Skip to Content
0
Former Member
Sep 08, 2011 at 06:17 AM

Company code authority check

509 Views

Hi

we have created ZTTL01 table maintenance view. Should not allow unauthorized company code to update/create or display.

I searched thru forums and collected below points. but could not test it successfully.

Authorization object (Z_XXX_BUK) was created.But <Permitted activities> Button is not available in display authorization object(SU21) to see what are the activities are permitted.

In su01 for my user no roles or profiles are defined.

To do

Trying to write below code in PBO and PAI flow logic of ZCHECK_BUK table for screen 01

PBO & PAI
*First statement
Module Authorictycheck.

module Authoritycheck
  LOOP AT EXTRACT.
    AUTHORITY-CHECK OBJECT 'ZCHECK_BUK'
                        ID 'ACTVT' FIELD '01,02,03'
                        ID 'BUKRS' FIELD ZTTL01-BUKRS.
    IF sy-subrc <> 0.
      MESSAGE e000(zrpt) WITH 'You do not have the authorization to'
    EXIT.                          'access Bukrs'extract-bukrs.
    ENDIF.
  ENDLOOP.
endmodule

Can i use above code in PBO and PAI to check change of company code?

I am sharing role and profile created by other user, which allows only company code 'A10'.

How to test this now?

se11->Utilities->table contents create should not allow me to input A11 or other company codes? pls confirm.

Regards

Chandra