Restrict access to ztable data

Hi all,
I have one ztable for password. and our user have authorisation of SE16 so that they can able to access that table data easily.
They need this authorisation for accessing other table data.So I want to restrict that perticular ztable data access only.
Thanks.

Hii,
Check this thread,[Link|Restrict access to Particular ZTABLE via SE16...;
This will solve ur problem.
Regards,
Archana

Similar Messages

Restricting Access to "Load Data" Task in Workspace

In HFM 9.3.1 it appears as though any user, regardless of their HFM Role, can create a task list in Workspace (Administration<Manage Documents<Tasklists<New Tasklist) and add the "Data Load" and "Data Extract" tasks to the list. I tested this with a user who only had the Create Journals role. He was able to create a task list and include the Data Load task.
I would like to restrict users from being to load data to HFM through Workspace, but I don't know how to prevent them from creating their own task lists and including the Data Load task.
Any thought?

Hi,
go to the PageDef file and select the iterator. Set the Refresh condition to Never (in which case you need to explicitly query the iterator) or use the refresh condition property to add EL that references a managed bean that returns true/false based on whether the table should be populated or not. Another option, in case you wanted to let the user enter query criteria is to create a ViewCriteria in ADF BC and drag/drop it as a Query panel with table
Frank

Ability to restrict access to different Plan Types in Planning 11.1.2 ?

Hi, we're running Planning/EPM version 11.1.2, with DRM and EPMA.
We're creating a new Plan Type (Plan 2) within the Planning app, and if possible I'd like to restrict access to this 2nd plan type to only a small group of users. This 2nd plan type would be for additional what-if testing and we don't want their work to interfere with the main cube in Plan 1. Is it possible to use security provisioning or another technique so I can restrict who can have access to Plan 2?
Also if I can do this, is it also possible to have Planning data forms that are only visible to Plan 2 and it's users?
Thanks in advance.

You can restrict forms easily using groups and/or direct provisioning.
Typically you will always have security on your scenario dimension; I suggest using scenario or version security to restrict access to your data.
Regards,
John A. Booth
http://www.metavero.com

Restrict access for Vendor Master Data

Hi all.
Our company structure is like below:
Single instance, just one mandant.
Company codes like 1001, 3001, 6002, 6006, etc... over the world.
At some companies just the central administration can create vendor for the companies using the transaction XK01.
Now we need to give access to users from one of our company from other country but we can´t give access to transaction XK01 because just the central administration can create the master data for the vendors.
I already read about the object F_LFA1_AEN that is possible to create some field groups and give access just for the rigth groups. I also read that this authorization groups don´t have effect on the vendor master data like address.
How can I restrict access for the vendor master data? I´m thinking to give access to transaction FK01 and MK01 and restrict access for create a new vendor, I only want that the users can create the data for a new company or new purchase organization.
Thank you
Darlei Friedel

among many other authorization objects, you find following three:
F_LFA1_GEN general data
F_LFA1_BUK company code data
M_LFM1_EKO purchasing org data.
If the user does not have authorization for F_LFA1_GEN , then he cannot maintain general data.

HR data administration and reporting - restricting access

Hello All
We have a single role for HR data adminsitrators. There is no distinction on PA, PSA u2013 no further breakdown u2013 everyone gets to see everything and they have access to change everything. How may we restrict access? Any help would be greatly appreciated.

Hi,
Please let me know if you are using Structural authorizations.
For non-structural security, without any breakdown on PA, PSA, EE groups/subgroups, you may use Organizational key (VDSK1 field of Auth object P_ORIGIN) to restrict the data access.
In the standard configuration, the field is filled with the values of Personnel Area and Cost Center.In Customizing activity, you can set up Organizational Key and define your own rules for the field. Ex: Organizational Key with an employeeu2019s Organizational Unit and Cost Center. It can be configured to include any of the data from Infotype 0001 (Organizational Assignment) within HR.
The Organizational Key essentially provides an additional user-defined field to be used for security restrictions.
Hope it helps!
Thanks,
Sandipan

Restricting access to a cube while it is being maintained

Hi,
We are trying to restrict access via discoverer/excel add in to a CUBE while cube is being maintained. We were able to achieve this by revoking privileges to certain roles before the start of the cube build.
I would like to know if there is any better way or built in functionality(out of box) that restricts access to a cube a while it is refreshing? Any help is appreciated.

Ragnar is correct, the best way to do this is to attach the AW in exclusive mode. You can either do this manually yourself before starting your load job, or automatically by scheduling the job and using mutiple processes to load and solve the cube.
The problem is removing users currently viewing data via Excel/Disco when the job starts. If you can ensure there will be no users accessing the AW when the job starts, then the exclusive attach mode will prevent any users from attaching the AW during the processing. If you cannot guarantee this, then there is a problem because the job will fail when it tries to attach the AW in exclusive mode. Obviously you could put this in a loop and wait until a user exits the front end application and releases the AW. Alternatively, you could write a SQL script to disconnect/kill all sessions accessing the AW - not very nice for the users though if they are building a report because they will lose all their unsaved changes.
When the AW is attached in exclusive mode, bad news is that Discoverer/Excel will probably generate a nasty Java error message when a user tries to connect using Discoverer/Excel.
Therefore, overall not an ideal situation. But I cannot think of a really good way to manage this at the moment. Sorry I can't be more helpful.
Keith Laker
Oracle EMEA Consulting
OLAP Blog: http://oracleOLAP.blogspot.com/
OLAP Wiki: http://wiki.oracle.com/page/Oracle+OLAP+Option
DM Blog: http://oracledmt.blogspot.com/
OWB Blog : http://blogs.oracle.com/warehousebuilder/
OWB Wiki : http://wiki.oracle.com/page/Oracle+Warehouse+Builder
DW on OTN : http://www.oracle.com/technology/products/bi/db/11g/index.html

How can I restrict access to add. internal hard drive by account?

