Exclude struc.auth in T77UA (SAP HR)
Hi!
Starting with ERP 2004 it's possible to exclude structural authorisations in T77UA.
Due to the fact, that some of our user's have really big structural views (about 600,000 objects) with nearly the complete system it's a mess. The performance is pour.
Is it possible to give access to all object with a copy of the profile ALL_01 an exclude the unwanted branches with a second profile.
The main querstion therefore is: how works the '*' when giving all auth.? Like in classic auth? Does it override any try to exclude some struc.auth or does it work?
The idee behind is, to get small compact struc.auth for the power users with about 50,000 objects instead of 600,000
Thanks,
Guido
Message was edited by:
Guido Ziegler
HI Remi,
Thanks for the response. Those are the things that the vendor said we should do. Another integration point that I can see if payroll is outsourced is that we have to find a way to link the pay check from the vendor's website to our ESS. Otherwise, the employee has to log in on 2 systems depending on what they want.
I'm looking for other integration points because I'm trying to find a way to convince the business folks to let payroll remain as an SAP component.
How about any integration points with Benefits? Compensation? Performance Management? MSS?
Similar Messages
-
Is there a listing of all Auth.Objects for SAP and the discription for them
I would like to know if there is a listing of all the Auth.Objects for SAP out there somewhere??
Thank you,
Robert> Auth.Objects for SAP out there somewhere??
You want all the customer objects as well in all SAP systems?
(Or just those in your TOBJ?)
PS: Please try the F1 key on fields to find their tables (or structures) and give the search a try as well...
Cheers,
Julius -
Upload of SU24 Auth. objects in SAP GRC AC 5.3
Hello,
We are in process of SAP GRC AC 5.3 implementation, and our SAP System is not updated to SU24 (Authorization objects), in which USOBT_C is populated.
In GRC AC 5.3 Pre-implementation checklist, it is mentioned about the above, being necessary.
If the SAP System is not updated to SU24, then what is the other way, to upload authorization objects in RAR Post-Install Steps, after we have already completed SAP GRC Tools ( all the SCA files) install and backend RTA installation?
Thanks!hi
1. Create file (automated via batch job) from SU24 (report /VIRSA/ZCC_DOWNLOAD_SAPOBJ)
==> SA38 --> Background --> create a variant where you fill out the value for the server + filename (no extension needed for filename) --> schedule periodically
2. convert to UTF-8 format (how can this be automated?)
--> not necessary ; in my system it is UTF-8 by default
3. upload periodically into RAR via background job (from AIX based file system !)
--> configuration tab --> upload objects --> permission --> choose system --> leave local file blank and fill out server location (drive letter) --> click background and schedule the job daily. This is not a heavy job, therefore daily.
Sam Szafranski
Senior Consultant
axl & trax -
Hello everyone,
We are going to give the SAP server to another company from inside our organization and we are 'cleaning' up the data they won't need.
For instance, we will use transaction code OBR1 to clean up some credit movements, etc..
I know that there are some transactions/programs to clean up the masterdata, but, is there any program I could exclude the following data from SAP:
- Sales Orders
- Deliveries
- Invoices
- VK12 registry as well
Thanks for the help!
Ricardo Sancio Lóra - BrazilHi,
Did you give a thought about Archiving of data? I guess by Archiving you can Archive all old data and keep in your record and can free SAP database.
Thanks,
Raja -
CR 2008 unable to retrieve InfoSets from SAP
Hi all,
We have a working connection of CR 2008 to SAP Tables, Functions and Clusters, but the SAP InfoSet connectivity fails to display available infoSets in SAP. The connectivity to SAP InfoSet DB is working fine and we can see both Classical and Global infoset under SAP InfoSet and then below Classical InfoSet and Global InfoSet there is no further entries.
Surely, this is not an auth issue since SAP Tables and clusters are accessible but only the InfoSets are not reachable.
Please suggest if you have any possible root cause in mind.
Regards.The issue is resolved. This happened because the CR user logging in to ECC server had no user group assigned to which any InfoSet belong. Thus, by creating a new User Group in SQ01 and assigning required users and InfoSets we were able to retrieve assigned InfoSets in CR.
Thanks to Ingo for his previous post where he pointed out this. Following is the post that helped resolving this issue.
"No Items Found" using Infoset Driver in Crystal XI -
I am trying to create a role for IMG display access only
I made ACTVT in all the Auth objects "03" or "display"
but in S_PROJECTS auth object, in "activity" there is no "display" , how do I make ACTVT in S_PROJECTS object "display"
Thanks
Message was edited by:
JackofalltradesHi,
First of all all activities dont apply to all auth objects.(for example generate activity might not be applicable for all auth objects)
So SAP proposed what activities might be relevant to a particular Auth Object.
This information is in TACTZ Tables.
So perhaps u can verfiy the table and u would find that the entries displayed in ur Activity for S_PROJECTS would be the same values as are in S_PROJECTS values in TACTZ table.
HoweverYou can maintain 03 for this object too.
Select the pencil button for the activity field.
It will take u to a dialog box which contains activity fields.
Now if u dont find the 03 field there. Then right click on the screen and select more values option.
It would display all the activities.
However if the 03 field is not mentioned as a proposed activity for that Object by SAP (u can see this info in TACTZ) then make sure that u actually need this object for doing any display activites.
Hope this helps
Manohar -
Exclude exchange rate JEs from Customer Statement layout
Hello
Our customer is using the Customer Statement from the Aging report. On the layout he can see manual JEs which should be excluded from the statement that is sent to the customer ; for example u2013 exchange rate JEs.
Do you know of a way to exclude those transactions, or manual JEs from this report?
Thanks in advance
RevitalHi Revital,
please see this EoP Wiki article:
[Why are zero value journal entries found on a customer's account statement and how can they be excluded? |https://wiki.sdn.sap.com/wiki/pages/viewpage.action?pageId=110821460]
All the best,
Kerstin -
Hello all,
Can someone tell me the most common used Tcodes, roles and auth objects in SAP APO - DP and APO-SNP security
thanksI was going to type them out but luckily for me found this link to the DP & SNP auth objects - the info there is as detailed as anything else I have seen
http://help.sap.com/saphelp_scm50/helpdata/en/21/f6253b90e48743e10000000a11402f/content.htm
There is a list of useful APO transactions here
http://help.sap.com/bp_scmv241/documentation/SCM_AIO_BP_Function_List.xls
I can't help with the standard roles as I build my own. -
Dear All,
I am Chartered Accountant and having 2 years of domain experience. I have completed my training from a small institute that is not SAP partner. I have very good hold on SAP FI and CO modules and want to appear for SAP FI certification. I DID SELF STUDY AND I AM TOO MUCH CONFIDENT ON THE SUBJECT.
But for appearing any SAP certification I need SAP USER-ID. I DON"T KNOW HOW CAN I GET IT IF I AM INDIVIDUAL CONSULTANT??
Exam Registration & Scheduling Information
Registration for SAP certification exams taken at Pearson VUE is a simple 3-step process:
1. See information below for details on obtaining your SAP User-ID.
2. Create your Pearson VUE web account (SAP user id from step 1 will be required)
3. Register for the exam
All exams require the use of the SAP user id for proper tracking in the SAP Certification System.
