Hi Suba ,

    Hard Coding the User names is not a right approach , you can use set leaf instead of hardcoding ,

Maintain sets in Tcode : GS01

Save and Coding Part is ,

DATA: t_set TYPE TABLE OF rgsb4,
        wa_set TYPE rgsb4.
  DATA: v_check TYPE C VALUE ' '.

  CALL FUNCTION 'G_SET_GET_ALL_VALUES'    

    EXPORTING
      client        = sy-mandt
      setnr         = 'ZTEST1'
      table         = 'USR01'
      class         = '0000'
      fieldname     = 'BNAME'
    TABLES
      set_values    = t_set
    EXCEPTIONS
      set_not_found = 1
      OTHERS        = 2.

  LOOP AT  T_SET INTO WA_SET.
    IF WA_SET-FROM = SY-UNAME .
      v_check = 'X' .
    ENDIF.
  ENDLOOP.

  IF v_check <> 'X'.
YOUR CONDITION

  ELSE.
YOUR CONDITION

  ENDIF.

Hi Suba Reddy,

Please let know where exactly and why you are making use of usernames so that would help in providing the correct solution.

apart from that , inorder to avoid the hardcode text, u can use Text Elements. this will sort out the above error...instead if u want to pick the username dynamically , i suggest u to have a custom table with username and any other common field.

revert back if any issues.

Thanks,

Azhar

Hello ,

Yes hardcoding username is an issue but many people does it.

especially smth like break sdogan...

and the code goes to prod like that

why?

Because the developer wants to debug at prod too to make life easier!!

As life gets easy secuirity is breached for sure!!

How do we stop using the username in your code?

Questions:

Can you assign a auth object to that user only?

if not then

Can you seperate the code for that user only?

if not then

Another approach:

Create a config table where you give 2 columns like username and role etc..

then enter the username in that table, via table maintenance generator

lets say the table name is z_special_users

Then read that config and

do smth like

***Here you can check the role

class zcl_config_loader defnition.

public section:

class-methods: class_constructor.

class-methods: get_role.

endclass.

class zcl_config_loader implementation

method class_constructor.

select * from z_special_users

into table gt_special_users

endmethod.

method get_role.

**return the table

endmethod.

endclass.

and in your code, main program

if zcl_config_loader=>get_role( ) = 'xxxRole   '.

endif..

Hi Suba,

Creating Authorization Objects and Authority-Check is the best approach.

If you dont want to use it and if you are only concerned about EPC error, then replace the username with constatns.

CONSTANTS : c_username type sy-uname value 'USERNAME'.

if sy-uname = C_USERNAME.

do something.

endif.

With this you can pass the EPC check. But still it is not the right appraoch.

Go for Authorization Objects and use Authority Check statement for it is the correct approach.

Dear Suba

1. Create one Authorization Object using the transaction code SU21.

2. Create a role using the transaction code PFCG and assign the Authorization Object to the created role.

3. To whom all users you wish to assign this role, assign these roles using the transaction code SU01.

4. Using the keyword, AUTHORITY CHECK, check whether the current user is authorized to do the particular action in your program. If the check raises sy-subrc <> 0, then raise an error, else continue.

This way you can check the user authorization to do a particular task, without hardcoding the username in the program.

Thanks and Regards,

Rinzy Deena Mathews

Applexus Technologies (P) Ltd.