Hello! Okay, so I am my computer's administrator, and I have a secondary 'guest' account that anyone else can use. So, I know that all my data on my main, OS hard drive is secure from the guest account accessing it, but what about the additional hard drive that I have installed?
I have a good deal of sensitive data and files stored (and aliased) on my second internal drive that I do not care for 'guest' users to stumble upon. How can I restrict access to the secondary storage hard drive from my Guest login account, and/or just plain hide it from it? Surely, there is a need for this that has brought about a solution. Any tips/advice/solutions?
Thanks!!!
=)

Click here and follow the instructions followed by placing the folders and files on the image; if the password is in the keychain, it will be supplied whenever you're logged in.
(41018)

Multiple Users Can't Access Time Capsule Data

My wife and I have two separate Apple MacBooks that share a Time Capsule. We have different account names on these respective computers. I initially set up my Time Capsule and created folders that I can access from Finder.app when I connect over our wireless network. In Airport Utility.app, under the "Disks" tab, I set up the shared disks "with device password", so that she and I can mutually access all the data on the Time Capsule. However, when I try to access it from her computer, I click on the Time Capsule in Finder.app and get this dumb Sharepoint icon--a total dead end. I created another account on her computer with the same name as the account on my own computer, and from that account, I'm able to access all of the data on the Time Capsule. This therefore seems to be a permissions issue, but I've checked all of the files and folders on the Time Capsule and ensured that they all have "everyone read & write" access, so there should be no restrictions on access to this data.
Why are the volumes on my Time Capsule sensitive to the user accessing them? How do I set up data repositories on the Time Capsule that can be accessible to all users on my network? I'm out of ideas.

Are both computers actually running Mavericks??
This is very typical Yosemite problem.
For some reason which I don't yet understand Yosemite is horrible at handling network drives.
dumb Sharepoint icon
Sharepoint is a dlink app?? If you have ever had some app loaded that uses a different product to apple then it can mess your access.
WD share stuff seems to be the worst and causes no end of problems.
What you are seeing btw is the TC is not a NAS.. you are trying to use it as one.. but it isn't.

