https://community.sap.com/t5/application-development-and-automation-discussions/authorization-checking-in-bapi/m-p/8448109#M1649254 <HTML><HEAD></HEAD><BODY><P>Hi Vishnu, thanks for your guidance. I tried your method but it did not work as well. I placed a break-point at the beginning of 'USEREXIT_FIELD_MODIFICATION' in MV45AFZZ. It seems like during the BAPI call, it did not enter this user exit at all.</P></BODY></HTML> Wed, 21 Dec 2011 06:35:09 GMT Former Member 2011-12-21T06:35:09Z https://community.sap.com/t5/application-development-and-automation-discussions/authorization-checking-in-bapi/m-p/8448102#M1649247 <HTML><HEAD></HEAD><BODY><P>Hi, </P><P></P><P>I put in authorization checking for the 'Material group 1' field of a SD document. With this, only authorized users are allowed to change this field while other users without the authorization will not be allowed to change it. When i tested the authorization in VA02, it works fine. I was able to change it as i has been assigned with the required role/profile. On ther other hand, the other user without the role/profile was not able to change the field using VA02. I did another test using a Z program that calls 'BAPI_SALESORDER_CHANGE'. The Z program will change the 'Material group 1' field using 'BAPI_SALESORDER_CHANGE'. My initial thought was me with the required role/profile when running the Z program, will be able to change the field while the other user without the required role/profile will not be able to change it when running the Z program. However, the result shows that both users (with/without the role/profile) was also able to change the field using the Z program. Is there anyway to control the BAPI so that it works the same as in VA02? Thanks much for your advice.</P></BODY></HTML> Wed, 21 Dec 2011 04:04:22 GMT https://community.sap.com/t5/application-development-and-automation-discussions/authorization-checking-in-bapi/m-p/8448102#M1649247 Former Member 2011-12-21T04:04:22Z https://community.sap.com/t5/application-development-and-automation-discussions/authorization-checking-in-bapi/m-p/8448103#M1649248 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>In your program before calling BAPI, use function module AUTHORITY_CHECK_PROG , or use AUTHORITY_CHECK based on requirement.</P><P></P><P></P><P></P><P>Regards,</P><P></P><P>Ravi</P></BODY></HTML> Wed, 21 Dec 2011 04:19:06 GMT https://community.sap.com/t5/application-development-and-automation-discussions/authorization-checking-in-bapi/m-p/8448103#M1649248 Former Member 2011-12-21T04:19:06Z https://community.sap.com/t5/application-development-and-automation-discussions/authorization-checking-in-bapi/m-p/8448104#M1649249 <HTML><HEAD></HEAD><BODY><P>GK.</P><P>the authorization what you have set is on the screen, that wont work with BAPI.</P><P></P><P>you want restriction for the BAPI as well, then do the check by FM AUTHORITY_CHECK before the BAPI call.</P></BODY></HTML> Wed, 21 Dec 2011 05:18:41 GMT https://community.sap.com/t5/application-development-and-automation-discussions/authorization-checking-in-bapi/m-p/8448104#M1649249 Former Member 2011-12-21T05:18:41Z https://community.sap.com/t5/application-development-and-automation-discussions/authorization-checking-in-bapi/m-p/8448105#M1649250 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>It depends on where exactly you have placed the authority check.</P><P></P><P>If you have placed in any of the user exits , then yes the same code would be implemented even through BAPI.</P><P></P><P>The other option would be to place the authority check in the Z Program before making a call to the BAPI.</P><P></P><P>Thanks and Regards,</P><P>Sriranjani Chimakurthy.