on 11-25-2021 3:31 AM
In the fiori launchpad search, we are looking into restricting search objects by the user role.
I did not find enough help on this topic.
Following the blog
To achieve this, we need to identify the search connectors from apps library, find CDS views , modify auth objects / create custom SAP_ESH_SEARCH for each user role.
This process does not seem straight forward, as we usually need very few tiles from the standard roles.
Please advise what is the standard practice for such implementations.
The process is fairly straightforward IMHO, you just need to add the S_ESH_CONN authorization object in the corresponding backend role(s) of the users for which you need to segregate the search connector entries, and add only the required values in the Search Connector ID and Template Name fields.'
For e.g., if user A needs to see only Accounting Document in the search connector list in the FLP, then the user's backend role must contain the authorization object S_ESH_CONN with Search Connector ID <SYSTEMID>~ACCT_DOC_LINEITEM_H only and Template Name ACCT_DOC_LINEITEM_H only; whereas if user B needs to see only Purchase Order in the search connector list in the FLP, then the user's backend role must contain the authorization object S_ESH_CONN with Search Connector ID <SYSTEMID>~PURCHASE_ORDER_H only and Template Name PURCHASE_ORDER_H. With this role configuration, we have seen the search connector visibility restricted as per the requirement in our FLP.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
What we have followed in our project is, simply create the required number of backend roles and then add the search connector IDs and Template Names for the individual fact sheet apps based on the search model values given under the Search Connector section in the Fiori Apps Library.
User | Count |
---|---|
92 | |
11 | |
10 | |
9 | |
9 | |
7 | |
6 | |
5 | |
4 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.