Problem while accessing a complex data type

hi,
I am getting a problem while accessing a complex data type
I have a wsdl as:
<?xml version="1.0" encoding="UTF-8" ?>
- <definitions name="OutlookReminderService" targetNamespace="http://ws.aftek.com/outlook-reminder" xmlns="http://schemas.xmlsoap.org/wsdl/" xmlns:ns2="http://ws.aftek.com/outlook-reminder/schemas" xmlns:ns3="http://java.sun.com/jax-rpc-ri/internal" xmlns:soap="http://schemas.xmlsoap.org/wsdl/soap/" xmlns:tns="http://ws.aftek.com/outlook-reminder" xmlns:xsd="http://www.w3.org/2001/XMLSchema">
- <types>
- <schema targetNamespace="http://ws.aftek.com/outlook-reminder/schemas" xmlns="http://www.w3.org/2001/XMLSchema" xmlns:soap11-enc="http://schemas.xmlsoap.org/soap/encoding/" xmlns:tns="http://ws.aftek.com/outlook-reminder/schemas" xmlns:wsdl="http://schemas.xmlsoap.org/wsdl/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
<import namespace="http://schemas.xmlsoap.org/soap/encoding/" />
<import namespace="http://java.sun.com/jax-rpc-ri/internal" />
- <complexType name="TaskVO">
- <sequence>
<element name="dueDate" type="long" />
<element name="percentageComplete" type="int" />
<element name="priorty" type="int" />
<element name="reminderDate" type="long" />
<element name="reminderSet" type="boolean" />
<element name="startDate" type="long" />
<element name="status" type="int" />
<element name="subject" type="string" />
<element name="taskId" type="string" />
</sequence>
</complexType>
- <complexType name="NoSuchUserException">
- <sequence>
<element name="message" type="string" />
</sequence>
</complexType>
- <complexType name="ArrayOfContactVO">
- <complexContent>
- <restriction base="soap11-enc:Array">
<attribute ref="soap11-enc:arrayType" wsdl:arrayType="tns:ContactVO[]" />
</restriction>
</complexContent>
</complexType>
- <complexType name="ContactVO">
- <sequence>
<element name="birthDate" type="long" />
<element name="companyAddress" type="string" />
<element name="companyName" type="string" />
<element name="emailID1" type="string" />
<element name="emailID2" type="string" />
<element name="emailID3" type="string" />
<element name="faxNumber" type="string" />
<element name="firstName" type="string" />
<element name="homeAddress" type="string" />
<element name="lastName" type="string" />
<element name="middleName" type="string" />
<element name="mobileNumber" type="string" />
<element name="phoneNumber" type="string" />
<element name="workContactNumber" type="string" />
</sequence>
</complexType>
</schema>
- <schema targetNamespace="http://java.sun.com/jax-rpc-ri/internal" xmlns="http://www.w3.org/2001/XMLSchema" xmlns:soap11-enc="http://schemas.xmlsoap.org/soap/encoding/" xmlns:tns="http://java.sun.com/jax-rpc-ri/internal" xmlns:wsdl="http://schemas.xmlsoap.org/wsdl/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
<import namespace="http://schemas.xmlsoap.org/soap/encoding/" />
<import namespace="http://ws.aftek.com/outlook-reminder/schemas" />
- <complexType name="arrayList">
- <complexContent>
- <extension base="tns:list">
<sequence />
</extension>
</complexContent>
</complexType>
- <complexType name="list">
- <complexContent>
- <extension base="tns:collection">
<sequence />
</extension>
</complexContent>
</complexType>
- <complexType name="collection">
- <complexContent>
- <restriction base="soap11-enc:Array">
<attribute ref="soap11-enc:arrayType" wsdl:arrayType="anyType[]" />
</restriction>
</complexContent>
</complexType>
</schema>
</types>
<message name="OutlookServer_addTaskResponse" />
- <message name="OutlookServer_getListResponse">
<part name="result" type="ns3:arrayList" />
</message>
- <message name="OutlookServer_getContactListResponse">
<part name="result" type="ns2:ArrayOfContactVO" />
</message>
- <message name="NoSuchUserException">
<part name="NoSuchUserException" type="ns2:NoSuchUserException" />
</message>
- <message name="OutlookServer_getContactList">
<part name="String_1" type="xsd:string" />
</message>
- <message name="OutlookServer_getList">
<part name="String_1" type="xsd:string" />
</message>
- <message name="OutlookServer_addTask">
<part name="String_1" type="xsd:string" />
<part name="TaskVO_2" type="ns2:TaskVO" />
</message>
- <message name="OutlookServer_reminderOccurredResponse">
<part name="result" type="xsd:boolean" />
</message>
- <message name="OutlookServer_reminderOccurred">
<part name="String_1" type="xsd:string" />
<part name="TaskVO_2" type="ns2:TaskVO" />
</message>
- <portType name="OutlookServer">
- <operation name="addTask" parameterOrder="String_1 TaskVO_2">
<input message="tns:OutlookServer_addTask" />
<output message="tns:OutlookServer_addTaskResponse" />
<fault message="tns:NoSuchUserException" name="NoSuchUserException" />
</operation>
- <operation name="getContactList" parameterOrder="String_1">
<input message="tns:OutlookServer_getContactList" />
<output message="tns:OutlookServer_getContactListResponse" />
<fault message="tns:NoSuchUserException" name="NoSuchUserException" />
</operation>
- <operation name="getList" parameterOrder="String_1">
<input message="tns:OutlookServer_getList" />
<output message="tns:OutlookServer_getListResponse" />
<fault message="tns:NoSuchUserException" name="NoSuchUserException" />
</operation>
- <operation name="reminderOccurred" parameterOrder="String_1 TaskVO_2">
<input message="tns:OutlookServer_reminderOccurred" />
<output message="tns:OutlookServer_reminderOccurredResponse" />
<fault message="tns:NoSuchUserException" name="NoSuchUserException" />
</operation>
</portType>
- <binding name="OutlookServerBinding" type="tns:OutlookServer">
<soap:binding style="rpc" transport="http://schemas.xmlsoap.org/soap/http" />
- <operation name="addTask">
<soap:operation soapAction="" />
- <input>
<soap:body encodingStyle="http://schemas.xmlsoap.org/soap/encoding/" namespace="http://ws.aftek.com/outlook-reminder" use="encoded" />
