/support/notes/service/sap_logo.png){kind=logo}
SAP Knowledge Base Article - PreviewSymptom
- When creating a new instance with the apiaccess plan, all scopes are automatically granted ("xs_user.write uaa.resource xs_authorization.read xs_idp.write xs_user.read xs_idp.read xs_authorization.write").
- Attempts to limit the scope to read-only access using additional parameters (e.g., xs-security.json) do not work.
- No error messages are encountered during the process.
Read more...
Environment
SAP BTP, Cloud Foundry runtime and environment
Product
SAP BTP, Cloud Foundry runtime and environment all versions
Keywords
uaa, apiaccess plan, read-only permissions, xs-security.json, scopes, api credential, security settings, access token, authentication, authorization, trust management , KBA , BC-CP-CF-SEC-IAM , UAA, Authentication, Authorization, Trust Mgmnt , Problem
About this page
This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).Search for additional results
Visit SAP Support Portal's SAP Notes and KBA Search.
/support/notes/service/twitter.svg)
/support/notes/service/youtube.svg)
/support/notes/service/linkedin.svg)
/support/notes/service/instagram2.svg)