CUSTOMERS / PARTNERS / INDEPENDENT CONSULTANTS:
If you have previously taken an SAP exam or attended SAP training, go directly to step b, otherwise, customers and partners should access visit the Service Marketplace to register for your S-user number. Independent consultants, as well as Customers and partners having questions or problems regarding this step, should use the following contacts:
1. North America: Tel: +1 888 777 1727.
2. For all APJ countries excluding Japan: education.apa at sap.com or tel: +65 62 708188
3. For Japan: training.japan at sap.com or tel: +81 3 3273 7070 (9:00-17:00 in Japan local time)
4. For all other countries please navigate to the appropriate country on sap.com/services/education and contact your local Education Department.
CALLING ANY OF ABOVE NUMBER DOESN;T HELP. THEY DON;T REPLY OR CALL WAITING AND ALWAYS WAITING. I HAVE ALREADY SPENT AROUND FEW THOUSAND ON MAKING CALLS ON THESE NUMBERS.
COULD ANYONE OF YOU EXPERTS HELP ME IN APPERING FOR SAP FI and CO CERTIFICATION? I HOPE THERE WILL BE A WAY TO APPEAR FOR CERTIFICATION EXAM WITHOUT USING SAP ID or ANY TRAINING CENTER WHO PROVIDED CERTIFICATION FACILITY WITHOUT ATTENDING THE TRAINING.
AWAITING EXPERTS FEEBACK ON THIS ISSUE.
Thanks,
Manu Rathore
Moderator message: please do not use all upper case in the future.
Edited by: Thomas Zloch on Nov 29, 2010 11:09 AMHi
Elgibility for Certification:
You should either complete your training in any Authorized Training Center or Should have experience of more than 2 years(not sure if it is 2 or 3 now) in the said module.
If you dont have any of the above, then certification wont happen in India.
Vishwa. -
Hi all,
Witch jar contains this packages:
com.sap.engine.interfaces.security.auth.AbstractLoginModule;
com.sap.engine.lib.security.http.HttpGetterCallback;
com.sap.engine.lib.security.http.HttpCallback;
com.sap.engine.lib.security.LoginExceptionDetails;
com.sap.engine.lib.security.Principal;
Best Regards,Hello,
AbstractLoginModule class can be found in security_api.jar package....
which can be found at <j2ee_install>\j2ee\cluster\server0\bin\interfaces\security
For rest of the classes .can be found in util.jar package...
Regards,
Madhu -
Hello,
I have an issue in regards to ABAP Queries that are accessed via SQ00. The issue was that a lot of the reports (based on a sample) do not have any authorization check.
There is over a 1000 queries, is there any way for me to check the code for the auth check on mass ? It is very tedious and time consuming going in one at a time to look for the auth check. Any help would be greatly appreciated.
Thank youHi Chris,
As standard there is no data level auth check in SAP Queries. Just one reason why they are often a poor solution for reporting.
Those based on Logical Databases have any checks that are present in the LDB.
Auth checks are placed in the infoset code, so it's only the infosets that you need to review to see if auth checks are included. If you have lots of queries hanging off a small number of infosets, this will be a fair bit easier. Your dev team should be able to point you towards the relevant section of the infoset that contains any additional validation code. -
Will Antivirus bring down the performance of SAP System
I have installed SAP Netweaver in my PC.
During my installation of SAP Netweaver, it insisted to disable the McAfee Antivirus running in my machine to continue.
Also I observed running the SAP Netweaver installation with McAfee Antvirus slowing down the performance.
Hence,
1.Can anyone suggest is it advisable to run Antivirus in the machine that contains SAP softwares?
2.Will there be any impact in performance due to Antivirus running in SAP software machine etc.
3.If Antivirus can run on the SAP software machine, Do we need to include any parameters to not to SCAN SAP supporting software files?
4.Is there any specific antivirus can be used in a SAP Software machine?
Please suggest.Hi Vinod,
1.Can anyone suggest is it advisable to run Antivirus in the machine that contains SAP softwares?
Yes, it advisable run antivirus.
2.Will there be any impact in performance due to Antivirus running in SAP software machine etc.
Yes, There is impact running antivirus. By default antivirus will scan all the folders and files.
3.If Antivirus can run on the SAP software machine, Do we need to include any parameters to not to SCAN SAP supporting software files?
Yes, There is way to exclude the scanning of the folders where SAP software is installed.
Names of the folders need to excluded in windows operating system are
1. USR folder
2. Excluding Data base files are not recommeded, but if necessary you can exclude.
Maxdb Database
sapdb folder
MS SQL 2000/2005
>Program Files\Microsoft SQL Server\MSSQL\Data\xxxDATA1.mdf -->Particular Database file in MS SQL 2000.Here xxx is your instance name.
>Program Files\Microsoft SQL Server\MSSQL\Data\xxxLOG1.ldf --> Particular log file in MS SQL 2000.Here xxx is your instance name
>Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Data\xxxDATA1.mdf --Particular Database file in MS SQL 2005.Here xxx is your instance name.
>Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Data\xxxLOG1.ldf --Particular log file in MS SQL 2005.Here xxx is your instance name.
3.
Program Files\sapinst_instdir folder
Steps given below to exclude the SAP folders in McAfee antivirus Ver 8.0.0 and above. May be applicable for older version of McAfee, if the interface is same as
McAfee antivirus Ver 8.0.0.
Open McAfee antivirus console and make sure Console is Unlocked for editing.
To unlock the console
Go to Tools-->Unlock User Interface. Provide the relevant password to unlock.
Please check with system administrator if necessary.
To add Entries to exclude:
Select Task>On Access Scan Properties>Default Process
Select Detection Tab-->Exclusions -->What to exclude
Click Browse--> Select the SAP folder which needs to be excluded.
Repeat the same steps to exclude other SAP folders if necessary.
Note: Make sure to tick "Also exclude subfolders" in the same window.
4.Is there any specific antivirus can be used in a SAP Software machine?
Not sure, Will let you know if anything.
Reward points if usefull.................. -
HOW TO Developing an Authorization plug-in
#if defined (_WIN32)
#pragma warning(disable : 4996)
BOOL WINAPI DllMain(
HINSTANCE hinstDLL, // handle to DLL module
DWORD fdwReason, // reason for calling function
LPVOID lpReserved ) // reserved
return TRUE;
#endif
How to create here
/*----------------------------------------------------------------------------+
| ___ _ _ |
| / | | | | | |
| / /| | __| | ___ | |__ ___ |
| / /_| |/ _ |/ _ \| _ \ / _ \ |
| / ___ | (_| | (_) | |_) | __/ |
| /_/ |_|\__,_|\___/|____/ \___| |
| |
| |
| ADOBE CONFIDENTIAL |
| __________________ |
| |
| Copyright (c) 2003 - 2010, Adobe Systems Incorporated. |
| All rights reserved. |
| |
| NOTICE: All information contained herein is, and remains the property |
| of Adobe Systems Incorporated and its suppliers, if any. The intellectual |
| and technical concepts contained herein are proprietary to Adobe Systems |
| Incorporated and its suppliers and may be covered by U.S. and Foreign |
| Patents, patents in process, and are protected by trade secret or |
| copyright law. Dissemination of this information or reproduction of this |
| material is strictly forbidden unless prior written permission is |
| obtained from Adobe Systems Incorporated. |
| |
| Adobe Systems Incorporated 415.832.2000 |
| 601 Townsend Street 415.832.2020 fax |
| San Francisco, CA 94103 |
| |
+----------------------------------------------------------------------------*/
#include "StdAfx.h"
#include "FmsAuthAdaptor.h"
#include "FmsAuthActions.h"
#include "FmsMedia.h"
#include <stdio.h>
#include <fcntl.h>
#include <string.h>
#include "hash.h"
#include <sstream>
#if defined (_WIN32)
#pragma warning(disable : 4996)
BOOL WINAPI DllMain(
HINSTANCE hinstDLL, // handle to DLL module
DWORD fdwReason, // reason for calling function
LPVOID lpReserved ) // reserved
return TRUE;
#endif
// Flag to process SWF Verification in this auth sample. A real SWF file
// must be targeted in the SWFVerification code below for the example to work.