</input>
- <output>
<soap:body encodingStyle="http://schemas.xmlsoap.org/soap/encoding/" namespace="http://ws.aftek.com/outlook-reminder" use="encoded" />
</output>
- <fault name="NoSuchUserException">
<soap:fault encodingStyle="http://schemas.xmlsoap.org/soap/encoding/" name="NoSuchUserException" namespace="http://ws.aftek.com/outlook-reminder" use="encoded" />
</fault>
</operation>
- <operation name="getContactList">
<soap:operation soapAction="" />
- <input>
<soap:body encodingStyle="http://schemas.xmlsoap.org/soap/encoding/" namespace="http://ws.aftek.com/outlook-reminder" use="encoded" />
</input>
- <output>
<soap:body encodingStyle="http://schemas.xmlsoap.org/soap/encoding/" namespace="http://ws.aftek.com/outlook-reminder" use="encoded" />
</output>
- <fault name="NoSuchUserException">
<soap:fault encodingStyle="http://schemas.xmlsoap.org/soap/encoding/" name="NoSuchUserException" namespace="http://ws.aftek.com/outlook-reminder" use="encoded" />
</fault>
</operation>
- <operation name="getList">
<soap:operation soapAction="" />
- <input>
<soap:body encodingStyle="http://schemas.xmlsoap.org/soap/encoding/" namespace="http://ws.aftek.com/outlook-reminder" use="encoded" />
</input>
- <output>
<soap:body encodingStyle="http://schemas.xmlsoap.org/soap/encoding/" namespace="http://ws.aftek.com/outlook-reminder" use="encoded" />
</output>
- <fault name="NoSuchUserException">
<soap:fault encodingStyle="http://schemas.xmlsoap.org/soap/encoding/" name="NoSuchUserException" namespace="http://ws.aftek.com/outlook-reminder" use="encoded" />
</fault>
</operation>
- <operation name="reminderOccurred">
<soap:operation soapAction="" />
- <input>
<soap:body encodingStyle="http://schemas.xmlsoap.org/soap/encoding/" namespace="http://ws.aftek.com/outlook-reminder" use="encoded" />
</input>
- <output>
<soap:body encodingStyle="http://schemas.xmlsoap.org/soap/encoding/" namespace="http://ws.aftek.com/outlook-reminder" use="encoded" />
</output>
- <fault name="NoSuchUserException">
<soap:fault encodingStyle="http://schemas.xmlsoap.org/soap/encoding/" name="NoSuchUserException" namespace="http://ws.aftek.com/outlook-reminder" use="encoded" />
</fault>
</operation>
</binding>
- <service name="OutlookReminderService">
- <port binding="tns:OutlookServerBinding" name="OutlookServerPort">
<soap:address location="http://truptid:8080/outlook-reminder-service/outlook" />
</port>
</service>
</definitions>
My client is :
private static String     BODY_NAMESPACE_VALUE     = "http://ws.abc.com/outlook-reminder";
     private static String     ENCODING_STYLE_PROPERTY     = "javax.xml.rpc.encodingstyle.namespace.uri";
     private static String     NS_XSD                         = "http://www.w3.org/2001/XMLSchema";
     private static String     URI_ENCODING               = "http://schemas.xmlsoap.org/soap/encoding/";
try{
ServiceFactory factory = ServiceFactory.newInstance();
                    Service service = factory.createService(new QName("OutlookReminderService"));
                    QName port =new QName("OutlookReminderService","OutlookServerPort");
                    Call call =service.createCall(port);
                    call.setTargetEndpointAddress("http://localhost:8080/outlook-reminder-service/outlook?wsdl");
                    call.setProperty(Call.SOAPACTION_USE_PROPERTY, new Boolean(true));
                    call.setProperty(Call.SOAPACTION_URI_PROPERTY, "");
                    call.setProperty(ENCODING_STYLE_PROPERTY, URI_ENCODING);
                    call.getReturnType();
                    call.setOperationName(new QName(BODY_NAMESPACE_VALUE, "getList"));
                    QName QNAME_TYPE_STRING = new QName(NS_XSD, "string");
                    call.addParameter("String_1", QNAME_TYPE_STRING, ParameterMode.IN);
                    //http://ws.aftek.com/outlook-reminder/schemas
                    QName QNAME_TYPE_VO = new QName("http://schemas.xmlsoap.org/soap/encoding/", "Array");
                    System.out.println("Before Add Parameter");
               //     call.addParameter("result", QNAME_TYPE_VO, ParameterMode.OUT);
                    call.setReturnType(QNAME_TYPE_VO,ArrayList.class);
                    System.out.println("After Add Parameter");
                    Object[] params ={oUserVO.getUserName()};
                    oArrayList =(ArrayList)call.invoke(params);
                    System.out.println("After Invoked");
                    //System.out.println("invoked"+ arrayList);
               catch(SOAPFaultException faultException)
                    moLogger.debug("SOAPFaultException : ", faultException);
               catch(RemoteException oremoteException)
                    moLogger.debug("RemoteException", oremoteException);
          catch(ServiceException oServiceException)
                    moLogger.debug("ServiceException", oServiceException);          }
Error got is :
trailing block elements must have an id attribute
     at com.sun.xml.rpc.encoding.SOAPDeserializationContext.deserializeMultiRefObjects(SOAPDeserializationContext.java:81)
     at com.sun.xml.rpc.client.StreamingSender._send(StreamingSender.java:239)
     at com.sun.xml.rpc.client.dii.CallInvokerImpl.doInvoke(CallInvokerImpl.java:103)
     at com.sun.xml.rpc.client.dii.BasicCall.invoke(BasicCall.java:492)
     at com.ail.dhg.poc.business.dao.ContactDAO.getList(ContactDAO.java:255)
     at com.ail.dhg.poc.business.facade.ContactFacade.getList(ContactFacade.java:189)
     at com.ail.dhg.poc.business.AcceptInput.main(AcceptInput.java:72)
java.lang.NullPointerException
     at com.ail.dhg.poc.business.dao.ContactDAO.getList(ContactDAO.java:277)
     at com.ail.dhg.poc.business.facade.ContactFacade.getList(ContactFacade.java:189)
     at com.ail.dhg.poc.business.AcceptInput.main(AcceptInput.java:72)
Message was edited by:
trupti_d

