on 03-05-2021 8:01 AM
Hi ankit.chauhan1 ,
Environment SBO10FP2011 MSSQL
Just checking if this is by design. - but this doesn't looks right.
On my SBODemo, I have user 'A001' and no SAP license is assigned to this user.
With this user I can login ServiceLayer, and perform CRUD operations on items, businesspartners.
Is this correct?
Regards
Edy
Dear edy.simon,
For Login into Service Layer, you just need a valid SAP Business One User. No checks are done at all.
About accessing all the Business Objects, this will depend on the User’s permissions/authorizations.
For example:
User “alex” is a Super User, will have the access to all the Business Objects because it will be having Full Authorizations.
User “alex” is not a Super User and has No Authorization for Sales Orders, then the following response will be returned by the Service Layer for “alex”:
GET /b1s/v1/Orders
{
"error": {
"code": -3000,
"message": {
"lang": "en-us",
"value": "The logged-on user does not have permission to use this object."
}
}
}
Hope it helps!
Kind regards,
ANKIT CHAUHAN
SAP Business One Support
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi ankit.chauhan1 ,
Does this mean that Service Layer users do not need a license in SAP?
We can create an apps which consume this for our client without having them to have a valid license?
Sounds too good to be true 🙂
If it is, is there any plan in SAP Roadmap to restrict this in the future? I would not want to over promise my clients.
In such case, Authorization 'Disable di api permission check' is very important then.
Giving this authorization will allow this user to be a SuperUser holding Professional License without actually holding any license.
Regards
Edy
User | Count |
---|---|
87 | |
7 | |
6 | |
4 | |
3 | |
3 | |
3 | |
3 | |
3 | |
3 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.