static const bool kAuthorizeSwfVerification = false;
class FmsAuthAdaptor : public IFmsAuthAdaptor
public:
FmsAuthAdaptor(IFmsAuthServerContext2* pFmsAuthServerContext)
: m_pFmsAuthServerContext(pFmsAuthServerContext) {}
virtual ~FmsAuthAdaptor() {}
void authorize(IFmsAuthEvent* pAev);
void notify(IFmsAuthEvent* pAev);
void getEvents(I32 aevBitAuth[], I32 aevBitNotf[], unsigned int count);
private:
bool getStats(I64 clientStatsHandle, FmsClientStats& baseStats);
void processStats(IFmsAuthEvent* pAev);
IFmsAuthServerContext2* m_pFmsAuthServerContext;
// Utils
// Note: Do not delete the return value. The return value is a buffer
// allocated in FMS memory space, and FMS will manage the memory.
static char* getStringField(const IFmsAuthEvent* pEv, IFmsAuthEvent::Field prop)
FmsVariant field;
if (pEv->getField(prop, field) == IFmsAuthEvent::S_SUCCESS && field.type == field.kString)
return reinterpret_cast<char*>(field.str);
return 0;
// Note: Do not delete the return value. The return value is a buffer
// allocated in FMS memory space, and FMS will manage the memory.
static U8* getBufferField(const IFmsAuthEvent* pEv, IFmsAuthEvent::Field prop)
FmsVariant field;
if (pEv->getField(prop, field) == IFmsAuthEvent::S_SUCCESS && field.type == field.kBuffer)
return field.buf;
return 0;
static bool getI8Field(const IFmsAuthEvent* pEv, IFmsAuthEvent::Field prop, I8& iValue)
FmsVariant field;
if (pEv->getField(prop, field) == IFmsAuthEvent::S_SUCCESS && field.type == field.kI8)
iValue = field.i8;
return true;
return false;
static bool getI32Field(const IFmsAuthEvent* pEv, IFmsAuthEvent::Field prop, I32& iValue)
FmsVariant field;
if (pEv->getField(prop, field) == IFmsAuthEvent::S_SUCCESS && field.type == field.kI32)
iValue = field.i32;
return true;
return false;
static bool getI64Field(const IFmsAuthEvent* pEv, IFmsAuthEvent::Field prop, I64& iValue)
FmsVariant field;
if (pEv->getField(prop, field) == IFmsAuthEvent::S_SUCCESS && field.type == field.kI64)
iValue = field.i64;
return true;
return false;
static bool getFloatField(const IFmsAuthEvent* pEv, IFmsAuthEvent::Field prop, float& fValue)
FmsVariant field;
if (pEv->getField(prop, field) == IFmsAuthEvent::S_SUCCESS && field.type == field.kFloat)
fValue = field.f;
return true;
return false;
static bool getU16Field(const IFmsAuthEvent* pEv, IFmsAuthEvent::Field prop, U16& iValue)
FmsVariant field;
if (pEv->getField(prop, field) == IFmsAuthEvent::S_SUCCESS && field.type == field.kU16)
iValue = field.u16;
return true;
return false;
static bool setStringField(IFmsAuthEvent* pEv, IFmsAuthEvent::Field prop, char* pValue)
FmsVariant field;
field.setString(reinterpret_cast<I8*>(pValue));
return pEv->setField(prop, field) == IFmsAuthEvent::S_SUCCESS;
static bool setI8Field(IFmsAuthEvent* pEv, IFmsAuthEvent::Field prop, I8 iValue)
FmsVariant field;
field.setI8(iValue);
return pEv->setField(prop, field) == IFmsAuthEvent::S_SUCCESS;
static bool setU8Field(IFmsAuthEvent* pEv, IFmsAuthEvent::Field prop, U8 iValue)
FmsVariant field;
field.setU8(iValue);
return pEv->setField(prop, field) == IFmsAuthEvent::S_SUCCESS;
static bool setI32Field(IFmsAuthEvent* pEv, IFmsAuthEvent::Field prop, I32 iValue)
FmsVariant field;
field.setI32(iValue);
return pEv->setField(prop, field) == IFmsAuthEvent::S_SUCCESS;
static bool setI64Field(IFmsAuthEvent* pEv, IFmsAuthEvent::Field prop, I64 iValue)
FmsVariant field;
field.setI64(iValue);
return pEv->setField(prop, field) == IFmsAuthEvent::S_SUCCESS;
static bool setFloatField(IFmsAuthEvent* pEv, IFmsAuthEvent::Field prop, float fValue)
FmsVariant field;
field.setFloat(fValue);
return pEv->setField(prop, field) == IFmsAuthEvent::S_SUCCESS;
static bool isADPCMSupported(int iAudioCodecs)
return (iAudioCodecs & SUPPORT_SND_ADPCM) != 0;
static bool isVP6Supported(int iVideoCodecs)
int iAllVP6 = ( SUPPORT_VID_VP6ALPHA | SUPPORT_VID_VP6 );
return (iVideoCodecs & iAllVP6) != 0;
static bool isService(int iType)
return (iType & TYPE_SERVICE) != 0;
static bool isAMF3(unsigned char uEncod)
return (uEncod == ENCODE_AMF3);
// This class will process all authorization events
class MyFmsAuthorizeEvent
public:
MyFmsAuthorizeEvent(IFmsAuthEvent* pAev, IFmsAuthServerContext2* pFmsAuthServerContext)
: m_pAev(pAev), m_pFmsAuthServerContext(pFmsAuthServerContext) {}
virtual ~MyFmsAuthorizeEvent() {}
void authorize();
private:
IFmsAuthEvent* m_pAev;
IFmsAuthServerContext2* m_pFmsAuthServerContext;
void MyFmsAuthorizeEvent::authorize()
bool bAuthorized = true; // default authorization state
switch(m_pAev->getType())
case IFmsAuthEvent::E_CONNECT:
// only E_CONNECT allows changes to the following fields:
// F_CLIENT_AUDIO_SAMPLE_ACCESS
// F_CLIENT_AUDIO_SAMPLE_ACCESS_LOCK
// F_CLIENT_READ_ACCESS
// F_CLIENT_READ_ACCESS_LOCK
// F_CLIENT_VIDEO_SAMPLE_ACCESS
// F_CLIENT_VIDEO_SAMPLE_ACCESS_LOCK
// F_CLIENT_WRITE_ACCESS_LOCK
// F_CLIENT_WRITE_ACCESS
I8 iValue;
if (getI8Field(m_pAev, IFmsAuthEvent::F_CLIENT_WRITE_ACCESS, iValue))
setI8Field(m_pAev, IFmsAuthEvent::F_CLIENT_WRITE_ACCESS, iValue);
// redirect connection example
char* pUri = getStringField(m_pAev, IFmsAuthEvent::F_CLIENT_URI);
if (pUri && !strcmp(pUri, "rtmp://localhost/streamtest"))
setStringField(m_pAev, IFmsAuthEvent::F_CLIENT_REDIRECT_URI,
"rtmp://localhost:1935/streamtest");
bAuthorized = false;
// set DiffServ fields based on a client IP
// char* pIp = getStringField(m_pAev, IFmsAuthEvent::F_CLIENT_IP);
// if (pIp && !strcmp(pIp, "192.168.1.1"))
// set the DSCP bits and mask
U8 m_diffServBits = 170;
U8 m_diffServMask = 252;
setU8Field(m_pAev, IFmsAuthEvent::F_CLIENT_DIFFSERV_BITS, m_diffServBits);
setU8Field(m_pAev, IFmsAuthEvent::F_CLIENT_DIFFSERV_MASK, m_diffServMask);
bAuthorized = true;
break;
case IFmsAuthEvent::E_PLAY:
char* pStreamName = getStringField(m_pAev, IFmsAuthEvent::F_STREAM_NAME);
if (pStreamName)
setStringField(m_pAev, IFmsAuthEvent::F_STREAM_NAME, pStreamName);
char* pStreamType = getStringField(m_pAev, IFmsAuthEvent::F_STREAM_TYPE);
if (pStreamType)
setStringField(m_pAev, IFmsAuthEvent::F_STREAM_TYPE, pStreamType);
char* pStreamQuery = getStringField(m_pAev, IFmsAuthEvent::F_STREAM_QUERY);
if (pStreamQuery)
setStringField(m_pAev, IFmsAuthEvent::F_STREAM_QUERY, pStreamQuery);
I8 iValue;
if (getI8Field(m_pAev, IFmsAuthEvent::F_STREAM_RESET, iValue))
// If iValue is 1 (true) the playlist will be reset and the
// stream will be the only stream in the playlist; otherwise
// 0 (false) means the stream will be added to the existing
// playlist.