Use lower case letters for your variable names (name, pwd). The code works then.
package com.bluenile.bean;
import java.io.*;
public class Bean1 implements Serializable
private String name="Uname";
private String pwd="Pword";
public String getName()
return name;
public String getPwd()
return pwd;
void setName(String name)
this.name = name;
void setPwd(String pwd)
this.pwd = pwd;
<HTML>
<BODY BGCOLOR="#FFFFFF">
<%@ page language="java" contentType="text/html" %>
<jsp:useBean id="b1" class="com.bluenile.bean.Bean1" />
<ul>
<li>Name : <jsp:getProperty name="b1" property="name" />
<li>Pwd : <jsp:getProperty name="b1" property="pwd" />
</ul>
</BODY>
</HTML>

Restrict Access To Page Not Working with Different Auth Levels

I have just started playing with the idea of using different auth levels to allow different users access to certain pages on my site.
Within my SQL database I have a authlevel table consisting of 3 possible levels (guest, user, admin)
I am using the Dreamweaver "Log in user" to log in users based on username, pass, and auth level and "Restrict access to page" set to allow user levels 'user' and 'admin'.
The problem, however, occurs when trying to log in. No matter what auth level I try I am redirected to my page where users should be redirected if they are not allowed to enter that page.
I have included below my code from my login page and the page where all authorized users (user and admin) should be directed upon entering the restricted area.
Login Page:
<?php require_once('../Connections/hondovfd.php'); ?>
<?php
if (!function_exists("GetSQLValueString")) {
function GetSQLValueString($theValue, $theType, $theDefinedValue = "", $theNotDefinedValue = "")
if (PHP_VERSION < 6) {
    $theValue = get_magic_quotes_gpc() ? stripslashes($theValue) : $theValue;
$theValue = function_exists("mysql_real_escape_string") ? mysql_real_escape_string($theValue) : mysql_escape_string($theValue);
switch ($theType) {
    case "text":
      $theValue = ($theValue != "") ? "'" . $theValue . "'" : "NULL";
      break;
    case "long":
    case "int":
      $theValue = ($theValue != "") ? intval($theValue) : "NULL";
      break;
    case "double":
      $theValue = ($theValue != "") ? doubleval($theValue) : "NULL";
      break;
    case "date":
      $theValue = ($theValue != "") ? "'" . $theValue . "'" : "NULL";
      break;
    case "defined":
      $theValue = ($theValue != "") ? $theDefinedValue : $theNotDefinedValue;
      break;
return $theValue;
?>
<?php
// *** Validate request to login to this site.
if (!isset($_SESSION)) {
session_start();
$loginFormAction = $_SERVER['PHP_SELF'];
if (isset($_GET['accesscheck'])) {
$_SESSION['PrevUrl'] = $_GET['accesscheck'];
if (isset($_POST['username'])) {
$loginUsername=$_POST['username'];
$password=$_POST['password'];
$MM_fldUserAuthorization = "authlevel";
$MM_redirectLoginSuccess = "/membersonly/membersonly.php";
$MM_redirectLoginFailed = "/membersonly/loginfailed.php";
$MM_redirecttoReferrer = false;
mysql_select_db($database_hondovfd, $hondovfd);
$LoginRS__query=sprintf("SELECT username, password, authlevel FROM login WHERE username=%s AND password=%s",
GetSQLValueString($loginUsername, "text"), GetSQLValueString($password, "text"));
$LoginRS = mysql_query($LoginRS__query, $hondovfd) or die(mysql_error());
$loginFoundUser = mysql_num_rows($LoginRS);
if ($loginFoundUser) {
    $loginStrGroup = mysql_result($LoginRS,0,'authlevel');
    //declare two session variables and assign them
    $_SESSION['MM_Username'] = $loginUsername;
    $_SESSION['MM_UserGroup'] = $loginStrGroup;
    if (isset($_SESSION['PrevUrl']) && false) {
      $MM_redirectLoginSuccess = $_SESSION['PrevUrl'];
    header("Location: " . $MM_redirectLoginSuccess );
else {
    header("Location: ". $MM_redirectLoginFailed );
?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />

<title>Log In</title>

<meta name="description" content="Hondo Fire and Rescue serves the Arroyo Hondo and Canada Village areas of Santa Fe County, NM." />
<meta name="keywords" content="hondo, hondo fire, hondo vfd, hondo fire department, santa fe county fire department, santa fe county, volunteer fire department, hondo volunteer fire department" />
<link href="../stylesheet.css" type="text/css" rel="stylesheet" />

<script src="../SpryAssets/SpryMenuBar.js" type="text/javascript"></script>
<link href="../SpryAssets/SpryMenuBarVertical.css" rel="stylesheet" type="text/css" />
</head>
<body class="thrColLiqHdr">
<div id="container">
<div id="header"></div>
<div id="sidebar1">
<h3>Navigation : </h3>
<ul id="MenuBar1" class="MenuBarVertical">
<li><a href="/index.php">Home</a></li>
<li><a href="/support.php">Support Hondo</a></li>
<li><a class="MenuBarItemSubmenu" href="#">Information Menu</a>
    <ul>
      <li><a href="/people.php">Our People</a></li>
      <li><a href="http://www.google.com/maps/ms?ie=UTF8&hl=en&msa=0&msid=101620713606637979698.00045b6ead4ab4ea70b78&z=11" target="_blank">Response Area</a></li>
      <li><a href="/medical.php">Medical</a></li>
      <li><a href="/apparatus.php">Apparatus</a></li>
      <li><a href="/training.php">Training</a></li>
      <li><a href="/volunteer.php">Volunteer</a></li>
      <li><a href="/statistics.php">Statistics</a></li>
      <li><a href="/patchtrading.php">Patch Trading</a></li>
    </ul>
</li>
<li><a href="/album.php">Photo Gallery</a></li>
<li><a href="/calendar.php">Calendar</a></li>
<li><a href="/news.php">Blog/News</a></li>
<li><a href="/links.php">Links</a></li>
<li><a href="/contact.php">Contact Us</a></li>
</ul>
<br />
<form action="https://www.paypal.com/cgi-bin/webscr" method="post">
<span class="lefttext">
<input type="hidden" name="cmd" value="_s-xclick">
<input type="hidden" name="hosted_button_id" value="8567201">
<input type="image" src="https://www.paypal.com/en_US/i/btn/btn_donate_LG.gif" border="0" name="submit" alt="PayPal - The safer, easier way to pay online!" />
<img alt="" border="0" src="https://www.paypal.com/en_US/i/scr/pixel.gif" width="1" height="1">
</img></input></input>
</span>
</form>
<span class="lefttext"><br />
</span>
<center>
<span class="lefttext"><a href="http://www.facebook.com/pages/Santa-Fe-NM/Hondo-Volunteer-Fire-Department/74284233488" target="_blank" class="lefttext">Hondo VFD on Facebook</a></span>
</center>
</div>
<div id="sidebar2">
    <p><a href="/membersonly/login.php">Log In</a> | <a href="/membersonly/logout.php">Log Out</a></p>
    <p>Call Statistics for <?php
$myFile = "/var/home/hondovfd/hondovfd.org/www/membersonly/month.txt";
$fh = fopen($myFile, 'r');
$theData = fread($fh, filesize($myFile));
fclose($fh);
echo $theData;
?> as of <?php
$myFile = "/var/home/hondovfd/hondovfd.org/www/membersonly/date.txt";
$fh = fopen($myFile, 'r');
$theData = fread($fh, filesize($myFile));
fclose($fh);
echo $theData;
?></p>
<table width="90%" border="0" cellspacing="0" cellpadding="0">
<tr>
    <td width="60%">EMS Calls</td>
    <td width="40%"><?php
$myFile = "/var/home/hondovfd/hondovfd.org/www/membersonly/emscalls.txt";
$fh = fopen($myFile, 'r');
$theData = fread($fh, filesize($myFile));
fclose($fh);
echo $theData;
?></td>
</tr>
<tr>
    <td>Fire Calls</td>
    <td><?php
$myFile = "/var/home/hondovfd/hondovfd.org/www/membersonly/firecalls.txt";
$fh = fopen($myFile, 'r');
$theData = fread($fh, filesize($myFile));
fclose($fh);
echo $theData;
?></td>
</tr>
</table>
<hr />
    <div id="cse" style="width:100%;">Loading</div>
<script src="http://www.google.com/jsapi" type="text/javascript"></script>
<script type="text/javascript">
google.load('search', '1');
google.setOnLoadCallback(function(){
    new google.search.CustomSearchControl().draw('cse');
}, true);
</script>
     
