Solution : https://service.sap.com/sap/support/notes/1628387 (SAP Service marketplace login required)
Summary :
This SAP Note addresses issues in the End User Logon Application concerning re-logon prompts and URL-parameter user identification security. The cause is identified as shared Web Dynpro use and URL-embedded user information. The solution involves creating separate Web Dynpro applications dedicated to the End User Logon, configuring these to not transmit user details via URLs, and maintaining specific user logon details in SICF for these applications. Corrective action includes implementing steps via SE24, such as creating and modifying the 'check_end_user_application' method in 'CL_GRAC_ACCESS_REQUEST_UTIL'.
Key words :
call method cl_grac_access_request_util=>retrieve_end_user_session exporting iv_session_id = iv_session_id importing ev_user = ev_user, typeio_comp_controller importing if_wd_componentiv_session_id importing grfn_guidev_user exporting grac_user5, release v1000 sapk-v1003ingrcfnda - sapk-v1005ingrcfnda, url parameter solution separate web dynpro applications, software component grcfnd_a grcfnd_a, implement attached correction instructions------------------------------------------------------------------------, virtual hosts / services column, type internet user create, data lo_application type ref, data lo_app_info type ref
Related Notes :
| 1637956 | BRM 10.0 SP 6: CHECKMAN issue in Class CL_GRAC_ERM_BROLE_BG |
| 1618456 | UAM: User detail field mapping not working for custom fields |
| 1613084 | UAM: End User Logon application requires re-logon |
| 1607067 | Master Note for SAP Access Control 10.0 - Support Pack 6 |