How to restrict an infopath custom view based on SharePoint group or security group membership?

Similar Messages

• How to redirect to a custom view in 10g

  Hi All,
  Getting a bit of a headache on this one. I am migrating from 5.7 to 10g and in the project some emails are generated with a link to a custom view. Also I have a submit button in a jsp that redirects to a view. This was easy then (/servlet/controller?viewName=myview&from=1 or similar) but a bit more involved now I guess.
  I had a look at WAPI and can see how to run an activity in an instance, or indeed an application but cant figure out how to display my view.
  Any ideas ?
  cheers
  Tony

  Any thoughts would help on this one.
  Effectively I want a url, or wapi call that takes the user directly to the workspace, with work items at a particular view (not inbox). Defaulting everyone to that view isnt a goer and neither is launching an activity.
  I guess it is possible as the workspace does it when clicking the view dropdown.
  cheers
  Tony

• How to restrict some users from viewing a screen of standard transaction

  Hi All,
  I need to restrict certain user ids from viewing the 'Payment Transactions' screen for the below mentioned transactions.
  FK01, FK02, FK03, MK01, MK02, MK03, XK01, XK02, XK03
  The Basis consultant has tried to configure it. However its not working. So need to find other solution.
  For all transactions other than FK01, MK01, XK01 (create vendor), the BAdi GOS_SRV_SELECT is called before the payment transaction screen appears. But for transactions FK01, MK01and XK0, no such BAdi is there.
  Also I'm not able to figure out how to restrict that particular screen using Badi GOS_SRV_SELECT. What will be the service name for this?
  Please help !!!
  Thanks in advance,
  Radhika

  hi,
  u can do this using user exits.
  identify the appropriate exit for ur transaction and thn put condition like
  if username = ...
  loop at screen.
  hide..
  endloop.
  i was just trying to give u some hint .make it to ur best.
  reward if hlpful.

• How to read contents of files that do not fall under public security group?

  Hi,
  I need to read the contents of a WCM based xml file that does not fall under public security.
  The process is like this:
  First the user makes chnages to the content.
  The workflow will be triggred based on the security group metadata that is associated with the content.
  Once the content is finally approved our workflow calls a custom idoc script.
  First we tried directly reading the xml contents from the idoc script which was still in the context of workflow. But since content item is still in workflow I was not able to read the changes. So I created a separate content publisher thread and read the DOC_INFO and checked for the dStatus value. If the value is RELEASED then I reading contents by calling ssIncludeXml idoc script.
  This was working fine for public content. But now the requirement is that all content cannot be public. Content authors should not be able to edit the content that does not belong to their group, So we created security groups (and roles) and are associating that groups to the relavent content.
  Beacuse of this change I am not not able to read the non public content. The call to DOC_INFO_BY_NAME service, which gives all the content files' metadata, is expecting the user to be logged in to give the details.
  I tried calling the CHECKIN service with sysadmin and captured the cookies returned by that service and use cookies for the DOC_INFO_BY_NAME service call. But the service call was faling. It is throing the 401 forbidden error with the message that user needs to be logged in to get the details.
  How to address this problem. Someone please help.
  Note: I also tried using ridc for this. I was able to get it working but since it is executing in the context of server ridc api is changing server's environment properties like HTTP_HOST, HTTP_CGIPATHROOT etc. It also seemed like system was becoming non functional after using ridc. When I called check-in the system metadata values like security group are no more loading. Not sure if ridc is the culprit here but worried that it might be causing this issue.
  Regards,
  Pratap

  Sorry, I posted too much details while posting this question. I was saying "not able to read *non* public content".
  Anyway, I was able to resolve the issue. I was able to authenticate with sysadmin credentials in the request to service using basic authentication and was able to read doc info with that credential.
  But I realized there is more than option for reading secure content.
  - I could set user name as sysadmin in the m_environment (if I am in the context of a service) and the call the DOC_INFO_BY_NAME service.
  - I can post an HTTP request to DOC_INFO_BY_NAME service with sysadmin credentials and do basic authorization via the connection. (This is what i have done successfully as of now )
  - I could add guest role to all security groups with R (read) privileges.
  I will look into all options and implement the one which is more apt.
  Regards,
  Pratap

