Though we restricted the authorizations of a user to specific cost center data, he is still able to see all data in the query. The steps we followed:
Activated 0COSTCENTER and the 3 special auth. Char. as authorization relevant.
1. Created a user (su01).
2. Created Analysis Authorizations (rsecadmin) - Included 0COSTCENTER, 0TCAACTVT, 0TCAIPROV and 0TCAVALID. 0COSTCENTER was restricted on few char. values and a hierarchy node.
3. Created Role (PFCG) - Included the User, Generated Auth. Profile (SAP_ALL and S_RS_AUTH with the value for BIAUTH - Authorization created in RSECADMIN).
4. User Assignment ((rsecadmin) - Assigned the authorization to the user.
In the query, we created an authorization variable on '0COSTCENTER'. On the selection screen during query execution, when looking up for cost center values for selection, the user is able to see all cost center master data values and not just the authorized ones.