https://community.sap.com/t5/application-development-and-automation-discussions/authorization-check/m-p/3969870#M948229 <HTML><HEAD></HEAD><BODY><P>Hi Cosmos,</P><P></P><P>To check the authorization of the user of an ABAP program, use the AUTHORITY-CHECK statement: </P><P></P><P>AUTHORITY-CHECK OBJECT '&lt;object&gt;'</P><P> ID '&lt;name1&gt;' FIELD &lt;f1&gt; </P><P> ID '&lt;name2&gt;' FIELD &lt;f2&gt; </P><P> .............</P><P> ID '&lt;name10&gt;' FIELD &lt;f10&gt;.</P><P></P><P>&lt;object&gt; is the name of the object that you want to check. You must list the names (&lt;name1&gt;, &lt;name2&gt; ...) of all authorization fields that occur in &lt;object&gt;. You can enter the values &lt;f 1 &gt;, &lt;f 2 &gt;.... for which the authorization is to be checked either as variables or as literals. The AUTHORITY-CHECK statement checks the useru2019s profile for the listed object, to see whether the user has authorization for all values of &lt;f&gt;. Then, and only then, is SY-SUBRC set to 0. You can avoid checking a field by replacing FIELD &lt;f&gt; with DUMMY. You can only evaluate the result of the authorization check by checking the contents of SY-SUBRC. For a list of the possible return values and further information, see the keyword documentation for the AUTHORITY-CHECK statement. For further general information about the SAP authorization concept, refer to Users and Authorizations.</P><P></P><P>SELECT * FROM SPFLI.</P><P> AUTHORITY-CHECK OBJECT 'F_SPFLI'</P><P> ID 'ACTVT' FIELD '02'</P><P> ID 'NAME' FIELD SPFLI-CARRID</P><P> ID 'CITY' DUMMY.</P><P> IF SY-SUBRC NE 0. EXIT. ENDIF.</P><P>ENDSELECT.</P><P></P><P>If the user has the following authorizations for F_SPFLI:</P><P>ACTVT 01-03, NAME AA-LH, CITY none,</P><P>and the value of SPFLI-CARRID is not between "AA" and "LH", the authorization check terminates the SELECT loop.</P><P></P><P><EM><U>I think you have already gone through this below links:</U></EM></P><P></P><P><A href="http://help.sap.com/saphelp_nw04/helpdata/en/9f/dbaccb35c111d1829f0000e829fbfe/content.htm" target="test_blank">http://help.sap.com/saphelp_nw04/helpdata/en/9f/dbaccb35c111d1829f0000e829fbfe/content.htm</A></P><P><A href="http://abapprogramming.blogspot.com/2008/03/abap-synteax-for-authority-check.html" target="test_blank">http://abapprogramming.blogspot.com/2008/03/abap-synteax-for-authority-check.html</A></P><P><A href="http://sap.ionelburlacu.ro/sap0/abap018.htm" target="test_blank">http://sap.ionelburlacu.ro/sap0/abap018.htm</A></P><P></P><P></P><P>Regards</P><P>Adil</P></BODY></HTML> Thu, 12 Jun 2008 16:24:14 GMT Former Member 2008-06-12T16:24:14Z https://community.sap.com/t5/application-development-and-automation-discussions/authorization-check/m-p/3969867#M948226 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>i do Enhancement for BW and my customer tell me that he</P><P>wont to check if user have authorization to watch the data.</P><P></P><P>1. i can do that in Enhancement ?</P><P>2. what i have to check ,</P><P></P><P>i see the code :</P><P></P><P>AUTHORITY-CHECK OBJECT object</P><P>ID name1 FIELD f1</P><P>ID name2 FIELD f2</P><P>...</P><P>ID name10 FIELD f10.</P><P></P><P>what i have to put in object and what in name1 &amp; and name2....</P><P></P><P>Regards</P></BODY></HTML> Thu, 12 Jun 2008 16:11:05 GMT https://community.sap.com/t5/application-development-and-automation-discussions/authorization-check/m-p/3969867#M948226 Former Member 2008-06-12T16:11:05Z https://community.sap.com/t5/application-development-and-automation-discussions/authorization-check/m-p/3969868#M948227 <HTML><HEAD></HEAD><BODY><P>object is the name of the authorization object.</P><P>name1, name2, ... are the fields of the authorization object.</P><P>f1, f2, ... are possible values for authorization.</P><P></P><P>The DUMMY parameter indicates that there is no need to verify that field.</P><P>If SY-SUBRC = 0 authorized user</P><P>If SY-SUBRC &lt;&gt; 0 unauthorized users</P></BODY></HTML> Thu, 12 Jun 2008 16:17:48 GMT https://community.sap.com/t5/application-development-and-automation-discussions/authorization-check/m-p/3969868#M948227 Former Member 2008-06-12T16:17:48Z https://community.sap.com/t5/application-development-and-automation-discussions/authorization-check/m-p/3969869#M948228 <HTML><HEAD></HEAD><BODY><P>Is there a transaction code associated with the process that you want to do the authority check on?