https://community.sap.com/t5/application-development-and-automation-discussions/authentication-or-security-checks-for-abap-programs/m-p/2188324#M466277 <HTML><HEAD></HEAD><BODY><P>simple way is :</P><P></P><P>create ztable in which u can maintain user id list.</P><P></P><P></P><P>so in every program u have to add ths validations like this </P><P></P><P>select * from zuserid where userid = sy-uname.</P><P>if sy-subrc ne 0.</P><P>message " not authorizaed to execute this report.</P><P>endif.</P><P></P><P>Regards</P><P>Prabhu</P></BODY></HTML> Tue, 24 Apr 2007 06:43:30 GMT Former Member 2007-04-24T06:43:30Z https://community.sap.com/t5/application-development-and-automation-discussions/authentication-or-security-checks-for-abap-programs/m-p/2188323#M466276 <HTML><HEAD></HEAD><BODY><P>Dear experts,</P><P></P><P> Please tell me where do we give the authentication or security checks to our ABAP programs and how do we do that. ( Do not allow all to execute our developed programs).</P><P></P><P>Regards,</P><P>Maanasa</P></BODY></HTML> Tue, 24 Apr 2007 06:37:09 GMT https://community.sap.com/t5/application-development-and-automation-discussions/authentication-or-security-checks-for-abap-programs/m-p/2188323#M466276 Former Member 2007-04-24T06:37:09Z https://community.sap.com/t5/application-development-and-automation-discussions/authentication-or-security-checks-for-abap-programs/m-p/2188324#M466277 <HTML><HEAD></HEAD><BODY><P>simple way is :</P><P></P><P>create ztable in which u can maintain user id list.</P><P></P><P></P><P>so in every program u have to add ths validations like this </P><P></P><P>select * from zuserid where userid = sy-uname.</P><P>if sy-subrc ne 0.</P><P>message " not authorizaed to execute this report.</P><P>endif.</P><P></P><P>Regards</P><P>Prabhu</P></BODY></HTML> Tue, 24 Apr 2007 06:43:30 GMT https://community.sap.com/t5/application-development-and-automation-discussions/authentication-or-security-checks-for-abap-programs/m-p/2188324#M466277 Former Member 2007-04-24T06:43:30Z https://community.sap.com/t5/application-development-and-automation-discussions/authentication-or-security-checks-for-abap-programs/m-p/2188325#M466278 <HTML><HEAD></HEAD><BODY><P>If you know the authorization group u can use the following ways.</P><P></P><P>1. In the Attributes u can specify the authorization gourp name</P><P></P><P>2. AT SELECTION-SCREEN</P><P>AUTHORITY-CHECK OBJECT 'Z_TABU_DIS'</P><P> ID 'ACTVT' FIELD '03'</P><P> ID 'CUSTTYPE' FIELD v_class</P><P> ID 'TABLENAME' FIELD p_dbtble.</P><P></P><P> CASE SY-SUBRC.</P><P></P><P> WHEN 0.</P><P></P><P></P><P> WHEN OTHERS.</P><UL><UL><UL><LI level="3" type="ul"><P>Error message</P></LI></UL></UL></UL><P> message I419(MO).</P><P> STOP.</P><P> ENDCASE.</P></BODY></HTML> Tue, 24 Apr 2007 06:45:21 GMT https://community.sap.com/t5/application-development-and-automation-discussions/authentication-or-security-checks-for-abap-programs/m-p/2188325#M466278 Former Member 2007-04-24T06:45:21Z https://community.sap.com/t5/application-development-and-automation-discussions/authentication-or-security-checks-for-abap-programs/m-p/2188326#M466279 <HTML><HEAD></HEAD><BODY><P>Hai Maaasa,</P><P> Before executing the program,u can give authentication so that particular user can execute it.</P><P></P><P>before executing it, u can check the user by,</P><P></P><P>if SY-UNAME = 'SMITH'.</P><P> &lt;Execute Program&gt;.</P><P>Else.</P><P> WRITE : 'U Don't have the Rights to Execute this Program'.</P><P>Endif.</P></BODY></HTML> Tue, 24 Apr 2007 06:45:29 GMT https://community.sap.com/t5/application-development-and-automation-discussions/authentication-or-security-checks-for-abap-programs/m-p/2188326#M466279 Former Member 2007-04-24T06:45:29Z https://community.sap.com/t5/application-development-and-automation-discussions/authentication-or-security-checks-for-abap-programs/m-p/2188327#M466280 <HTML><HEAD></HEAD><BODY><P>Hi Maanasa,</P><P></P><P>You can write a piece of code in your program which first checks the user ID (SY-UNAME) of the person executing the code and then allows further processing. For this you can create an authorization object (SU21) and assign the users you want to allow access to this object. </P><P></P><P>Hope this helps!</P><P></P><P>Regards,</P><P>Saurabh</P></BODY></HTML> Tue, 24 Apr 2007 06:46:13 GMT https://community.sap.com/t5/application-development-and-automation-discussions/authentication-or-security-checks-for-abap-programs/m-p/2188327#M466280 Former Member 2007-04-24T06:46:13Z https://community.sap.com/t5/application-development-and-automation-discussions/authentication-or-security-checks-for-abap-programs/m-p/2188328#M466281 <HTML><HEAD></HEAD><BODY><P>It depends on what exactly you want to control. However, most important is that access to SE38, SA38 etc should be taken away from all business users and all programs should be assigned to transaction code. The object S_TCODE controls automatically access to transaction codes. There is a parameter "Authorization Group" in the program attributes. In this field, you can enter the name of a program group. This allows you to group different programs together for authorization checks. The group name is a field of the two authorization objects S_DEVELOP (program development and program execution) and S_PROGRAM (program maintenance). Thus, you can assign authorizations to users according to program groups.</P><P>If want to control access to business data in your program you must code it using 'AUTHORITY-CHECK' statement specifing an appropriate object.</P></BODY></HTML> Tue, 24 Apr 2007 06:46:45 GMT https://community.sap.com/t5/application-development-and-automation-discussions/authentication-or-security-checks-for-abap-programs/m-p/2188328#M466281 Former Member 2007-04-24T06:46:45Z