setI8Field(m_pAev, IFmsAuthEvent::F_STREAM_RESET, iValue);
if (getI8Field(m_pAev, IFmsAuthEvent::F_STREAM_IGNORE, iValue))
// If iValue is 1 (true) the stream timestamps will be ignored;
// otherwise 0 (false) means the timestamps will be handled.
setI8Field(m_pAev, IFmsAuthEvent::F_STREAM_IGNORE, iValue);
char* pStreamTransition = getStringField(m_pAev, IFmsAuthEvent::F_STREAM_TRANSITION);
if (pStreamTransition && strlen(pStreamTransition))
// MBR transition example
if (!strcmp(pStreamTransition, "switch") ||
!strcmp(pStreamTransition, "swap"))
// get the old stream's properties
char* pOldStreamName = getStringField(m_pAev, IFmsAuthEvent::F_OLD_STREAM_NAME);
char* pOldStreamType = getStringField(m_pAev, IFmsAuthEvent::F_OLD_STREAM_TYPE);
char* pOldStreamQuery = getStringField(m_pAev, IFmsAuthEvent::F_OLD_STREAM_QUERY);
// if pOldStream is empty (optional for switch) current stream is in play
// do we really want stream transition?
// no we do not allow transition
// bAuthorized = false;
// now transition will be turned off and old stream continue playing
// break;
// doing nothing will execute transition mode as is
// or you could modify transition by changing transition properties
// set it to 1 to indicate they will be hooking up the stream,
// but that it does not currently exist
setI32Field(m_pAev, IFmsAuthEvent::F_STREAM_LIVE_PUBLISH_PENDING, 1);
// get the offset value if transition is set to offset mode for reconnect
if (!strcmp(pStreamTransition, "resume"))
float fValue;
if (getFloatField(m_pAev, IFmsAuthEvent::F_STREAM_OFFSET, fValue))
float offset = fValue; //offset value in seconds
else
// This is a regular play waiting for approval, which may be converted
// into a play2 command by changing transition properties
break;
case IFmsAuthEvent::E_PUBLISH:
char* pStreamName = getStringField(m_pAev, IFmsAuthEvent::F_STREAM_NAME);
if (pStreamName)
setStringField(m_pAev, IFmsAuthEvent::F_STREAM_NAME, pStreamName);
char* pStreamType = getStringField(m_pAev, IFmsAuthEvent::F_STREAM_TYPE);
if (pStreamType)
setStringField(m_pAev, IFmsAuthEvent::F_STREAM_TYPE, pStreamType);
I32 iValue;
if (getI32Field(m_pAev, IFmsAuthEvent::F_STREAM_PUBLISH_TYPE, iValue))
// publish types:
// 0 : record
// 1 : append
// 2 : appendWithGap
// -1 : live
setI32Field(m_pAev, IFmsAuthEvent::F_STREAM_PUBLISH_TYPE, iValue);
break;
case IFmsAuthEvent::E_FILENAME_TRANSFORM:
I64 iValue;
if (getI64Field(m_pAev, IFmsAuthEvent::F_CLIENT_ID, iValue))
// some fields are not eligible to be modified. The return
// value will be false when trying to modify the F_CLIENT_ID.
bool bSet = setI64Field(m_pAev, IFmsAuthEvent::F_CLIENT_ID, iValue);
char* pStreamName = getStringField(m_pAev, IFmsAuthEvent::F_STREAM_NAME);
if (pStreamName)
// some fields are not eligible to be modified. The return
// value will be false when trying to modify the F_STREAM_NAME.
bool bSet = setStringField(m_pAev, IFmsAuthEvent::F_STREAM_NAME, pStreamName);
char* pStreamPath = getStringField(m_pAev, IFmsAuthEvent::F_STREAM_PATH);
if (pStreamPath)
setStringField(m_pAev, IFmsAuthEvent::F_STREAM_PATH, pStreamPath);
char* pStreamType = getStringField(m_pAev, IFmsAuthEvent::F_STREAM_TYPE);
if (pStreamType)
setStringField(m_pAev, IFmsAuthEvent::F_STREAM_TYPE, pStreamType);
break;
case IFmsAuthEvent::E_PAUSE:
bAuthorized = false; // block all E_PAUSE events.
float fValue;
if (getFloatField(m_pAev, IFmsAuthEvent::F_STREAM_PAUSE_TIME, fValue))
float fPauseTime = fValue; // in seconds
I8 iValue;
if (getI8Field(m_pAev, IFmsAuthEvent::F_STREAM_PAUSE, iValue))
// 1 (true) means PAUSE
// 0 (false) means UNPAUSE
bool boolPause = iValue != 0;
if (getI8Field(m_pAev, IFmsAuthEvent::F_STREAM_PAUSE_TOGGLE, iValue))
// 1 (true) means PAUSE_TOGGLE
// 0 (false) means no PAUSE_TOGGLE was set
bool boolPauseToggle = iValue != 0;
FmsVariant field;
// Notify Action example: An IFmsNofifyAction is created to notify
// server side action script (SSAS) of the E_PAUSE event by calling
// the function name "method" in the script. In this example two
// variables will be passed to "method" by calling addParam(field)
// on the action.
if (m_pAev->getField(IFmsAuthEvent::F_CLIENT_ID, field) == IFmsAuthEvent::S_SUCCESS)
I64 clientId = field.i64;
IFmsNotifyAction* pAction = m_pAev->addNotifyAction("Notified by adaptor");
pAction->setClientId(field);
const char mtd[] = "method";
field.setString(reinterpret_cast<I8*>(const_cast<char*>(mtd)));
pAction->setMethodName(field);
// create and insert a U16 "12345" as the first parameter
field.setU16(12345);
pAction->addParam(field);
// create and insert clientId as a double as the second parameter
field.setDouble((double)clientId);
pAction->addParam(field);
// Note: SSAS does not work with I64 or Buffer variants
// field.setI64(clientId);
// pAction->addParam(field); // incorrect
break;
case IFmsAuthEvent::E_SEEK:
bAuthorized = false; // block all E_SEEK events
float fValue;
if (getFloatField(m_pAev, IFmsAuthEvent::F_STREAM_SEEK_POSITION, fValue))
// Modification of the seek position example:
// fValue + 3; will add 3 seconds to the initial seek posistion
float fSeekTime = fValue; // value in seconds
setFloatField(m_pAev, IFmsAuthEvent::F_STREAM_SEEK_POSITION, fSeekTime);
break;
case IFmsAuthEvent::E_LOADSEGMENT:
// bAuthorized = false; // block all E_LOADSEGMENT events
// E_LOADSEGMENT is a read only event that substitutes E_PLAY on
// FMS Origin servers for recorded streams.