• How to change mail-enabled security group to security group

  Hi,
  As a test I have configured on the properties page of a security group an email adres. By doing this converted a security group to a mail-enabled security group. Also this group has been transferd to Office 365. But after testing I want to make the distribution
  groups on the Exchange in Office 365. So I deleted the emaila dres of the security group, but it still synchronized to Office 365 as a mail-enabled security group. How can I change in AD the mail-enabled security group to a security group?
  Thanks in advance

  Hi StijnS,
  For the O365 question there are Office 365 technical forums available at
  http://community.office365.com/en-us/f/default.aspx.
  The related article:
  Office 365 Forum Assistant
  http://blogs.technet.com/b/neilhobson/archive/2011/09/20/office-365-forum-assistant.aspx
  Hope this helps.
  We
  are trying to better understand customer views on social support experience, so your participation in this
  interview project would be greatly appreciated if you have time.
  Thanks for helping make community forums a great place.

• How to restrict two employees from viewing each others' activities in a particular account?

  Dear Experts,
  I have a scenario here and request your kind input to bring a solution to it.
  I have two sales org. in one company. One is SO1 and other one is SO2. I want to restrict the sales employee of SO1 and SO2. Both of them are working in the same national account. I don’t want the SO1 sales employee to see what the SO2 sales employee does in that particular account; and the vice versa. So, it’s just restricting the view of particular account for both of them. Is it possible in CRM? If yes, how do you do that?
  Looking forward to the right solution.
  Thanks & Regards,
  SMTP

  Hi SMTP,
  This can be done by using authorization profiles. Here we need to crete two Authorization objects separately such a way that each of them should be allowed to one sales organization. And then assign these Authorization objects to users, based on their sales organization(Your requirement).
  You need to reach your Basis Consultant and explain the scenario.Basis people can easily do this.
  Thanks & Regards
  Ravi

• How can I create a materialized view based on hierarchical cube query?

  Hi,
  database version 10gR2.
  When i try to create MV for sql below, i got error .
  I tried creating MV log in several ways, but still, keep getting the same error.
  SQL Error: ORA-12015: cannot create a fast refresh materialized view from a complex query
  12015. 00000 -  "cannot create a fast refresh materialized view from a complex query"
  *Cause:    Neither ROWIDs and nor primary key constraints are supported for
             complex queries.
  *Action:   Reissue the command with the REFRESH FORCE or REFRESH COMPLETE
             option or create a simple materialized view.So, I wonder if it is possible to create MV based on sql below?
  if yes, how should I do it?
  if no, what is the alternative?
  select
        coalesce(UP_ORG_ID_6, UP_ORG_ID_5, UP_ORG_ID_4, UP_ORG_ID_3, UP_ORG_ID_2, UP_ORG_ID_1) as ORG_ID,
        a.day_id as day_id,     
        a.TRADE_TYPE_ID as TRADE_TYPE_ID,
        a.CUST_ID,
        coalesce(UP_CODE_6, UP_CODE_5, UP_CODE_4, UP_CODE_3, UP_CODE_2, UP_CODE_1) as product_id,
        QUANTITY_UNIT,
        COST_UNIT,
        A.SOURCE_ID as SOURCE_ID,
        SUM(CONTRACT_AMOUNT) as CONTRACT_AMOUNT,
        SUM(CONTRACT_COST) as CONTRACT_COST,
        SUM(SALE_AMOUNT) as SALE_AMOUNT,
        SUM(SALE_COST) as SALE_COST,
        SUM(ACTUAL_AMOUNT) as ACTUAL_AMOUNT,
        SUM(ACTUAL_COST) as ACTUAL_COST,
        SUM(TRADE_COUNT) as TRADE_COUNT     
  from DM_F_LO_SALE_DAY a, DM_D_ALL_ORG_FLAT B, DM_D_ALL_PROD_FLAT D
  where a.ORG_ID=B.ORG_ID
        and a.PRODUCT_ID=D.CODE
        and a.day_id=20110201
  group by rollup(UP_ORG_ID_1, UP_ORG_ID_2, UP_ORG_ID_3, UP_ORG_ID_4, UP_ORG_ID_5, UP_ORG_ID_6),
        a.TRADE_TYPE_ID,
           a.day_id,
        A.CUST_ID,
        rollup(UP_CODE_1, UP_CODE_2, UP_CODE_3, UP_CODE_4, UP_CODE_5, UP_CODE_6),
        a.QUANTITY_UNIT,
        a.COST_UNIT,
        a.SOURCE_ID;Thanks in advance.