</P></BODY></HTML> Wed, 21 Dec 2011 05:19:29 GMT https://community.sap.com/t5/application-development-and-automation-discussions/authorization-checking-in-bapi/m-p/8448105#M1649250 Former Member 2011-12-21T05:19:29Z https://community.sap.com/t5/application-development-and-automation-discussions/authorization-checking-in-bapi/m-p/8448106#M1649251 <HTML><HEAD></HEAD><BODY><P>Hi Sriranjani,</P><P></P><P>Yes, i added the authorization checking in 'USEREXIT_FIELD_MODIFICATION' in MV45AFZZ but it won't work in BAPI call. Is there anything that i have done wrong in the below codes :- (Thanks)</P><P></P><P> WHEN 'VBAP-MVGR1'.</P><UL><LI level="1" type="ul"><P>Proceed further if user is changing the SO</P></LI></UL><P> IF sy-tcode = 'VA02'.</P><UL><LI level="1" type="ul"><P>Verify if the user has authorization to change 'MVGR1 - Material group 1' field</P></LI></UL><P> AUTHORITY-CHECK OBJECT 'Z_MVGR1'</P><P> ID 'ACTVT' FIELD '02' "Change access</P><P> ID 'ZMVGR1' DUMMY.</P><UL><LI level="1" type="ul"><P>If the user has authorization, open the field for editing</P></LI></UL><P> IF sy-subrc = 0.</P><P> screen-input = '1'.</P><UL><LI level="1" type="ul"><P>If the user does not have authorization, grey off the field and disallow for editing</P></LI></UL><P> ELSE.</P><P> screen-input = '0'.</P><P> ENDIF.</P><P> MODIFY SCREEN.</P><P> ENDIF.</P></BODY></HTML> Wed, 21 Dec 2011 05:59:05 GMT https://community.sap.com/t5/application-development-and-automation-discussions/authorization-checking-in-bapi/m-p/8448106#M1649251 Former Member 2011-12-21T05:59:05Z https://community.sap.com/t5/application-development-and-automation-discussions/authorization-checking-in-bapi/m-p/8448107#M1649252 <HTML><HEAD></HEAD><BODY><P>In your coding change</P><P></P><PRE><CODE>IF sy-tcode = 'VA02'.</CODE></PRE><P></P><P>to</P><P></P><PRE><CODE>IF T180-TRTYP = 'V'.</CODE></PRE><P></P><P>Then your coding will also work with BAPI. Try putting a break point before the If clause and execute the BAPI, you can see it yourself.</P><P></P><P>SAP will set T180-TRTYP = 'H' for create, = 'V' for change and = 'A' for display. </P><P></P><P>T180-TRTYP is a SAP recommended field to be used in user exits to know if the document is being created, changed or displayed</P><P></P><P>If sy-tcode = 'VA02' will not work with BAPI as you are actually not executing transaction VA02.</P><P></P><P>Also just disabling screen fields for input will not have affect on the BAPI call. </P><P></P><P>You would need to ensure it through separate coding</P></BODY></HTML> Wed, 21 Dec 2011 06:07:48 GMT https://community.sap.com/t5/application-development-and-automation-discussions/authorization-checking-in-bapi/m-p/8448107#M1649252 Former Member 2011-12-21T06:07:48Z https://community.sap.com/t5/application-development-and-automation-discussions/authorization-checking-in-bapi/m-p/8448108#M1649253 <HTML><HEAD></HEAD><BODY><P>GK,</P><P>just write the code before the BAPI call, that should do the trick for you.</P></BODY></HTML> Wed, 21 Dec 2011 06:08:16 GMT https://community.sap.com/t5/application-development-and-automation-discussions/authorization-checking-in-bapi/m-p/8448108#M1649253 Former Member 2011-12-21T06:08:16Z https://community.sap.com/t5/application-development-and-automation-discussions/authorization-checking-in-bapi/m-p/8448109#M1649254 <HTML><HEAD></HEAD><BODY><P>Hi Vishnu, thanks for your guidance. I tried your method but it did not work as well. I placed a break-point at the beginning of 'USEREXIT_FIELD_MODIFICATION' in MV45AFZZ. It seems like during the BAPI call, it did not enter this user exit at all.</P></BODY></HTML> Wed, 21 Dec 2011 06:35:09 GMT https://community.sap.com/t5/application-development-and-automation-discussions/authorization-checking-in-bapi/m-p/8448109#M1649254 Former Member 2011-12-21T06:35:09Z https://community.sap.com/t5/application-development-and-automation-discussions/authorization-checking-in-bapi/m-p/8448110#M1649255 <HTML><HEAD></HEAD><BODY><P>Thanks Soumyaprakash ... I think this would be the only solution ....</P></BODY></HTML> Wed, 21 Dec 2011 06:36:09 GMT https://community.sap.com/t5/application-development-and-automation-discussions/authorization-checking-in-bapi/m-p/8448110#M1649255 Former Member 2011-12-21T06:36:09Z