I64 iValue;
if (getI64Field(m_pAev, IFmsAuthEvent::F_SEGMENT_START, iValue))
I64 iStart = iValue; // in bytes
if (getI64Field(m_pAev, IFmsAuthEvent::F_SEGMENT_END, iValue))
I64 iEnd = iValue; // in bytes
break;
case IFmsAuthEvent::E_RECORD:
// bAuthorized = false; // block all E_RECORD events
float fValue;
if (getFloatField(m_pAev, IFmsAuthEvent::F_STREAM_RECORD_MAXSIZE, fValue))
float recMaxSize = fValue; // in kilobytes
setFloatField(m_pAev, IFmsAuthEvent::F_STREAM_RECORD_MAXSIZE, recMaxSize);
if (getFloatField(m_pAev, IFmsAuthEvent::F_STREAM_RECORD_MAXDURATION, fValue))
float recMaxDuration = fValue; // in seconds
setFloatField(m_pAev, IFmsAuthEvent::F_STREAM_RECORD_MAXDURATION, recMaxDuration);
break;
case IFmsAuthEvent::E_SWF_VERIFY:
// SWF Verification example:
// kAuthorizeSwfVerification is assigned false by default. The
// target SWF file must be updated for this to work.
if(kAuthorizeSwfVerification)
I8 swfvVersion = 0;
if(getI8Field(m_pAev, IFmsAuthEvent::F_CLIENT_SWFV_VERSION, swfvVersion))
std::stringstream stream;
stream << "Swf verification version is " << static_cast<int>(swfvVersion);
m_pFmsAuthServerContext->log(stream.str().c_str(), IFmsServerContext::kInformation, false);
I64 swfvDepth;
if(getI64Field(m_pAev, IFmsAuthEvent::F_CLIENT_SWFV_DEPTH, swfvDepth))
I32 swfvTTL;
if(getI32Field(m_pAev, IFmsAuthEvent::F_CLIENT_SWFV_TTL, swfvTTL))
swfvTTL /= 2;
setI32Field(m_pAev, IFmsAuthEvent::F_CLIENT_SWFV_TTL, swfvTTL);
U8 digest[kSHA256DigestLen];
// Target a real SWF file instead of sample.swf
hashSwfFileAtDepth("C:\\sample.swf", swfvDepth, digest);
FmsVariant field;
field.setBuffer(digest, kSHA256DigestLen);
m_pAev->setField(IFmsAuthEvent::F_CLIENT_SWFV_DIGEST, field);
break;
case IFmsAuthEvent::E_APPSTART:
case IFmsAuthEvent::E_APPSTOP:
case IFmsAuthEvent::E_DISCONNECT:
case IFmsAuthEvent::E_STOP:
case IFmsAuthEvent::E_UNPUBLISH:
case IFmsAuthEvent::E_ACTION:
case IFmsAuthEvent::E_CODEC_CHANGE:
case IFmsAuthEvent::E_RECORD_STOP:
case IFmsAuthEvent::E_CLIENT_PAUSE:
case IFmsAuthEvent::E_SWF_VERIFY_COMPLETE:
case IFmsAuthEvent::E_CLIENT_SEEK:
case IFmsAuthEvent::E_START_TRANSMIT:
case IFmsAuthEvent::E_STOP_TRANSMIT:
case IFmsAuthEvent::E_MAXEVENT:
break;
IFmsAuthServerContext2::AuthFailureDesc* desc = NULL;
if(!bAuthorized)
desc = new IFmsAuthServerContext2::AuthFailureDesc("Blocked by auth adaptor",
IFmsAuthServerContext2::kDefaultStatus, -1);
char buf[1024];
const char* const action = bAuthorized ? "approved" : "rejected";
sprintf(buf, "Received authorization type=%d id=%p %s\n", m_pAev->getType(),
m_pAev, action);
// log to the configured FMS log directory. If the third parameter is true,
// also send the log to the system event log.
m_pFmsAuthServerContext->log(buf, IFmsServerContext::kInformation, false);
m_pFmsAuthServerContext->onAuthorize(m_pAev, bAuthorized, desc);
delete desc;
class MyFmsNotifyEvent
public:
MyFmsNotifyEvent(IFmsAuthEvent* pAev, IFmsAuthServerContext2* pFmsAuthServerContext)
: m_pAev(pAev), m_pFmsAuthServerContext(pFmsAuthServerContext) {}
virtual ~MyFmsNotifyEvent() {}
void notify() const;
private:
IFmsAuthEvent* m_pAev;
IFmsAuthServerContext2* m_pFmsAuthServerContext;
void MyFmsNotifyEvent::notify() const
switch(m_pAev->getType())
case IFmsAuthEvent::E_PLAY:
char* pAppName = getStringField(m_pAev, IFmsAuthEvent::F_APP_NAME);
char* pAppInst = getStringField(m_pAev, IFmsAuthEvent::F_APP_INST);
char* pAppUri = getStringField(m_pAev, IFmsAuthEvent::F_APP_URI);
char* pClIp = getStringField(m_pAev, IFmsAuthEvent::F_CLIENT_IP);
char* pClUri = getStringField(m_pAev, IFmsAuthEvent::F_CLIENT_URI);
char* pClNewUri = getStringField(m_pAev, IFmsAuthEvent::F_CLIENT_REDIRECT_URI);
char* pClVhost = getStringField(m_pAev, IFmsAuthEvent::F_CLIENT_VHOST);
char* pClRef = getStringField(m_pAev, IFmsAuthEvent::F_CLIENT_REFERRER);
char* pClPurl = getStringField(m_pAev, IFmsAuthEvent::F_CLIENT_PAGE_URL);
char* pClAgent = getStringField(m_pAev, IFmsAuthEvent::F_CLIENT_USER_AGENT);
char* pClRAccess = getStringField(m_pAev, IFmsAuthEvent::F_CLIENT_READ_ACCESS);
char* pClWAccess = getStringField(m_pAev, IFmsAuthEvent::F_CLIENT_WRITE_ACCESS);
char* pClAudioAccess = getStringField(m_pAev, IFmsAuthEvent::F_CLIENT_AUDIO_SAMPLE_ACCESS);
char* pClVideoAccess = getStringField(m_pAev, IFmsAuthEvent::F_CLIENT_VIDEO_SAMPLE_ACCESS);
char* pClProto = getStringField(m_pAev, IFmsAuthEvent::F_CLIENT_PROTO);
