https://community.sap.com/t5/application-development-and-automation-discussions/abap-code-to-authenticate-users/m-p/997062#M75519 <HTML><HEAD></HEAD><BODY><P>I think you can set up a remote enabled FM that logs on a user anonymously and also passes the userid of the user. You would have to set up the destination in SM59. The FM would then have to look at whatever tables you need to need to verify the user yourself.</P><P></P><P>Rob</P></BODY></HTML> Tue, 27 Sep 2005 16:13:02 GMT Former Member 2005-09-27T16:13:02Z https://community.sap.com/t5/application-development-and-automation-discussions/abap-code-to-authenticate-users/m-p/997056#M75513 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>How can I code a ABAP program/function which will authenticate a user based only on their user id? Do not want to use their password.</P><P></P><P>I want the entire authentication process to happen in the ABAP code.</P><P></P><P>Any ideas?</P><P></P><P>Thanks,</P><P>Audrey</P></BODY></HTML> Mon, 26 Sep 2005 23:22:46 GMT https://community.sap.com/t5/application-development-and-automation-discussions/abap-code-to-authenticate-users/m-p/997056#M75513 Former Member 2005-09-26T23:22:46Z https://community.sap.com/t5/application-development-and-automation-discussions/abap-code-to-authenticate-users/m-p/997057#M75514 <HTML><HEAD></HEAD><BODY><P>Go to transaction code SE37 and do a search on susr_user*</P><P>You may find a function module which may solve your purpose.</P><P></P><P>Thanks</P></BODY></HTML> Mon, 26 Sep 2005 23:46:17 GMT https://community.sap.com/t5/application-development-and-automation-discussions/abap-code-to-authenticate-users/m-p/997057#M75514 Former Member 2005-09-26T23:46:17Z https://community.sap.com/t5/application-development-and-automation-discussions/abap-code-to-authenticate-users/m-p/997058#M75515 <HTML><HEAD></HEAD><BODY><P>Your requirement is not clear. The user id of a user running an ABAP will be there in SY-UNAME .</P><P></P><P>Authority checks command AUTHORITY-CHECK automatically checks the authorization of the user running the report.</P><P>You can put your security check using above command .</P><P></P><P>Cheers</P></BODY></HTML> Tue, 27 Sep 2005 03:33:56 GMT https://community.sap.com/t5/application-development-and-automation-discussions/abap-code-to-authenticate-users/m-p/997058#M75515 Former Member 2005-09-27T03:33:56Z https://community.sap.com/t5/application-development-and-automation-discussions/abap-code-to-authenticate-users/m-p/997059#M75516 <HTML><HEAD></HEAD><BODY><P>Hi Audrey,</P><P>SAP uses authorization objects for authority checks.</P><P>You need to create these objects in SAP and check for the authorizations in ur program for this object you created by using the abap statement authority-check.</P><P></P><P>the auth object can have various parameters, based on which auth is checked. Read sap docu for more info.</P><P></P><P>Remember 2 reward poitns and close this thread if ur Q is answered.</P><P></P><P>Rgds,</P><P>Prash&gt;</P></BODY></HTML> Tue, 27 Sep 2005 03:56:38 GMT https://community.sap.com/t5/application-development-and-automation-discussions/abap-code-to-authenticate-users/m-p/997059#M75516 Former Member 2005-09-27T03:56:38Z https://community.sap.com/t5/application-development-and-automation-discussions/abap-code-to-authenticate-users/m-p/997060#M75517 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>To check the authorization of the user of an ABAP program, use the AUTHORITY-CHECK statement: </P><P></P><P>AUTHORITY-CHECK OBJECT '&lt;object&gt;'</P><P> ID '&lt;name1&gt;' FIELD &lt;f1&gt; </P><P> ID '&lt;name2&gt;' FIELD &lt;f2&gt; </P><P> .............</P><P> ID '&lt;name10&gt;' FIELD &lt;f10&gt;.</P><P></P><P>&lt;object&gt; is the name of the object that you want to check. You must list the names (&lt;name1&gt;, &lt;name2&gt; ...) of all authorization fields that occur in &lt;object&gt;. You can enter the values &lt;f 1 &gt;, &lt;f 2 &gt;.... for which the authorization is to be checked either as variables or as literals. The AUTHORITY-CHECK statement checks the user&#146;s profile for the listed object, to see whether the user has authorization for all values of &lt;f&gt;. Then, and only then, is SY-SUBRC set to 0. You can avoid checking a field by replacing FIELD &lt;f&gt; with DUMMY. You can only evaluate the result of the authorization check by checking the contents of SY-SUBRC. For a list of the possible return values and further information, see the keyword documentation for the AUTHORITY-CHECK statement. For further general information about the SAP authorization concept, refer to Users and Authorizations.</P><P></P><P></P><P></P><P>There is an authorization object called F_SPFLI. It contains the fields ACTVT, NAME, and CITY. </P><P></P><P>SELECT * FROM SPFLI.</P><P> AUTHORITY-CHECK OBJECT 'F_SPFLI'</P><P> ID 'ACTVT' FIELD '02'</P><P> ID 'NAME' FIELD SPFLI-CARRID</P><P> ID 'CITY' DUMMY.</P><P> IF SY-SUBRC NE 0. EXIT. ENDIF.</P><P>ENDSELECT.</P><P></P><P>If the user has the following authorizations for F_SPFLI:</P><P></P><P>ACTVT 01-03, NAME AA-LH, CITY none,</P><P></P><P>and the value of SPFLI-CARRID is not between "AA" and "LH", the authorization check terminates the SELECT loop.</P><P></P><P> Hope it helps u.</P><P></P><P>Thanks&amp;Regards,</P><P>Ruthra.R</P></BODY></HTML> Tue, 27 Sep 2005 04:01:52 GMT https://community.sap.com/t5/application-development-and-automation-discussions/abap-code-to-authenticate-users/m-p/997060#M75517 Former Member 2005-09-27T04:01:52Z https://community.sap.com/t5/application-development-and-automation-discussions/abap-code-to-authenticate-users/m-p/997061#M75518 <HTML><HEAD></HEAD><BODY><P>I basically want to the ABAP program to login the user based only on the user name.</P><P></P><P>I'm writing a custom SSO solution because our 3rd party application doesn't fit into any of the traditional SSO models.</P><P></P><P>Is it possible to login a user using ABAP?</P></BODY></HTML> Tue, 27 Sep 2005 15:31:54 GMT https://community.sap.com/t5/application-development-and-automation-discussions/abap-code-to-authenticate-users/m-p/997061#M75518 Former Member 2005-09-27T15:31:54Z https://community.sap.com/t5/application-development-and-automation-discussions/abap-code-to-authenticate-users/m-p/997062#M75519 <HTML><HEAD></HEAD><BODY><P>I think you can set up a remote enabled FM that logs on a user anonymously and also passes the userid of the user. You would have to set up the destination in SM59. The FM would then have to look at whatever tables you need to need to verify the user yourself.</P><P></P><P>Rob</P></BODY></HTML> Tue, 27 Sep 2005 16:13:02 GMT https://community.sap.com/t5/application-development-and-automation-discussions/abap-code-to-authenticate-users/m-p/997062#M75519 Former Member 2005-09-27T16:13:02Z