https://community.sap.com/t5/application-development-and-automation-discussions/authorization-object/m-p/5533295#M1264013 <HTML><HEAD></HEAD><BODY><P>The [standard authorization concept|http://help.sap.com/saphelp_nw70/helpdata/EN/52/67167f439b11d1896f0000e8322d00/frameset.htm] is based on the ABAP statement [AUTHORITY-CHECK|http://help.sap.com/abapdocu/en/ABAPAUTHORITY-CHECK.htm] and roles.</P><P>If you like to use it you would create some customer authorization objects with corresponding authorization fields, use [AUTHORITY-CHECK|http://help.sap.com/abapdocu/en/ABAPAUTHORITY-CHECK.htm] and work with roles to assign authorizations to users.</P><P></P><P>You describe another approach: "The user should be able to open the transaction only if the value is 'Y' in the database table for the user."</P><P></P><P>Well, there exist applications for which is the correct technique: If the data already exist than it is ok to check these database entries. (Example: Everyone is allowed to maintain his or her own data.) </P><P>However, if an administrator has the task to maintain the permission assignments, than I recommend to go for the standard authorization concept. </P><P></P><P>Kind regards</P><P>Frank Buchholz</P></BODY></HTML> Wed, 29 Apr 2009 11:11:21 GMT Frank_Buchholz 2009-04-29T11:11:21Z https://community.sap.com/t5/application-development-and-automation-discussions/authorization-object/m-p/5533294#M1264012 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P>I have to add authorization to a z transaction in the dialog program.The user should be able to open the transaction only if the value is 'Y' in the database table for the user.Please suggest how should I do it.</P></BODY></HTML> Wed, 29 Apr 2009 04:41:19 GMT https://community.sap.com/t5/application-development-and-automation-discussions/authorization-object/m-p/5533294#M1264012 Former Member 2009-04-29T04:41:19Z https://community.sap.com/t5/application-development-and-automation-discussions/authorization-object/m-p/5533295#M1264013 <HTML><HEAD></HEAD><BODY><P>The [standard authorization concept|http://help.sap.com/saphelp_nw70/helpdata/EN/52/67167f439b11d1896f0000e8322d00/frameset.htm] is based on the ABAP statement [AUTHORITY-CHECK|http://help.sap.com/abapdocu/en/ABAPAUTHORITY-CHECK.htm] and roles.</P><P>If you like to use it you would create some customer authorization objects with corresponding authorization fields, use [AUTHORITY-CHECK|http://help.sap.com/abapdocu/en/ABAPAUTHORITY-CHECK.htm] and work with roles to assign authorizations to users.</P><P></P><P>You describe another approach: "The user should be able to open the transaction only if the value is 'Y' in the database table for the user."</P><P></P><P>Well, there exist applications for which is the correct technique: If the data already exist than it is ok to check these database entries. (Example: Everyone is allowed to maintain his or her own data.) </P><P>However, if an administrator has the task to maintain the permission assignments, than I recommend to go for the standard authorization concept. </P><P></P><P>Kind regards</P><P>Frank Buchholz</P></BODY></HTML> Wed, 29 Apr 2009 11:11:21 GMT https://community.sap.com/t5/application-development-and-automation-discussions/authorization-object/m-p/5533295#M1264013 Frank_Buchholz 2009-04-29T11:11:21Z https://community.sap.com/t5/application-development-and-automation-discussions/authorization-object/m-p/5533296#M1264014 <HTML><HEAD></HEAD><BODY><P>Shashi,</P><P></P><P>Ask the developer to put an authorization group on the program and then you can restirct it in the user role using S_PROGRAM and specifying the auth group for that program. </P><P></P><P></P><P>Thanks</P><P></P><P>Khan</P></BODY></HTML> Mon, 04 May 2009 16:48:11 GMT https://community.sap.com/t5/application-development-and-automation-discussions/authorization-object/m-p/5533296#M1264014 Former Member 2009-05-04T16:48:11Z