cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

CCO Day end closing discard button saves the changes

raveedriaz
Explorer

on ‎08-06-2020 1:01 PM

Hi All,
I have created a user with role of cashier in which he can do the day end closing but in the permissions i have set the Show current cash balance to NO.
So in that case after proceeding from this screen to next and if he want to change something on this screen again then he have to enter admin password for that.

The issue with this is that if he goes back to this screen which i have attached the screenshot of and changes the values to which ever he wants and press the Discard changes button then the values which he has updated will get saved and he will proceed to this screen with updated values

So by doing this he can update the values without any authorization which I think shouldn't be the case.
Let me know if you need any clarification about this scenario

Show replies
Show replies
Answer

Accepted Solutions (0)

Answers (3)

Answers (3)

Arne_Timmermann
Contributor
‎08-11-2020 2:11 PM

Hi Raveed, this sounds like a bug, I would suggest to open an incident for the SAP support to get this fixed.

Show replies
Show replies
gunther_sandtner2
Advisor
Advisor
‎08-21-2020 12:28 PM
0 Kudos

Hello,

I agree with Arne. This is most likely a bug. Please report it as an incident to us.

Kind regards,

Gunther

gunther_sandtner2
Advisor
Advisor
‎08-27-2020 11:18 AM
0 Kudos

Hello Raveed,

This bug will be fixed. I'll inform you when the fix becomes available.

Best regards,

Gunther

gunther_sandtner2
Advisor
Advisor
‎09-21-2020 11:55 AM
0 Kudos

Hello raveedriaz,

The fix is now also contained in 2.0 FP09. See release note 2963546.

Fix: Remove broken discard changes button.

Symptom: Removed a button called 'discard changes'. This button was only shown in a specific scenario and imposed a security risk so it has been removed

Prerequsite:

  • User of role Cashier
  • Permission Show day-end closing screen = Yes
  • Permission Show current cash balance = No

Best regards,

Gunther

Show replies
Show replies
gunther_sandtner2
Advisor
Advisor
‎08-31-2020 4:37 PM
0 Kudos

Hello raveedriaz,

This is fixed in SAP Customer Checkout Feature Pack 10 (planned release in October 2020).

In FP10 the Discard changes button will not be available to a such a user during day-end closing.

Kind regards,

Gunther

Show replies
Show replies
Ask a Question