Add Multitenancy to a Node.js Application Secured by the SAP Authorization and Trust Management service (XSUAA)
Learn how to add multitenancy to your application and make it available for other subaccounts using the SaaS Provisioning service and the XSUAA.
You will learn
- How to add multitenancy to a secure Node.js application
- How to provide the application to another subaccount with the SaaS Provisioning service
- How to access a multitenant application from another subaccount
Prerequisites
- Secure a Basic Node.js App with the SAP Authorization and Trust Management Service (XSUAA)
- You must have a second subaccount within the same trial account that you can use to subscribe to the application.
The use case for this tutorial is that you’ve created a Node.js application in your subaccount that is secured by the XSUAA. You now want to make that application available to other subaccounts (tenants). You’ll use the SaaS Provisioning service to make your application available to a consumer subaccount within your global trial account.
See the following diagram to get an overview of the SaaS architecture.

IMPORTANT: This tutorial is using specific values instead of placeholders. Please make sure to adapt those values to your own values, that you used in the previous tutorial.
The specific values that are used in this tutorial are:
- The application name of the product list application: product-list.
- Used in the
manifest.yml
.
- Used in the
- The application name of the application router: approuter.
- Used in the
manifest.yml
.
- Used in the
- The route: product-list-ap25.cfapps.eu10.hana.ondemand.com.
- Used in the
manifest.yml
. - Partially used in the
config.json
.
- Used in the
- The route: approuter-product-list-ap25.cfapps.eu10.hana.ondemand.com.
- Used in the
manifest.yml
. - Partially used in the
index.js
- Used in the
- The XSUAA service instance name: xsuaa-service-tutorial
- Used in the
manifest.yml
. - Used when creating the service instance.
- Used in the
- The SaaS Provisioning service instance name: saas-registry-tutorial.
- Used in the
manifest.yml
. - Used when creating the service instance.
- Used in the
- The XSUAA application name: product-list
- Used in the
config.json
. - Used in the
xs-security.json
.
- Used in the
- The subdomain Id of the consumer subaccount: consumer-tenant-ap25.
- Used when creating the route for the consumer subaccount.