topic Re: Authorization in Application Development and Automation Discussions

Authorization

Former Member — Sat, 16 Feb 2008 05:36:28 GMT

Hi Gurus,

My Functional Guy has created a roles in which he has specified plants.

example.

Role 1 -

> plants 1000 to 1300.

Role 2 -

> plants 1300 to 1500.

and so on.

requests the basis to assign Role1 to user A.

assign Role 2 to user B.

I have writen a Yreport which gives some details about the Plant.

When user A runs the report it must allow him run it only for Plant 1000 to 1300.

similarly when user B runs the same report it must alow him run only for the plant 1300 to 1500.

if User A trys to execute the report for other plants. it must through error message as not authorised to run for plant---.

tomorrow if the functional consultant wishes to provide authorisation for the user A to execute the report for plant 1000 to 1500. simply he will request the basis to assign the Role2 to user A.

Hope you can understand my situation.

my Requierment is to have a authority check against the Plant provided in the Role of the user.

Please Advise, its very urgent

Points Will be rewarded for all usefull replys

regards

Chandrra

Re: Authorization

Former Member — Mon, 18 Feb 2008 07:20:50 GMT

Hi,

You can use the authorization object M_MATE_WRK for this purpose.


AUTHORITY-CHECK OBJECT 'M_MATE_WRK'
  ID 'ACTVT' FIELD '03'   "Display
  ID 'WERKS' FIELD l_plant.

IF sy-subrc NE 0.
  "Not authorised
ENDIF.

Check the help for syntax AUTHORITY-CHECK OBJECT for more detail. You can also double click at the M_MATE_WRK for more detail on the authorization object. Basically all authorization object is maintained through SU21.

Regards,

Teddy

Re: Authorization

Former Member — Mon, 18 Feb 2008 07:26:03 GMT

Pass the plant to the authorizatio created and if you have multiple plants then pass all to authority check if they are not within the set then remove it from the list and update the same into the existing itab

Regards

Shiva