  Rob vanWjik has an excellent series of fast refresh materialized views starting here:
  http://rwijk.blogspot.com/2009/05/fast-refreshable-materialized-view.html
  Part three specifically on aggregate MVs is here:
  http://rwijk.blogspot.com/2009/06/fast-refreshable-materialized-view.html

• How to restrict infotype data from SE16 based on country?

  Hello.
  We're a global company and the US organization wants to view infotype data from the PA tables.  At the same time, we are not allowed to view data from other countries from these PA tables.  Is there a way to restrict the output in SE16 by country code?  If not, are there any options we can implement so that we can view the US data from these PA tables?
  Thank you.
  Ashish.

  But SE16 doesn't seem to be doing checks on Personnel Area and Subarea.  Isn't that applied to user roles so that ABAP programs only extract relevant data for that user?  The only authority checks I found for SE16 in the code are:
    authority-check object 'S_TABU_DIS'
             id 'DICBERCLS' field tddat-cclass
      authority-check object 'S_TABU_CLI'
                      id 'CLIIDMAINT' field 'X'.
  So I am not clear how SE16 is restricted by Personnel Area and Subarea.
  Thanks,
  Ashish.

• How to restrict the way to view or print a pdf file

  I am searching for a technique by which I can export a pdf file with following features
  Prompt a pdf viewer to accept some agreement such that the document can't be viewed until user accepts it
  Prompt a pdf viewer to select language so that corresponding content for a selected language is displayed
  Gives options while exporting so that the pdf can't be printed or copied by a pdf viewer
  One probable solution could be to use javascript in Adobe Pro but I am worried about what updates should my pdf viewers should do with the pdf viewer to enable javascript.

  Nothing can prevent a file from being copied/emailed/etc. DRM and certificate security can restrict the identity of the person who can open the file, but moving it about on disk is an operating system task - the file is never opened so it cannot influence the task.
  try67 wrote:
  You can't prevent a file from being copied, unless you use DRM technology.

• How to restrict payroll users from viewing IT0002 or other personnel data?

  Hi,
  We need to device a authorization for payroll users in such a way, that they are allowed to access and edit  IT 0014, IT0015, IT0580 to IT591 but they are not even allowed to view infotype IT0000 to IT0007.
  They will still be allowed to do payroll processing of all employees.
  Problem is - if we disable PA20 to PA40 transaction for these users, then they will not be able edit IT 14, 15 etc and vice-versa.
  Please advice how can we do this.
  Effective solutions will rewarded

  Am just wondering like this -
  for a User who will update IT8 etc infotypes and run payroll for all employees:
  Allow infotype access to all Infotypes via P_ORGIN/P_ORGINCON and then
  exclude Infotype access to IT0000 to IT0007 via P_ORGIN/P_ORGINCON
  Does Payroll run after the above if executed by this employee? because in my view the user has access to IT08 and other payroll related infotypes and hence should run (but I think IT0, IT1 &2 might also be required for for various reasons for payroll to run - not sure);
  Or probably you might need to think of executing/triggering the Payroll process via Batch process (thru a batch user Id which has access to all)...because it wont be a best practice to have manually initiate the Payroll process...
  Regards
  Chandra
  Message was edited by:
          Chandramouly V

• DB view was enhanced in R/3 - how to get new fields in view based ds

  Hi Folks,
  in R/3 a database view was changed - there two new fields.
  How do I get this two new fields into the data source structure and automatically extracted?
  Do I have to delete and re-create the data source?
  Or do I have the ability to "update the strucutre" via rsa6
  I don't have a development key so I can't check myself but I have to give detail description how to do it to folks that got a development key
  All replies appreciated.
  Thanks and best regards,
  Axel

