Hi all
I would also recommend the following reading:
1739698 - Security warning for mixed secure and non-secure content when accessing the UWL
This KBA describes a problem involving a security warning popup which might happen, but the actual root cause is shared also in your case.
All of that cases happen exactly due to the usage of SAP_LocalSystem system alias, which is resolved by means of following methods (according to Tal Haviv above):
--------------------------------------------------------
- servletRequest.getServerName();
- servletRequest.getServerProtocol();
- servletRequest.getServerPort();
--------------------------------------------------------
Depending upon the scenario (using Load balancer? Using reverse proxy?), it might be the case that these methods return the internal portal protocol/host/port, instead of the external protocol/host/port.
In such a case, you need to configure your system so that it 'knows' the protocol/host/port from the browser point of view is the external ones and not the internals.
SAP KBA above guides you through the way to achieve that.
Kind regards,
Armando Zaro