-
Products and Technology
By Category
-
Groups
Activity Groups
Industry Groups
Influence and Feedback Groups
Interest Groups
Location Groups
Customer Only Groups
- Developers
- Partners
- Events
- Help Center
- Topic Pages
-
Explore SAP
Products
Learning and Support
-
- Products and Technology
- Groups
- Developers
- Partners
- Events
- Help Center
- Topic Pages
-
Explore SAP
- Explore SAP
-
Products
- Products
- SAP Business Suite
- Artificial Intelligence
- Business applications
- Data and analytics
- Technology Platform
- Financial Management
- Spend Management
- Supply Chain Management
- Human Capital Management
- Customer Experience
- SAP Business Network
- View products A-Z
- View industries
- Try SAP
- Partners
- Services
- Learning and Support
- About
- SAP Community
- Groups
- Interest Groups
- Application Development and Automation
- Discussions
- Re: Authorization Object - Checks
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
Authorization Object - Checks
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎2010 Apr 16 11:27 AM
- SAP Managed Tags
- ABAP Development
Hello Experts,
We make use of Authority checks in our applications which require User authorization .
For example Sales application makes use of Standard authorization object 'V_VBAK_VKO' .
AUTHORITY-CHECK OBJECT 'V_VBAK_VKO'
ID 'VKORG' FIELD VBAK-VKORG
ID 'VTWEG' FIELD VBAK-VTWEG
ID 'SPART' FIELD VBAK-SPART
ID 'ACTVT' FIELD DA_ACTVT.
The above check is a combination of Business fields like Sales org(VBAK-VKORG) etc and Type of a Activity (DA_ACTVT)
for example '01' for create and '02' for change .
My requirement is to have pure activity based check .
Can we use the same check without Business fields and have only the Activity type . for example
AUTHORITY-CHECK OBJECT 'ZOBJ'
ID 'ACTVT' FIELD '02'.
Syntactically seems to correct .
Is this a correct usage ?
Thanks and Regards,
Ravish.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎2010 Apr 16 11:31 AM
- SAP Managed Tags
- ABAP Development
Hi,
Ya u can do do, but its not a good option atleast one field u should maintain in Authorization check.
e.g.
AUTHORITY-CHECK OBJECT 'ZOBJ'
ID 'VKORG' FIELD wa_VBAK-VKORG
ID 'ACTVT' FIELD '02'.
But there is no harm w/o field also u can create.
Regards
Arbind
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎2010 Apr 16 11:35 AM
- SAP Managed Tags
- ABAP Development
Thanks Arbind for the Inputs ,
The reason for this requirement is to avoid Users from Viewing certains Tabs in an application which they are not authorized to , this kind of requirement is not dependent on any Business fields .
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎2010 Apr 16 11:42 AM
- SAP Managed Tags
- ABAP Development
Hi,
Than no need you can go forward.
Kindly close the thread, if the issue is solved.
Regards
Arbind
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎2010 Apr 16 11:45 AM
- SAP Managed Tags
- ABAP Development
I suggest you check both the standard authorization object for the relevant organizational criteria and additionally your custom authorization object in your application.
Make sure that the user roles are maintained accordingly.
Thomas
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎2010 Apr 16 11:45 AM
- SAP Managed Tags
- ABAP Development
>
> The reason for this requirement is to avoid Users from Viewing certains Tabs in an application which they are not authorized to , this kind of requirement is not dependent on any Business fields .
If you say "certain tabs" then i assume the check is dependent on the tab you are trying to access
Bluesky