  Hi Axel,
  1.I think first you need to update view .Go to SE11 and update view by adding new fields coming in your view .
  2.If fields are coming from same table on which table is build then you need to click on table fields button and then add those fields to your view .Then you need to update your data source table (extract structure for same).
  3.If your fields are not coming from same table or you want them to populate via lookup to some other table or via Function module then in your extract structure you need to append fields in append structure via RSA6 or RSO2 .You can also use RSA2 for changing structure .
  4.You don't need to delete and recreate data source .Just need to change view and update data source accordingly .
  Please go through this doc you will find it helpful .
  http://www.sdn.sap.com/irj/scn/go/portal/prtroot/docs/library/uuid/10a89c00-7dd7-2d10-6f83-cd24ee6d517c?quicklink=index&overridelayout=true
  Hope this will be helpful .
  Regards,
  Jaya Tiwari

• How can I set a customized view in finder set as standard for ALL folders?

  As I have a large number of folders, I need a specific view in finder: symbol view, sort by program and name. I tried to use this settings as standard for ALL folders, but using the 'set as standard' button does only work for the folder I am in, but not for ALL folders. I even tried to use this settings on the hard disk level in finder, but what ever I tried, it never applies to all folders. The problem occurs on each of my devices and on Yosemite OS 10.10.1. as well as Mavericks 10.9.5. Any ideas on how I can make the 'standard' work on all folders?

  As Vinod says, unique key validator would be fine.
  However, In Gabriel's blog:
  Performing a unique key validation for an attribute that is declared to be unique in the database requires a round trip to the database. This is quite expensive and there is a fast and easy way to work around it.Is false on several fronts:
  1). it's not expensive - it's actually cheaper than the alternative
  2). Unique key validator can require many trips to the DB to validate - it must check all other rows in the EO to ensure there is no duplicate, and all of those rows must be fetched into the middle tier to do the validation: this is expensive.
  The "cheapest" way to do this: unique constraint in the DB
  John

• How to restrict a user to view the file from web URL

  Hi,
  I want to restrict any user who are trying access any js file or any client side file from web URL.
  For eg. if user put www.test.com/js/sample.js in browser then he will able to view the code.
  Is there any way to restrict the same.
  Please suggest.
  Any suggesion.
  Thanks In Advance
  Manoj
  Edited by: user12780476 on Dec 28, 2011 12:18 AM

  Does the javascript file is really a private resource?
  Assuming it is a private resource, here are the few things you can do :
  1. Don't put it into document root at all.
  2. Put it in a location where access is denied e.g.
  /mydocs/private/
  <If uri =~ '/private'>
  PathCheck fn="deny-existense"
  </If>
  3. Use access control list (acls) to deny access to private resources.
  4. Use <If> else around send-file SAF e.g.
  <If uri !~ "*.js">
  Service fn="send-file"
  </If>
  5. Use htaccess to deny access to those resources.
  So it all depends on what you really want to achieve.

• How to restrict values in one prompt based on value from another prompt

  Hi
         I have a requirement as follows. I have two fields (objects)
  program code
  contract number
  one program code can have several contract numbers.
  I need to provide prompts on Program code and contract number. when user selects one program from the prompt on program code then contract field should only show contract numbers belonging the program user selected.
  Please let me know how to bring this functionality in Webi report.
  Thanks in advance.

  Hi
  if ur requirement is in query level its impossible.(i mean whn u click on programcode then u have to display in contract at query level)
  if you want to display at report level then  
  The two objects Program and contract have a mapping then place a program object in query filter and use operator equal to and select prompt and run the query then it will ask you to select program .whn on choosing it you will  get filtered contract numbers for that program in report level  . There no need to use prompt for contract numbers object .
  Hope this helps u
  Thanks
  sunil
  Edited by: K.sunil on Nov 7, 2011 9:30 AM

• How to create and register custom views for Bulk Export

  In the FAQ of "Understanding Bulk Export" chapter, it says "You can define your own view object for export. However, before you can use your view object for export, you must register
  and enable it as an export object in the Setup and Maintenance, Manage Export Objects task."
  Task "Manage Export Objects" does not have a create or edit option. Do I have to use a particular rol to activate this options?

  As you state this is likely related to the permissions you have. Have you confirmed that you have the necessary roles mentioned in the documentation ? I think you would need at least "Application Implementation Consultant" and potentially others from the list also depending on the objects accessed.
  Jani Rautiainen
  Fusion Applications Developer Relations
  https://blogs.oracle.com/fadevrel/