When binding applications or creating service keys for services instances of the SAP Authorization and Trust Management service (XSUAA), provide configuration parameters in JSON format.
Set parameters according to the following use cases:
-
For instance or binding secrets, you want to supress the creation of client secrets.
-
For X.509 secrets, set parameters according to the following scenarios:
-
The SAP Authorization and Trust Management service generates certificates for you.
-
You already have your own public key infrastructure (PKI), with certificates issued from one of the supported certificate authorities (CA). See the links in the related information.
-
The types of secrets that a service instance can accept in a binding or service key is configured in the application security descriptor (
xs-security.json).For more information, see Application Security Descriptor Configuration Syntax.
Related Information
Parameters for Suppressing Client Secrets
Parameters for X.509 Certificates Managed by SAP Authorization and Trust Management Service
Parameters for Self-Managed X.509 Certificates
Trusted Authorities for X.509 Certificates
Limits for Technical Artifacts of the SAP Authorization and Trust Management Service