https://community.sap.com/t5/application-development-and-automation-discussions/authorisation-check/m-p/3659936#M881560 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>Authorization object is a way to verify if the user have permitted activities to the object. </P><P></P><P></P><P>You can create a code simple using the Pattern button, like this:</P><PRE><CODE> AUTHORITY-CHECK OBJECT '/ECRS/WL' ID '/ECRS/RPC' FIELD '__________' ID '/ECRS/POI' FIELD '__________' ID 'ACTVT' FIELD '__________'. </CODE></PRE><P></P></BODY></HTML> Wed, 16 Apr 2008 13:30:38 GMT rodrigo_paisante3 2008-04-16T13:30:38Z https://community.sap.com/t5/application-development-and-automation-discussions/authorisation-check/m-p/3659935#M881559 <HTML><HEAD></HEAD><BODY><P>Hi experts</P><P><STRONG>Can any one explain how authorisation check performs and how can we code and implement</STRONG></P></BODY></HTML> Wed, 16 Apr 2008 13:22:57 GMT https://community.sap.com/t5/application-development-and-automation-discussions/authorisation-check/m-p/3659935#M881559 Former Member 2008-04-16T13:22:57Z https://community.sap.com/t5/application-development-and-automation-discussions/authorisation-check/m-p/3659936#M881560 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>Authorization object is a way to verify if the user have permitted activities to the object. </P><P></P><P></P><P>You can create a code simple using the Pattern button, like this:</P><PRE><CODE> AUTHORITY-CHECK OBJECT '/ECRS/WL' ID '/ECRS/RPC' FIELD '__________' ID '/ECRS/POI' FIELD '__________' ID 'ACTVT' FIELD '__________'. </CODE></PRE><P></P></BODY></HTML> Wed, 16 Apr 2008 13:30:38 GMT https://community.sap.com/t5/application-development-and-automation-discussions/authorisation-check/m-p/3659936#M881560 rodrigo_paisante3 2008-04-16T13:30:38Z https://community.sap.com/t5/application-development-and-automation-discussions/authorisation-check/m-p/3659937#M881561 <HTML><HEAD></HEAD><BODY><P>The authorization check checks the authorization of the user for the authorization Object and it returns the sy-subrc.</P><P></P><P>based on the sy-subrc value you have to make the corresponding coding.</P><P></P><P>Eg,</P><P></P><P> AUTHORITY-CHECK OBJECT var_authobject</P><P> ID 'TCD' FIELD 'VA01'</P><P> ID 'ACTVT' FIELD '*'.</P><P></P><P> IF sy-subrc NE 0.</P><P> MESSAGE 'You are not authorized to view this' type 'E'.</P><P> endif.</P><P></P><P></P><P>you can create your own authorization object using the transaction SU21</P></BODY></HTML> Wed, 16 Apr 2008 13:37:58 GMT https://community.sap.com/t5/application-development-and-automation-discussions/authorisation-check/m-p/3659937#M881561 Former Member 2008-04-16T13:37:58Z https://community.sap.com/t5/application-development-and-automation-discussions/authorisation-check/m-p/3659938#M881562 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>You can create or see the all the authorization objects in transaction SU21.</P><P></P><P>You cna speicfy the fileds and as well as permitted activites for this authorization objects.</P><P></P><P>Please see any of the standard objects.</P><P></P><P>Definition</P><P>Enables you to restrict user access to sales activities within specified sales areas, sales groups, and sales offices.</P><P></P><P>Defined fields</P><P>The authorization object contains seven fields:</P><P></P><P>Activity - Determines which sales activity-related tasks a user may carry out in the specified sales areas, sales group, and sales office. Assign the activities as follows:</P><P> Task Activity </P><P> Create or generate 01 </P><P> Change 02 </P><P> Display 03 </P><P></P><P></P><P>Distribution channel - Specifies the distribution channel of the sales area.</P><P>Division - Specifies the division of the sales area.</P><P>Sales activity type - Specifies the types of sales activity which the user is allowed to process.</P><P>Sales group - Specifies the sales group to which the user belongs.</P><P>Sales office - Specifies the sales office to which the user is assigned.</P><P>Sales organization - Specifies the sales organization of the sales area.</P><P>Note</P><P>A user who is defined as the responsible employee in the partner screen of a sales activity may process the sales activity even though he or she is not authorized with this authorization object. Conversely, if you do not define any authorization objects for users, only those users who are defined in sales activities as partners are authorized to process sales activities.</P><P>If a user does not enter some of the organizational data in a sales activity (for example, the sales office), then the corresponding field in the authorization for the user must be left blank.</P><P>Example</P><P>User A is assigned to both a sales group and a sales office and is allowed to carry out all sales activity-related tasks in one sales area only. User A has the following authorizations:</P><P></P><P>Activity = *</P><P>Distribution channel = 01</P><P>Division = 01</P><P>Sales activity = *</P><P>Sales group = US1</P><P>Sales office = 1000</P><P>Sales organization = US01</P><P>User B is assigned to the same sales group and sales office and is allowed to display sales activities in all sales areas to which sales organization US01 is assigned. User B has the following authorizations:</P><P></P><P>Activity = 03</P><P>Distribution channel = *</P><P>Division = *</P><P>Sales activity type = *</P><P>Sales group = US1</P><P>Sales office = 1000</P><P>Sales organization = US01</P><P></P><P>Reward points if useful</P><P>Regards,</P><P>Sasi</P></BODY></HTML> Wed, 16 Apr 2008 13:39:20 GMT https://community.sap.com/t5/application-development-and-automation-discussions/authorisation-check/m-p/3659938#M881562 Former Member 2008-04-16T13:39:20Z