ddonchev
commented
4 years ago Hi Borcea, MTA deployment transfers service instance parameters (in this case XSUAA configurations), but does not have any notion of what those parameters mean. MTA applications can be multi tenant but mta deploy does not handle the aspects of their tenancy. Unfortunately the knowledge required to answer your question is outside the scope our team or this repository. Maybe some colleague in the internal cf user list would have more experience and a better idea of how to configure the UAA. Best regards,
borceacristiann
Dear Colleagues, I am part of the SAP ETD-Cloud team which is working on a multi-tenant application that is deployed in Cloud Foundry. For authentication, authorization, application routing and role generation we use XSUAA. The roles are created from the mta.yaml which resides in the SAP Application Router. The application is part of the Cloud Foundry subscription and it is multi-tenant based. Is there any possibility to hide custom roles for the subscribed accounts? We would like to have certain roles visible only to our central tenant while others should be available for all the subscribers, including us. Regards, Borcea Cristian.