char* pClUstem = getStringField(m_pAev, IFmsAuthEvent::F_CLIENT_URI_STEM);
char* pStreamName = getStringField(m_pAev, IFmsAuthEvent::F_STREAM_NAME);
char* pStreamType = getStringField(m_pAev, IFmsAuthEvent::F_STREAM_TYPE);
char* pStreamQuery = getStringField(m_pAev, IFmsAuthEvent::F_STREAM_QUERY);
char* pStreamPath = getStringField(m_pAev, IFmsAuthEvent::F_STREAM_PATH);
I32 iValue;
if (getI32Field(m_pAev, IFmsAuthEvent::F_CLIENT_AUDIO_CODECS, iValue))
bool bADPCM = isADPCMSupported(iValue);
if (getI32Field(m_pAev, IFmsAuthEvent::F_CLIENT_VIDEO_CODECS, iValue))
bool bVP6 = isVP6Supported(iValue);
if (getI32Field(m_pAev, IFmsAuthEvent::F_CLIENT_TYPE, iValue))
bool bService = isService(iValue);
if (getI32Field(m_pAev, IFmsAuthEvent::F_STREAM_ID, iValue))
I32 iStreamId = iValue;
float fValue;
if (getFloatField(m_pAev, IFmsAuthEvent::F_STREAM_LENGTH, fValue))
float fLength = fValue; // in seconds
if (getFloatField(m_pAev, IFmsAuthEvent::F_STREAM_POSITION, fValue))
float iPosition = fValue; // in seconds
I64 lValue;
if (getI64Field(m_pAev, IFmsAuthEvent::F_CLIENT_ID, lValue))
I64 iClientId = lValue;
I8 sValue;
if (getI8Field(m_pAev, IFmsAuthEvent::F_CLIENT_SECURE, sValue))
bool bSecure = sValue != 0;
if (getI8Field(m_pAev, IFmsAuthEvent::F_CLIENT_AMF_ENCODING, sValue))
bool bAMF3 = isAMF3(sValue);
if (getI8Field(m_pAev, IFmsAuthEvent::F_CLIENT_READ_ACCESS_LOCK, sValue))
bool bRead = sValue != 0;
if (getI8Field(m_pAev, IFmsAuthEvent::F_CLIENT_WRITE_ACCESS_LOCK, sValue))
bool bWrite = sValue != 0;
if (getI8Field(m_pAev, IFmsAuthEvent::F_CLIENT_AUDIO_SAMPLE_ACCESS_LOCK, sValue))
bool bAudioRead = sValue != 0;
if (getI8Field(m_pAev, IFmsAuthEvent::F_CLIENT_VIDEO_SAMPLE_ACCESS_LOCK, sValue))
bool bVideoRead = sValue != 0;
if (getI8Field(m_pAev, IFmsAuthEvent::F_STREAM_RESET, sValue))
bool bReset = sValue != 0;
if (getI8Field(m_pAev, IFmsAuthEvent::F_STREAM_IGNORE, sValue))
bool bIgnore = sValue != 0;
break;
case IFmsAuthEvent::E_SEEK:
float fValue;
if (getFloatField(m_pAev, IFmsAuthEvent::F_STREAM_SEEK_POSITION, fValue))
float fSeekTime = fValue;
// Disconnect Action example: disconnect the client that was
// specified by the E_SEEK notify event
FmsVariant field;
if (m_pAev->getField(IFmsAuthEvent::F_CLIENT_ID, field) == IFmsAuthEvent::S_SUCCESS)
IFmsDisconnectAction* pAction =
const_cast<IFmsAuthEvent*>(m_pAev)->
addDisconnectAction("Seek is not allowed. Blocked by adaptor");
pAction->setClientId(field);
break;
case IFmsAuthEvent::E_CODEC_CHANGE:
char* pAppName = getStringField(m_pAev, IFmsAuthEvent::F_APP_NAME);
char* pAppInst = getStringField(m_pAev, IFmsAuthEvent::F_APP_INST);
char* pAppUri = getStringField(m_pAev, IFmsAuthEvent::F_APP_URI);
char* pClIp = getStringField(m_pAev, IFmsAuthEvent::F_CLIENT_IP);
char* pClUri = getStringField(m_pAev, IFmsAuthEvent::F_CLIENT_URI);
char* pClNewUri = getStringField(m_pAev, IFmsAuthEvent::F_CLIENT_REDIRECT_URI);
char* pClVhost = getStringField(m_pAev, IFmsAuthEvent::F_CLIENT_VHOST);
char* pClRef = getStringField(m_pAev, IFmsAuthEvent::F_CLIENT_REFERRER);
char* pClPurl = getStringField(m_pAev, IFmsAuthEvent::F_CLIENT_PAGE_URL);
char* pClAgent = getStringField(m_pAev, IFmsAuthEvent::F_CLIENT_USER_AGENT);
char* pClRAccess = getStringField(m_pAev, IFmsAuthEvent::F_CLIENT_READ_ACCESS);
char* pClWAccess = getStringField(m_pAev, IFmsAuthEvent::F_CLIENT_WRITE_ACCESS);
char* pClAudioAccess = getStringField(m_pAev, IFmsAuthEvent::F_CLIENT_AUDIO_SAMPLE_ACCESS);
char* pClVideoAccess = getStringField(m_pAev, IFmsAuthEvent::F_CLIENT_VIDEO_SAMPLE_ACCESS);
char* pClProto = getStringField(m_pAev, IFmsAuthEvent::F_CLIENT_PROTO);
char* pClUstem = getStringField(m_pAev, IFmsAuthEvent::F_CLIENT_URI_STEM);
char* pStreamName = getStringField(m_pAev, IFmsAuthEvent::F_STREAM_NAME);
char* pStreamType = getStringField(m_pAev, IFmsAuthEvent::F_STREAM_TYPE);
char* pStreamQuery = getStringField(m_pAev, IFmsAuthEvent::F_STREAM_QUERY);
char* pStreamPath = getStringField(m_pAev, IFmsAuthEvent::F_STREAM_PATH);
U16 fType;
if (getU16Field(m_pAev, IFmsAuthEvent::F_STREAM_CODEC_TYPE, fType))
U16 streamCodecType = fType;
if (streamCodecType == kVIDEO_CODEC)
U16 fValue;
if (getU16Field(m_pAev, IFmsAuthEvent::F_STREAM_CODEC, fValue))
U16 streamCodecValue = fValue;
if (streamCodecValue == VIDEO_CODEC_SORENSON)
// Disconnect Action example: Disallow clients trying
// to publish content with the sorenson video codec.
