How to set up Authorization Check
First step: creating authorization field
T-code: SU20
Second step: creating the authorization objects
T-Code: SU21
Third step: To check whether authorization objects exists in authorization field.
Fourth step: Adding the ‘Z_CARRNAME’ authorization object into the authorizations of role which belongs to corresponding user.
T-Code: PFCG
Here we use ‘ABAPUSER’ to create the authorization objects, so we add the ‘Z_CARRNAME’ authorization object into role which belong to ‘ABAPUSER’
Fifth step: creating the program ‘Z_AUTHORITY_CHECK’ to test.
*&---------------------------------------------------------------------*
*& Report Z_AUTHORITY_CHECK
*&
*&---------------------------------------------------------------------*
*& Author: James Zeng
*&
*&---------------------------------------------------------------------*
REPORT Z_AUTHORITY_CHECK.
CONSTANTS actvt_display TYPE activ_auth VALUE '03'.
DATA wa_SCARR TYPE SCARR.
PARAMETERS p_CARRn LIKE scarr-CARRNAME.
AUTHORITY-CHECK OBJECT 'Z_CARRNAME'
ID 'ACTVT' FIELD actvt_display
ID 'CARRNAME' FIELD p_CARRn.
IF sy-subrc EQ 0.
WRITE: 'authorization check successfully!'.
ELSE.
WRITE: 'authorization check unsuccessfully!'.
ENDIF.
(1) We use ‘DDIC’ user to test , the output is as below:
(2) We use ‘ABAPUSER’ to test, the output is as below screenshot.