</P></BODY></HTML> Thu, 12 Jun 2008 16:21:40 GMT https://community.sap.com/t5/application-development-and-automation-discussions/authorization-check/m-p/3969869#M948228 Former Member 2008-06-12T16:21:40Z https://community.sap.com/t5/application-development-and-automation-discussions/authorization-check/m-p/3969870#M948229 <HTML><HEAD></HEAD><BODY><P>Hi Cosmos,</P><P></P><P>To check the authorization of the user of an ABAP program, use the AUTHORITY-CHECK statement: </P><P></P><P>AUTHORITY-CHECK OBJECT '&lt;object&gt;'</P><P> ID '&lt;name1&gt;' FIELD &lt;f1&gt; </P><P> ID '&lt;name2&gt;' FIELD &lt;f2&gt; </P><P> .............</P><P> ID '&lt;name10&gt;' FIELD &lt;f10&gt;.</P><P></P><P>&lt;object&gt; is the name of the object that you want to check. You must list the names (&lt;name1&gt;, &lt;name2&gt; ...) of all authorization fields that occur in &lt;object&gt;. You can enter the values &lt;f 1 &gt;, &lt;f 2 &gt;.... for which the authorization is to be checked either as variables or as literals. The AUTHORITY-CHECK statement checks the useru2019s profile for the listed object, to see whether the user has authorization for all values of &lt;f&gt;. Then, and only then, is SY-SUBRC set to 0. You can avoid checking a field by replacing FIELD &lt;f&gt; with DUMMY. You can only evaluate the result of the authorization check by checking the contents of SY-SUBRC. For a list of the possible return values and further information, see the keyword documentation for the AUTHORITY-CHECK statement. For further general information about the SAP authorization concept, refer to Users and Authorizations.</P><P></P><P>SELECT * FROM SPFLI.</P><P> AUTHORITY-CHECK OBJECT 'F_SPFLI'</P><P> ID 'ACTVT' FIELD '02'</P><P> ID 'NAME' FIELD SPFLI-CARRID</P><P> ID 'CITY' DUMMY.</P><P> IF SY-SUBRC NE 0. EXIT. ENDIF.</P><P>ENDSELECT.</P><P></P><P>If the user has the following authorizations for F_SPFLI:</P><P>ACTVT 01-03, NAME AA-LH, CITY none,</P><P>and the value of SPFLI-CARRID is not between "AA" and "LH", the authorization check terminates the SELECT loop.</P><P></P><P><EM><U>I think you have already gone through this below links:</U></EM></P><P></P><P><A href="http://help.sap.com/saphelp_nw04/helpdata/en/9f/dbaccb35c111d1829f0000e829fbfe/content.htm" target="test_blank">http://help.sap.com/saphelp_nw04/helpdata/en/9f/dbaccb35c111d1829f0000e829fbfe/content.htm</A></P><P><A href="http://abapprogramming.blogspot.com/2008/03/abap-synteax-for-authority-check.html" target="test_blank">http://abapprogramming.blogspot.com/2008/03/abap-synteax-for-authority-check.html</A></P><P><A href="http://sap.ionelburlacu.ro/sap0/abap018.htm" target="test_blank">http://sap.ionelburlacu.ro/sap0/abap018.htm</A></P><P></P><P></P><P>Regards</P><P>Adil</P></BODY></HTML> Thu, 12 Jun 2008 16:24:14 GMT https://community.sap.com/t5/application-development-and-automation-discussions/authorization-check/m-p/3969870#M948229 Former Member 2008-06-12T16:24:14Z https://community.sap.com/t5/application-development-and-automation-discussions/authorization-check/m-p/3969871#M948230 <HTML><HEAD></HEAD><BODY><P>Hi Alvaro Giancarl,</P><P></P><P>thanks,</P><P> u think i can do it in user-exit, i have to do it for bw system?</P><P></P><P>Regards</P></BODY></HTML> Thu, 12 Jun 2008 17:47:13 GMT https://community.sap.com/t5/application-development-and-automation-discussions/authorization-check/m-p/3969871#M948230 Former Member 2008-06-12T17:47:13Z https://community.sap.com/t5/application-development-and-automation-discussions/authorization-check/m-p/3969872#M948231 <HTML><HEAD></HEAD><BODY><P>Hi Syed Abdul Adil ,</P><P></P><P>thanks ,</P><P>i understand that i have to put object name in :</P><P>AUTHORITY-CHECK OBJECT '&lt;object&gt;'</P><P></P><P>but what i have to put in:</P><P>ID '&lt;name1&gt;' FIELD &lt;f1&gt;</P><P>ID '&lt;name2&gt;' FIELD &lt;f2&gt; ?</P><P></P><P>where i can find it?</P><P></P><P>Best Regards</P></BODY></HTML> Thu, 12 Jun 2008 17:58:25 GMT https://community.sap.com/t5/application-development-and-automation-discussions/authorization-check/m-p/3969872#M948231 Former Member 2008-06-12T17:58:25Z https://community.sap.com/t5/application-development-and-automation-discussions/authorization-check/m-p/3969873#M948232 <HTML><HEAD></HEAD><BODY><P>Table TSTCA holds the information for transactions.</P></BODY></HTML> Thu, 12 Jun 2008 18:03:34 GMT https://community.sap.com/t5/application-development-and-automation-discussions/authorization-check/m-p/3969873#M948232 Former Member 2008-06-12T18:03:34Z