</div>

<div id="mainContent">
<div class="top"></div><div class="wrap">
<table width="100%" border="0" cellspacing="0" cellpadding="0">
<tr>
    <td height="47" class="h2">Members Only Login</td>
</tr>
<tr>
    <td><form ACTION="<?php echo $loginFormAction; ?>" id="login" name="login" method="POST">
    <table width="40%" border="0" cellspacing="0" cellpadding="0">
<tr>
    <td width="31%">Username:</td>
    <td width="69%"><input name="username" type="text" /></td>
</tr>
<tr>
    <td>Password</td>
    <td><input name="password" type="password" /></td>
</tr>
</table>
<input name="Submit" type="submit" />
    </form></td>
</tr>
</table>

</div>
<div class="bottom"></div>
</div>
      <br class="clearfloat" />
<div id="footer">
    <p align="center">© Copyright 2009 Hondo Volunteer Fire Department | <a href="mailto:[email protected]">Contact Us</a><a href="http://www.legalhelpers.com/chapter-13-bankruptcy/chapter13.html"></a><br />Hosting provided by <a href="http://studiox.com/" target="_blank">Studio X</a></p>
</div>
</div>
<script type="text/javascript">

</script>
<?php include_once("/var/home/hondovfd/hondovfd.org/www/analyticstracking.php"); ?>
</body>
</html>
Other Page:
<?php
if (!isset($_SESSION)) {
session_start();
$MM_authorizedUsers = "user,admin";
$MM_donotCheckaccess = "false";
// *** Restrict Access To Page: Grant or deny access to this page
function isAuthorized($strUsers, $strGroups, $UserName, $UserGroup) {
// For security, start by assuming the visitor is NOT authorized.
$isValid = False;
// When a visitor has logged into this site, the Session variable MM_Username set equal to their username.
// Therefore, we know that a user is NOT logged in if that Session variable is blank.
if (!empty($UserName)) {
    // Besides being logged in, you may restrict access to only certain users based on an ID established when they login.
    // Parse the strings into arrays.
    $arrUsers = Explode(",", $strUsers);
    $arrGroups = Explode(",", $strGroups);
    if (in_array($UserName, $arrUsers)) {
      $isValid = true;
    // Or, you may restrict access to only certain users based on their username.
    if (in_array($UserGroup, $arrGroups)) {
      $isValid = true;
    if (($strUsers == "") && false) {
      $isValid = true;
return $isValid;
$MM_restrictGoTo = "/membersonly/loginfailed.php";
if (!((isset($_SESSION['MM_Username'])) && (isAuthorized("",$MM_authorizedUsers, $_SESSION['MM_Username'], $_SESSION['MM_UserGroup'])))) {
$MM_qsChar = "?";
$MM_referrer = $_SERVER['PHP_SELF'];
if (strpos($MM_restrictGoTo, "?")) $MM_qsChar = "&";
if (isset($QUERY_STRING) && strlen($QUERY_STRING) > 0)
$MM_referrer .= "?" . $QUERY_STRING;
$MM_restrictGoTo = $MM_restrictGoTo. $MM_qsChar . "accesscheck=" . urlencode($MM_referrer);
header("Location: ". $MM_restrictGoTo);
exit;
?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />

<title>Members Only Area</title>

<meta name="description" content="Hondo Fire and Rescue serves the Arroyo Hondo and Canada Village areas of Santa Fe County, NM." />
<meta name="keywords" content="hondo, hondo fire, hondo vfd, hondo fire department, santa fe county fire department, santa fe county, volunteer fire department, hondo volunteer fire department" />
<link href="../stylesheet.css" type="text/css" rel="stylesheet" />

