrKxQ

What you will learn

• Protecting an API using OAuth 2.0
• Testing with a REST client

Additional links

• OAuth 2.0

Q&A

• I can't import the provided sample application from the additional material, what can I do? If the import fails for you then please delete the "Disclaimer_additional_material.docx" out of the ZIP archive and then test the import again. See https://open.sap.com/courses/hcp1/question/29d6aaee-27c8-4458-8462-6c54ee4b586b.

Unit 5 – Securing SAP HANA Native Services - Part 1

See the video here: https://open.sap.com/courses/hcp1/items/1UXqKaq2rmkOGCo3icFgWo

What you will learn

• Configuring identity propagation between an HTML5 app and an SAP HANA XS service - part 1
  • Configure the local service provider for HTML5 apps
  • Set up trust in XS to the HTML5 local service provider
  • Enable dynamic user creation in XS
    

Additional links

• ...

Q&A

• ...

Unit 6 – Securing SAP HANA Native Services - Part 2

See the video here: https://open.sap.com/courses/hcp1/items/0mXGU1yHNSY1p076zg1UNY

What you will learn

• Configuring identity propagation between an HTML5 app and an SAP HANA XS service - part 2
  • Configure HTTP destination for application-to-application SSO
  • Configure SAML in XS
  • Test the scenario
    

Additional links

• ...

Q&A

• ...

All the best,

Sven