Community
Application Development and Automation Discussions
Join the discussions or start your own on all things application development, including tools and APIs, programming models, and keeping your skills sharp.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Read only

Authorization object in update task

Go to solution
Former Member

‎2010 Mar 15 5:51 PM

0 Likes
1,059

Hello experts,

I am getting an issue with authorization object in update task. In the message processing program for Purchase Order, we have added an authorization check on M_BEST_WRK. It works fine when dealt online however when the messages are processed in Update Task the authorization object does not give any failures. I also tried adding the transaction ME9F in SU24 for auth object M_BEST_WRK.

Please let me if there is any wok around for this issue.

Thanks,

Ganesh Khumse

1 ACCEPTED SOLUTION
Read only

Go to solution
Former Member

‎2010 Mar 16 12:31 AM

0 Likes
737

Hi,

Please do not check the authorization object in update task. you may need to check the authoration object in the BEFORE_SAVE event.

This statement checks whether authorization is entered in the user master record of the current user or the user specified in user for the authorization object entered in the field auth_obj, and whether this authorization is sufficient for the request specified in the statement. A flat character-type field that contains the name of an authorization object is expected for auth_obj. Without the addition FOR USER, the authorization of the current user is checked.

Cheers,

2 REPLIES 2
Read only

Go to solution
Former Member

‎2010 Mar 16 12:31 AM

0 Likes
738

Hi,

Please do not check the authorization object in update task. you may need to check the authoration object in the BEFORE_SAVE event.

This statement checks whether authorization is entered in the user master record of the current user or the user specified in user for the authorization object entered in the field auth_obj, and whether this authorization is sufficient for the request specified in the statement. A flat character-type field that contains the name of an authorization object is expected for auth_obj. Without the addition FOR USER, the authorization of the current user is checked.

Cheers,

Read only

Go to solution
Former Member
In response to Former Member

‎2010 Mar 17 12:49 PM

0 Likes
737

Thanks for the reply. We did a workaround to solve the issue.

To summerize the issue and solution; its true that SAP bypasses all the authorization checks in update task. This is at a very basic level of SAP so we can not help it. To avoid this failure of authority check we implemnted an OSS notes 1386395 and 529174 so the authorization checks are done in ME9F itself. Now ME9F does not display the un-authorized PO's.

Authority checks updates at all levels are available in service packege 604 and we are at 603 so we had to do an implicit enhancement in the program RM06ENDR_ALV to add the authority check at plant level on the PO as the OSS notes applied provides the solution for header level data. I know this is not the good way to do it but it solved the production issue till we apply the next service packege.

Hope this helps if anyone stuck in the same situation.

Thanks,

Ganesh Khumse