<script src="../SpryAssets/SpryMenuBar.js" type="text/javascript"></script>
<link href="../SpryAssets/SpryMenuBarVertical.css" rel="stylesheet" type="text/css" />
</head>
<body class="thrColLiqHdr">
<div id="container">
<div id="header"></div>
<div id="sidebar1">
<h3>Navigation : </h3>
<ul id="MenuBar1" class="MenuBarVertical">
<li><a href="/index.php">Home</a></li>
<li><a href="/support.php">Support Hondo</a></li>
<li><a class="MenuBarItemSubmenu" href="#">Information Menu</a>
    <ul>
      <li><a href="/people.php">Our People</a></li>
      <li><a href="http://www.google.com/maps/ms?ie=UTF8&hl=en&msa=0&msid=101620713606637979698.00045b6ead4ab4ea70b78&z=11" target="_blank">Response Area</a></li>
      <li><a href="/medical.php">Medical</a></li>
      <li><a href="/apparatus.php">Apparatus</a></li>
      <li><a href="/training.php">Training</a></li>
      <li><a href="/volunteer.php">Volunteer</a></li>
      <li><a href="/statistics.php">Statistics</a></li>
      <li><a href="/patchtrading.php">Patch Trading</a></li>
    </ul>
</li>
<li><a href="/album.php">Photo Gallery</a></li>
<li><a href="/calendar.php">Calendar</a></li>
<li><a href="/news.php">Blog/News</a></li>
<li><a href="/links.php">Links</a></li>
<li><a href="/contact.php">Contact Us</a></li>
</ul>
<br />
<form action="https://www.paypal.com/cgi-bin/webscr" method="post">
<span class="lefttext">
<input type="hidden" name="cmd" value="_s-xclick">
<input type="hidden" name="hosted_button_id" value="8567201">
<input type="image" src="https://www.paypal.com/en_US/i/btn/btn_donate_LG.gif" border="0" name="submit" alt="PayPal - The safer, easier way to pay online!" />
<img alt="" border="0" src="https://www.paypal.com/en_US/i/scr/pixel.gif" width="1" height="1">
</img></input></input>
</span>
</form>
<span class="lefttext"><br />
</span>
<center>
<span class="lefttext"><a href="http://www.facebook.com/pages/Santa-Fe-NM/Hondo-Volunteer-Fire-Department/74284233488" target="_blank" class="lefttext">Hondo VFD on Facebook</a></span>
</center>
</div>
<div id="sidebar2">
    <p><a href="/membersonly/login.php">Log In</a> | <a href="/membersonly/logout.php">Log Out</a></p>
    <p>Call Statistics for <?php
$myFile = "/var/home/hondovfd/hondovfd.org/www/membersonly/month.txt";
$fh = fopen($myFile, 'r');
$theData = fread($fh, filesize($myFile));
fclose($fh);
echo $theData;
?> as of <?php
$myFile = "/var/home/hondovfd/hondovfd.org/www/membersonly/date.txt";
$fh = fopen($myFile, 'r');
$theData = fread($fh, filesize($myFile));
fclose($fh);
echo $theData;
?></p>
<table width="90%" border="0" cellspacing="0" cellpadding="0">
<tr>
    <td width="60%">EMS Calls</td>
    <td width="40%"><?php
$myFile = "/var/home/hondovfd/hondovfd.org/www/membersonly/emscalls.txt";
$fh = fopen($myFile, 'r');
$theData = fread($fh, filesize($myFile));
fclose($fh);
echo $theData;
?></td>
</tr>
<tr>
    <td>Fire Calls</td>
    <td><?php
$myFile = "/var/home/hondovfd/hondovfd.org/www/membersonly/firecalls.txt";
$fh = fopen($myFile, 'r');
$theData = fread($fh, filesize($myFile));
fclose($fh);
echo $theData;
?></td>
</tr>
</table>
<hr />
    <div id="cse" style="width:100%;">Loading</div>
<script src="http://www.google.com/jsapi" type="text/javascript"></script>
<script type="text/javascript">
google.load('search', '1');
google.setOnLoadCallback(function(){
    new google.search.CustomSearchControl().draw('cse');
}, true);
</script>
     
</div>

<div id="mainContent">
<div class="top"></div><div class="wrap">
    <table width="100%" border="0" cellspacing="0" cellpadding="0">
<tr>
    <td height="47" class="h2">Members Only Area</td>
</tr>
<tr>
    <td><p><a href="/membersonly/documents.php">Useful Documents</a></p>
      <p><a href="/membersonly/IncidentCount01_08.pdf">Current Call Statistics</a> as of 9/3/09</p>
      </td>
</tr>
</table>
<script type="text/javascript">

</script>
</div>
<div class="bottom"></div>
</div>
      <br class="clearfloat" />
<div id="footer">
    <p align="center">© Copyright 2009 Hondo Volunteer Fire Department | <a href="mailto:[email protected]">Contact Us</a><a href="http://www.legalhelpers.com/chapter-13-bankruptcy/chapter13.html"></a><br />Hosting provided by <a href="http://studiox.com/" target="_blank">Studio X</a></p>
</div>
</div>
<script type="text/javascript">

</script>
<?php include_once("/var/home/hondovfd/hondovfd.org/www/analyticstracking.php"); ?>
</body>
</html>

you don't need all that bloat. set a session during login of some kind of uniquely identifying id. i.e.
$_SESSION['id'] = $row_rs['id'];
then on the pages you need to protect, check it like this....
<?php
session_start();
if (!(isset($_SESSION['id']) && $_SESSION['id'] != '')) {
die(header("Location: http://www.notinprotectedareas.com")); }
?>
you can use an include file i.e.
<?php require_once('login_check.php'); ?>
where file is name login_check.php to make your auth controls clean on your protected pages.

To limit the access of PM data based on the Company Code, Plant & Location

Hi Experts,
         I have a requirement . Customer wants to Restrict the access of PM data for a user based on the company code,
Plant & Location.
Say user : XYZ
Plant :1000
CCODE:1000
Location:0001
So you can see data of only this Organisation structure .No other data will be visible to him.
I know we can do it using authorisation object
Can you Suggest me how can we do this.
Regards,
Amar

Hi,
You can achieve this by maitaing these values in user authrisations. If you want more info about the objects check SU22 t code under PM.
For Plant              I_IWERK
For Location       I_ILOA
Regards,
N.Nagaraju

How to restrict access to views for some users in the app?