FmsVariant field;
if (m_pAev->getField(IFmsAuthEvent::F_CLIENT_ID, field) == IFmsAuthEvent::S_SUCCESS)
IFmsDisconnectAction* pAction =
const_cast<IFmsAuthEvent*>(m_pAev)->
addDisconnectAction("Sorenson is not allowed. Blocked by adaptor");
pAction->setClientId(field);
break;
case IFmsAuthEvent::E_RECORD_STOP:
char* pAppName = getStringField(m_pAev, IFmsAuthEvent::F_APP_NAME);
char* pAppInst = getStringField(m_pAev, IFmsAuthEvent::F_APP_INST);
char* pAppUri = getStringField(m_pAev, IFmsAuthEvent::F_APP_URI);
char* pClIp = getStringField(m_pAev, IFmsAuthEvent::F_CLIENT_IP);
char* pClUri = getStringField(m_pAev, IFmsAuthEvent::F_CLIENT_URI);
char* pClNewUri = getStringField(m_pAev, IFmsAuthEvent::F_CLIENT_REDIRECT_URI);
char* pClVhost = getStringField(m_pAev, IFmsAuthEvent::F_CLIENT_VHOST);
char* pClRef = getStringField(m_pAev, IFmsAuthEvent::F_CLIENT_REFERRER);
char* pClPurl = getStringField(m_pAev, IFmsAuthEvent::F_CLIENT_PAGE_URL);
char* pClAgent = getStringField(m_pAev, IFmsAuthEvent::F_CLIENT_USER_AGENT);
char* pClRAccess = getStringField(m_pAev, IFmsAuthEvent::F_CLIENT_READ_ACCESS);
char* pClWAccess = getStringField(m_pAev, IFmsAuthEvent::F_CLIENT_WRITE_ACCESS);
char* pClAudioAccess = getStringField(m_pAev, IFmsAuthEvent::F_CLIENT_AUDIO_SAMPLE_ACCESS);
char* pClVideoAccess = getStringField(m_pAev, IFmsAuthEvent::F_CLIENT_VIDEO_SAMPLE_ACCESS);
char* pClProto = getStringField(m_pAev, IFmsAuthEvent::F_CLIENT_PROTO);
char* pClUstem = getStringField(m_pAev, IFmsAuthEvent::F_CLIENT_URI_STEM);
char* pStreamName = getStringField(m_pAev, IFmsAuthEvent::F_STREAM_NAME);
char* pStreamType = getStringField(m_pAev, IFmsAuthEvent::F_STREAM_TYPE);
char* pStreamQuery = getStringField(m_pAev, IFmsAuthEvent::F_STREAM_QUERY);
char* pStreamPath = getStringField(m_pAev, IFmsAuthEvent::F_STREAM_PATH);
float fValue;
if (getFloatField(m_pAev, IFmsAuthEvent::F_STREAM_RECORD_MAXSIZE, fValue))
float recMaxSize = fValue; // in kilobytes
if (getFloatField(m_pAev, IFmsAuthEvent::F_STREAM_RECORD_MAXDURATION, fValue))
float recMaxDuration = fValue; // in seconds
break;
case IFmsAuthEvent::E_SWF_VERIFY_COMPLETE:
char* pClIp = getStringField(m_pAev, IFmsAuthEvent::F_CLIENT_IP);
I8 version; // version of SWF verification
getI8Field(m_pAev, IFmsAuthEvent::F_CLIENT_SWFV_VERSION, version);
I64 depth; // depth in the SWF file hashed
getI64Field(m_pAev, IFmsAuthEvent::F_CLIENT_SWFV_DEPTH, depth);
I32 ttl; // time to live of the SWF hash provided
getI32Field(m_pAev, IFmsAuthEvent::F_CLIENT_SWFV_TTL, ttl);
// digest provided to match against
U8* buffer = getBufferField(m_pAev, IFmsAuthEvent::F_CLIENT_SWFV_DIGEST);
// result of the attempted match-- see FmsAuthEvents.h enum
// eSWFMatch for the meaning of this field
I32 match;
getI32Field(m_pAev, IFmsAuthEvent::F_CLIENT_SWFV_RESULT, match);
std::stringstream stream;
stream << "swf verification for client: "
<< std::string(pClIp)
<< " is complete, the result is: " << match;
m_pFmsAuthServerContext->log(stream.str().c_str(), IFmsServerContext::kInformation, false);
break;
case IFmsAuthEvent::E_APPSTART:
case IFmsAuthEvent::E_APPSTOP:
case IFmsAuthEvent::E_CONNECT:
case IFmsAuthEvent::E_DISCONNECT:
case IFmsAuthEvent::E_FILENAME_TRANSFORM:
case IFmsAuthEvent::E_STOP:
case IFmsAuthEvent::E_PAUSE:
case IFmsAuthEvent::E_PUBLISH:
case IFmsAuthEvent::E_UNPUBLISH:
case IFmsAuthEvent::E_LOADSEGMENT:
case IFmsAuthEvent::E_ACTION:
case IFmsAuthEvent::E_RECORD:
case IFmsAuthEvent::E_CLIENT_PAUSE:
case IFmsAuthEvent::E_SWF_VERIFY:
case IFmsAuthEvent::E_CLIENT_SEEK:
case IFmsAuthEvent::E_START_TRANSMIT:
case IFmsAuthEvent::E_STOP_TRANSMIT:
case IFmsAuthEvent::E_MAXEVENT:
break;
char buf[1024];
sprintf(buf, "Received notification type=%d id=%p\n", m_pAev->getType(), m_pAev);
// log to the configured FMS log directory. If the third parameter is true,
// also send the log to the system event log.
m_pFmsAuthServerContext->log(buf, IFmsServerContext::kInformation, false);
m_pFmsAuthServerContext->onNotify(m_pAev);
/* All authorization events flow through this wrapper function.
* Note: This sample auth adaptor has MyFmsAppAuthEvent allocated on the
* stack, but time intensive implementations may warrant authorization to
* be allocated on the heap so work may be passed to a thread pool. This
* prevents starvation of the calling FMS threads in custom code that may
* have processing delays (ie database calls, network filesystem access, etc..).
void FmsAuthAdaptor::authorize(IFmsAuthEvent* pAev)
MyFmsAuthorizeEvent(pAev, m_pFmsAuthServerContext).authorize();
/* All notification events flow through this wrapper function.
* Note: This sample auth adaptor has MyFmsNotifyEvent allocated on the
* stack, but time intensive implementations may warrant notifications to
* be allocated on the heap so work may be passed to a thread pool. This
* prevents starvation of the calling FMS threads in custom code that may
* have processing delays (ie database calls, network filesystem access, etc..).
void FmsAuthAdaptor::notify(IFmsAuthEvent* pAev)
processStats(pAev);
MyFmsNotifyEvent(pAev, m_pFmsAuthServerContext).notify();
* Get client statistics.
bool FmsAuthAdaptor::getStats(I64 clientStatsHandle, FmsClientStats& baseStats)
bool bValue= m_pFmsAuthServerContext->getClientStats(clientStatsHandle, baseStats);
return bValue;
* Example obtainting client stats from an E_CONNECT or E_STOP event
void FmsAuthAdaptor::processStats(IFmsAuthEvent* pAev)
I64 statsHandle;
FmsClientStats baseStats;
if (!getI64Field(pAev, IFmsAuthEvent::F_CLIENT_STATS_HANDLE, statsHandle))
return;
char* pAppName = getStringField(pAev, IFmsAuthEvent::F_APP_NAME);
if (pAev->getType() == IFmsAuthEvent::E_CONNECT)
getStats(statsHandle, baseStats);
// log data
char buf[1024];
char hashKey[9];
memset(hashKey, 0, 9);
memcpy(hashKey, &statsHandle, sizeof(statsHandle));
sprintf(buf, "client Stats Handle= %s, bytes_in= %f, bytes_out= %f\n", hashKey,
static_cast<double>(baseStats.bytes_in), static_cast<double>(baseStats.bytes_out));
m_pFmsAuthServerContext->log(buf, IFmsServerContext::kInformation, false);
else if (pAev->getType() == IFmsAuthEvent::E_STOP)
getStats(statsHandle, baseStats);
/* By default, all authorization and notifications events will be sent.
* Call excludeEvents with the bit set to 1, to stop recieving events.
* Note: The events:
* E_APPSTART, E_APPSTOP, E_DISCONNECT, E_STOP, E_UNPUBLISH, E_CODEC_CHANGE
* are excluded by default and are not authorizable.
void FmsAuthAdaptor::getEvents(I32 aevBitAuth[], I32 aevBitNotf[], unsigned int count)
// exclude certain auth events
IFmsAuthEvent::EventType authExcludeEvent[] = { IFmsAuthEvent::E_SEEK };
// set E_SEEK to a non authorizable event
m_pFmsAuthServerContext->excludeEvents(aevBitAuth, count, authExcludeEvent, 1);
// Warning: if E_CODEC_CHANGE event is not excluded, all messages will be
// scanned to detect codec change. Subscribe to this event only as needed.
