Application Development Discussions
Join the discussions or start your own on all things application development, including tools and APIs, programming models, and keeping your skills sharp.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Authorization object

Former Member

‎04-29-2009 5:41 AM

0 Kudos

Hi,

I have to add authorization to a z transaction in the dialog program.The user should be able to open the transaction only if the value is 'Y' in the database table for the user.Please suggest how should I do it.

2 REPLIES 2

Frank_Buchholz
Advisor
Advisor

‎04-29-2009 12:11 PM

0 Kudos

The [standard authorization concept|http://help.sap.com/saphelp_nw70/helpdata/EN/52/67167f439b11d1896f0000e8322d00/frameset.htm] is based on the ABAP statement [AUTHORITY-CHECK|http://help.sap.com/abapdocu/en/ABAPAUTHORITY-CHECK.htm] and roles.

If you like to use it you would create some customer authorization objects with corresponding authorization fields, use [AUTHORITY-CHECK|http://help.sap.com/abapdocu/en/ABAPAUTHORITY-CHECK.htm] and work with roles to assign authorizations to users.

You describe another approach: "The user should be able to open the transaction only if the value is 'Y' in the database table for the user."

Well, there exist applications for which is the correct technique: If the data already exist than it is ok to check these database entries. (Example: Everyone is allowed to maintain his or her own data.)

However, if an administrator has the task to maintain the permission assignments, than I recommend to go for the standard authorization concept.

Kind regards

Frank Buchholz

Former Member

‎05-04-2009 5:48 PM

0 Kudos

Shashi,

Ask the developer to put an authorization group on the program and then you can restirct it in the user role using S_PROGRAM and specifying the auth group for that program.

Thanks

Khan