Hi SDN!
I have an WD application wich embedded in the portal. Appication has 2 iViews (and 2 pages respectively). These iViews consist several views connected with each other (e.g. one view provide list data, second view is add/edit form for this data). I need to restrict access for some users for view with add/edit form. I can't make separate page for this view.
What I've done:
1) create yet another UIContainer for this view in main window and embed view to this container. It was be done for create separate iView for form.
2) in the portal I create iView for this form but don't embedd in any page.
When I try to call my form from list data (that is one iView from another) I get exception:
<b>com.sap.tc.webdynpro.services.exceptions.WDRuntimeException: duplicate usage of view .MyCarRentalAddCity</b>
Is there a way to get needed functional?
Thanks,
Lev

Hi,
do you need to remove the IView from the portal menu or do you just want to make a View container in your WD application invisible if the user doesn't have the rights to see it.
If so, you could create your own roles on the app server:
You need to create a new class that extends NamePermission like:
import com.sap.security.api.permissions.NamePermission;
public class ApplicationAccessPermission extends NamePermission {
           * @param name
          public ApplicationAccessPermission(String name) {
               super(name);
           * @param name
           * @param action
          public ApplicationAccessPermission(String name, String action) {
               super(name, action);
Also, you have to create an Action.XML file that looks like this:
<BUSINESSSERVICE
     NAME="com.vendor.administration">
     <DESCRIPTION
          LOCALE="en"
          VALUE="actions view usage"/>
     <ACTION
          NAME="View Permission">
          <DESCRIPTION
               LOCALE="en"
               VALUE="Show view"
               />
          <PERMISSION
               CLASS="com.vendor.utilities.ApplicationAccessPermission"
               NAME="ShowView"
               />
     </ACTION>
</BUSINESSSERVICE>
If you have created these to files in your packages, you can access this function like:
IUser user ;
try {
          user = WDClientUser.getCurrentUser().getSAPUser();
          if(user.hasPermission(new ApplicationAccessPermission("Show view"))){
               wdContext.currentV_UIElement().setViewVisibility(WDVisibility.VISIBLE);
          }else{
               wdContext.currentV_UIElement().setViewVisibility(WDVisibility.NONE);
     }catch (WDUMException e1) {
          wdContext.currentV_UIElement().setViewVisibility(WDVisibility.NONE);
                e1.printStacktrace();
You have to bind the ViewVisibility attribute of the context to the View Container you want to hide.
The applicationAccessPermission you defined in the XML File will be visible in the UME Manager of you J2EE engine. With this action you can create a new role and group that you can map to the users that should see you view.
But, the exception you get is because you have embedded one view twice, which is not possible.
Hope this helps.
Regards,
Dennis

Need to restrict access to XD02/XD03

Hi All,
I need to restrict access to some acct group in the search screens for individuals who do not have access to this account group in transaction XD02/XD03. Other than this group we should not allow to search the screens.
Please guid me if any exit / badi....etc. where i can put this validation.
Thanks.
Raj.

Hi,
Try this link...
Customer Master Maintenace - restriction general data tabs
Regards,
Guru

Restrict Access to Page Using a password.php Instead of Server Behavior

I previously used "log in" and "restrict access to page" server behaviors for my client portal when I only had one client. I had my username and password stored in mySQL database. I recently have gained more clients that all needed to be redirected to their own customized landing page when logged in. Because of this, I used a password.php to store the usernames and passwords and to redirect to different pages. Now, I am wondering how I can restrict access to these pages (i.e. someone won't be able to access the pages by typing the url) since I will not be connecting to a database anymore.

I'm also confused by your statements.
>Now, I am wondering how I can restrict access to these pages
>(i.e. someone won't be able to access the pages by typing the url)
>since I will not be connecting to a database anymore.
It doesn't matter where you store the credentials - database or php file - the techniques for restricting access will be similar. I really don't understand why you moved away from the database when you got more clients. The more data you need to manage, the more reason to store it in a database.
After logging in, most sites direct users to the same page, yet pull user specific data from the database. If for some reason you can't do this and need to built individual pages for each client, then store the 'landing' page for the client in the php file or database. Restrict access to each page by comparing the logged in name with an allowed login name. Or a more dynamic approach would be to dynamically pass the page name to a database query that validates that it's ok for the logged in user to access.
Also, these questions are more appropriate for the app dev forum.

Restrict access with object F_LFA1_BEK - problem with F4 search

Hello,
we want to restrict access to some vendor accounts, which can be shown with transaction FK03 for example.
There is an authorization object F_LFA1_BEK, which can be maintained in the special vendor accounts in field authorization group.
A user with authorization for vendor account with authorization group ZZZZ in it can see all vendors with authorization group ZZZZ and all vendors with no authorization group. But he can't see vendor accounts with authorization group YYYY. To this point, it's ok.
If the user uses the F4 search help he is able to see the vendor accounts with authorization group YYYY too. And this is the problem - the user should not see these vendor accounts. With this option user is able to see address data of a vendor account he should not see.
Is there any possiblity to solve this problem?
Regards,
Julia

I don't know the current status, but this is being looked into generally as it is not only limited to the F4 on LFA/B/M1.
As you only access the name and some attribute data which you can display, it is not necessarily critical and there is no transaction data involved.
Good news is that the BAPIs for search help make these same granular checks which you are expecting.
If I hear something further about these developments I will let you know.
Cheers,
Julius

Restrict access to ztable data

Similar Messages

Maybe you are looking for