// Example that excludes certain notify events. (E_PAUSE, E_CODEC_CHANGE)
IFmsAuthEvent::EventType notifyExcludeEvent[] =
{ IFmsAuthEvent::E_PAUSE, IFmsAuthEvent::E_CODEC_CHANGE };
m_pFmsAuthServerContext->excludeEvents(aevBitNotf, count, notifyExcludeEvent, 2);
extern "C" void FCExport FmsCreateAuthAdaptor3(IFmsAuthServerContext2* pAuthServerCtx,
IFmsAuthAdaptor*& pFmsAuthAdaptor, U32& iVersion)
pFmsAuthAdaptor = new FmsAuthAdaptor(pAuthServerCtx);
U32 version = pAuthServerCtx->getVersion();
U16 w2 = LWORD(version);
U16 w1 = HWORD(version);
iVersion = MKLONG(INTERFACE_MINOR_VERSION, INTERFACE_MAJOR_VERSION);
char buf[1024];
char *ptr = buf;
int valueLen = pAuthServerCtx->getConfig("UserKey1", &ptr, sizeof(buf));
if (!valueLen)
valueLen = pAuthServerCtx->getConfig("UserKey2", &ptr, sizeof(buf));
if (!valueLen)
return;
if (valueLen < 0)
// failed to find this key
return;
if (valueLen < 0)
// failed to find this key
return;
// value length is bigger then the buffer size, and a real adaptor should
// allocate valueLen + 1 bytes and call again
extern "C" void FCExport FmsDestroyAuthAdaptor3(IFmsAuthAdaptor* pAuthAdaptor )
delete pAuthAdaptor;There is no API to Acrobat's document compare feature.
It is certainly possible for an experienced plug-in programmer to
create a new compare plug-in. For example, extract text from two PDFs
and compare it. Comparison algorithms have been much studied so should
be findable in academic literature.
Going beyond text comparison would be a major exercise.
Aandi Inston -
Migrating SU24 to new system properly (ecc 5.0 to ecc 6.0)
Hello,
We are currently upgrading from ECC 5.0 to 6.0. As part of this cutover to the new system, I need to download SU24 properly from the 5.0 system and upload it to the new 6.0 environment because we heavily use SU24 for custom tcodes and to add additional auth objects to SAP delivered transactions.
The good thing is that SU24 has a download capability in the transaction, but the problem is that it gives you three option of downloads, in which all three can be selected.
1) SAP Data
2) Original Data
3) Customer Data
I know that we will obviously want to use the "Customer Data" due to our Ztcodes, but what is the difference between SAP Data and Original Data?
Our goal would be to download and upload only our custom changes (to both custom transactions and SAP transactions), but we do not want to overwrite any newly delivered SU24 updates that SAP may have implemented in ECC 6.0.
Has anyone ever done this or does anyone have an idea what these mean? Of course, the SAP help is useless on this issue.
I looked for such messages and read them here, I guess I still have some anxiety about ensuring that I download only what my company has maintained since our older 5.0 system went live. If I download all of the "Customer Data" option, I think that covers all of our custom transaction codes, but will that cover the auth objects associations to SAP delived tcodes we have made as well?
Also, It seems that I will have to use SU25 to activate. Any information of the best way to to do this our situation would be greatly appreciated!
Thanks,
RyanThanks for responding.
The thing is that the person asking the questions does not give a hoot about points until they have an answer, and then only maybe... so forget about points.
Answering questions with random links or wild guesses in the hope that one of them scores a few points makes a big mess of the forums and renders the search almost useless when all these link-farms turn up.
Take a look at this thread for an extreme example => work flow
It is okay to post a link when there is a good reason for it, embedded within a discussion or to support an answer as a reference.
Please take a look at this thread for a more detailed discussion => How Far it is Good???
Now, back to the discussion...
I am not logged on, but if I remember correctly there is a function module which uses combinations of these three flags to read the SAP data (current SU22 data), the original data (SU22 data without the "update" flag - because in the past SAP rolled out some support pack notes to change SU22 and some customers maintained SU22 anyway instead of SU24...) and the customer data (which is what you are looking for). Additionally the function module parameter has a 4th flag for when nothing is checked, and then it downloads everything (?). The name of the function was something like SU22LISTVALUES but you should be able to find it via the Object Navigator from the download screen - Menu => System => Status => double-click the GUI Screen program. I remember there being lots of comments in the coding as well to help understand it.
But this was some time ago and on a 4.7 system when I had looked into it, so please also check how many entries are downloaded and compare these to your USOBT_C and USOBX_C tables before you do anything like an upload... - as the download might not deliver information you are expecting (assuming that you ran SU25 after making changes or made some changes to SU22 without importing them via support packages, etc).
Let us know what you find. I will take a look in the next days as well when I find a system with some data in it...
Cheers,
Julius -
hi friends,
i need to write routine in data selection tab , i need like when ever i open need to show current data.
how can i write coding.
i have code like this, please correct my code
L_t_RANGE_IOBJNM = '0CALDAY'.
L_t_RANGE-FIELD NAME = 'CALDAY'.
L_t_RANGE-SIGN = 'I'.
L_t_RANGE-OPTION = 'EQ'.
L_t_RANGE-LOW = sy-datum .
I DIDNT UNDERSTAND HERE WHAT IS ACTUALLY IOBJNM WHAT DO U MEAN BY LOW AND HIGH ACTUALLY. FIELD NAME MEANS I NEED TO MENTION LIKE/BIC/ZMNO LIKE .
THANKING U,
SUNEEL.Check below link to understand the RANGE type objects in ABAP. The OBJNAM is the object name which is used for selection in the InfoPackage. l_t_range is the internal table which contains all the selections used in the InfoPackage. So, if you need dynamic selections you have to code to populate dynamic values for the corresponding InfoObject in this Internal table. Low/High are the fields which actually contains the "From" and "to" range in selection.
Option - <,>,=, <> etc.
Sign -Include/Exclude (I/E)
http://help.sap.com/saphelp_nw2004s/helpdata/en/9f/dba71f35c111d1829f0000e829fbfe/content.htm
Regards,
Sree
Maybe you are looking for
-
Airport Express will connect wired, but can't get it to connect wireless
I purchased three APE units specifically to connect my iTunes library to multiple house receivers. I went through the setup for two of them, but as soon as I unplug the ethernet cable, the wireless network won't recognize them. I tried rebooting th
-
How to restrict the developers to do DDl Operations on the tables
Dear All, Even i restricted the developers to do DDL operations by updating CHAR_VALUE=disabled in the table SQLPLUS_PRODUCT_PROFILE table in system/manager schema. So, now the users are unable to do DDL operations from PLSQL Developer, iSQLPLUS and
-
I open firefox using my igoogle home page and immediately it opens two igoogle tabs on top instead of just one how do I stop it from opening the second one? and then after about two minutes AVG tells me firefox is using too much memory slowing my mac
-
Hi, While running F110, the check number is not picked up from my check lot I gave in the print variant. (I am giving Payment method, Bank account number, Account number and check lot number, along with all the other selections in the print variant).
-
To go to the Layout section of the Components Palette
Hi, After I've opened a project within Studio creator 2, how can I go to the Components Palette for further accessing the Layout section? Thks & Rgds, HuaMin