Application Development Discussions
Join the discussions or start your own on all things application development, including tools and APIs, programming models, and keeping your skills sharp.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

authorization empty in PFCG

Former Member

‎08-19-2007 4:38 AM

0 Kudos

i was reying to restrict dipaly access in my display role, in some cases actvt auth obj is pulling only create , generate.. inthis case i was inactivating that , if i keep it as empty with out selecting any restriction.. execute , change , genereating etc,.. with out tick marking unchecked all and saved. in that case what happens ? am not giving dummy " " does the user still get access ? please suggest

thanks

SR

2 REPLIES 2

Former Member

‎08-19-2007 1:38 PM

0 Kudos

do not empty the activity value, only give 03 (display to all objects)

Former Member

‎08-19-2007 3:12 PM

0 Kudos

Hi Raj,

To answer your question, if you deactivate the object how will it effect the authorizations.

It really depends on the transaction, if the transaction (source code) checks for the object and it is deactivated then it will fail. If the object is checked with certain fields specified but others not, then an unspecified field can have any entry in the Role/profile.

Take a look at SU24 against a transaction and do some tests, you can also look at the transaction source code and directly see the object being checked and its fields; look for AUTHORITY-CHECK.

I hope this helps.

Regards

Ashley