Release Notes for SAP HANA Cloud Platform

You can now set SuccessFactors as the role provider for extension applications. This allows you to manage the roles of such applications only in the SuccessFactors system. For more information, see Changing the Default Role Provider.

Only the main links (Settings, Help, and Feedback) remain in the cockpit header. All the other links were moved to the new footer.

SAPUI5 distribution 1.26.5 for Java and HTML5 applications (including runtime 1.26.4 & documentation) has been released.

• Тhe OAuth tokens of HTTP destinations with authentication type OAuth2SAMLBearerAssertion are now auto-renovated. When a token is about to expire, a new token is created shortly before the expiration of the old one.
• To allow parallel usage of HTTP client instances, HTTP clients created by HTTP destinations will now use ThreadSafeClientConnManager.

By default, the FORM and SAML2 login methods used to fall back to user name and password authentication (HTTP basic authentication) in case of failure of the trusted SAML identity provider. This default fallback is now removed. To preserve the behavior, in Authentication Configuration create for your application a custom login method, in which you select the User name and password option. The change requires application restart. For more information, see Configuring Authentication for Your Application.

Breadcrumbs show the full object hierarchy in the pattern:

Data Center> Account> application> process

The interface com.sap.core.connectivity.api.configuration.ConnectivityConfiguration is extended with a new clearCache() method. It allows each application to clear its local cache to ensure that the next configuration will be taken from a central storage. The method also clears the configuration cache used by HTTP destinations. For more information, seeConnectivity Javadoc.

SAPUI5 distribution 1.26.3 for Java and HTML5 applications (including runtime 1.26.3 & documentation) has been released.

SAP HANA revision 91 (SPS 09) is now available.

• In a production environment or planned Go-live in less than 6 weeks,we recommend that you stay on the current SAP HANA SPS until the next SAP HANA Datacenter Service Point is reached.
• In a non-production environment or planned initial system setup, you can update to the new SPS 09 via request to SAP HANA Cloud Platform operators.

Virtual roles are now available for HTML5 applications.

• AccountAdministrator– account members with Administrator role.
• AccountDeveloper– account members with Developer or Administrator role.
• Everyone– all authenticated users of the configured identity provider.

You can map virtual roles to HTML5 application permissions. AccountAdministrator and AccountDeveloper require SAP IDP to be configured as identity provider. In case a custom IDP is configured, you can manually create these roles in the corresponding account.

By default, every permission required to access a protected resource of an application is granted to members of the AccountDeveloper role. As long as no other role is assigned to the permission, only account members with the Developer or Administrator role have access to the protected resource. This is also true for the default permission NonActiveApplicationPermission, which is required to access a non-active version of an HTML5 application.

• The Subscribed Java Applications table now has columns State and Start Time, so you can see the run state and start time of your subscribed Java applications.
• Every row in the log viewer has a View button that opens the respective log line in text-only format.

The rolling-update command is now available for productive use. For more information, seerolling-update.

SAPUI5 distribution 1.24.6 for Java and HTML5 applications (including runtime 1.24.5 & documentation) has been released.

New version of SAP JVM Tools is released. For more information about the new major features, seeWhat is New in SAP JVM Tools 2.2.

• JCoDestination.ping() times out after <rfc.client_connect_timeout>  seconds. It also throws a JCoException with error group JCO_ERROR_TIMEOUT if the system does not respond in that time.
• When using a destination with pooling, you can configure the destination to check the validity of a connection before using the connection for a function call. This way you can avoid zombie connections that may lead to error-prone situations.
• Traffic traces are added, which allows analyzing transferred data amounts.

Connectivity Service

• JCoRecord.isInitialized(name|index) no longer returns wrong "false" for nested tables or structures.
• Performance improvement is done for client calls that do not use AbapClassException.

Platform Infrastructure

The Safari browser no longer blocks iFrame-embedded applications.