Tab Level Authorization

One of My application I plan to give the tab level authorization. I used two level tabs.
for example, the sub tabs are like aa,bb,cc. I need to write the authorization schemes and I need to get the tab name dynamically here to show this tab for only few users. This scheme will be seleted for all the tabs.
When I try with :app_tab_id, :parent_tab_cells bind variables, it's not working properly. Any one can suggest me how can I refer the tabname or tab label (like for page we are using app_page_id)
Advance thanks for your help
Balaji

Balaji:
I don't understand why you need to know the current-tab etc.
Authorizations can be applied at the tab level declaratively (in the tab's defintion).
So, your authorization should simply be something like 'return true for user1, user2, user3...' and this authorization should be specified as the 'Authorization' for the tab's authorization.
Varad

Similar Messages

  • Tab level authorization problem

    Hi,
    I have created an autherization schema using " exists sql query". I applied this autherization schema to a "parent tab"
    say"Tab1". I am having 5 standard tabs under this parent tab(Tab1) say tab2,tab3 .... My Standard tab tab2 is
    assosiated with the page 1. When the autherization schema assosiated to the parent tab(tab1) is not satisfying
    then that tab is not displaying. But the standard tabs assosiated to that parent tabs are displaying. But when i click
    any other parent tabs these standard tabs disappears. How can i fix this problem so that the standard tabs will not be
    dispayed,
    Thanks,
    TJ

    TJ (what's your first name?),
    You don't need authorization on the parent tabs; just put it on the standard tabs and if it passes, the parent tab will show - otherwise it won't.
    Scott

  • Authorization at Folder Tab level

    Hello Experts
                                 I have design a form which has lots of folder tabs , but now i want authorization at folder tab level, so that only authorized user has access to those tab, while unauthorize user is not able to see content inside the tab
    ex
    user1 - Full authorization
    user2 - No authorization on tab level
    Is it possible
    Plz suggest

    Hi,
    Yes u can write a small logic like that, for a specific user some folders will not be avaliable, for that i suggest u create a new UDT with some cols like user name, and folder item UID to restrict, so that the end user admin can update this table with the required folder item ID and user code as the users can change in the future,
    So u can have a logic like
    If loggedInUser = restrictedUser Then
    msgbox("Not authorized to view this information")
    bubbleevent = false
    End If
    U need to execute this logic in the item click event.
    Hope this helps,
    Vasu Natari.

  • Direct database data access without data level authorization check

    Hello,
    My customer raised issue about direct database data access. Due to the customeru2019s strong security policy, it shouldnu2019t be allowed.
    To prevent this kind of illegal data access, customer ask me to list up all the possibilities to display data without data level authorization check.
    The things in my mind are
    SQL Command Editor (for Oracle based system) : ORASPACE, DB02, ST04
    Query Based : SQVI (Quick Viewer), SQ01/SQ02/SQ03 (SAP Query)
    Data Browser : SE11, SE12, SE16, SE16N, SE17
    Table Maintenance : SM30
    Function Module : RFC_READ_TABLE
    Function Module : DB_EXECUTE_SQL (DML)
    Anyone knows anything which is not listed above?
    Thanks

    HI,
        Generally in production user's should not be given all these authorizations.
    Ram.

  • Tab Level Security

    Hi
    I have a question around Tab level security.
    We are deploying a Portal to 4 different parts of the organisation. Depending on which group the user is assigned will determine which Tab they are able to view. At present I am able to use the group to which the user is set up to allow them to view the correct tab. However I now need to only provide access to these tabs for certain users with a particular role/responsibility. So first the tab will only be available to users in Group A but I also now need to prevent some users in Group A without a particular role.
    Do I need to create a new group for all persons in Group A with the correct Responsibility or is there another way of doing this. For example on assigning them to Group A and then interrogate this Responsibility when they click on the Tab.
    I hope this makes sense ?
    Regards
    Kevin

    Just off the top of my head, can you create another discrete group of the Group A users who need access to the other tab, and then give that group view rights? Haven't played with it myself, but we use a similar strategy for other items.

  • Organization level authorization restrictions

    Hello All,
    Please can you let me know
    1) f it is possible to org level authorization restrictions for CLM documents and master data without any development?
    - E.g. while creating suppliers the user should only be able to create for the Company assigned to the user id?
    2) What is the significance of the company and organization unit fields in the user account information page?
    Regards,
    Subramaniam Iyer

    Hi ,
    Could you share about your solution ? I think I have face the same problem as yours.

  • Object level authorization for SLT Configuration schema in HANA DB

    Hi All,
    We have connected SLT with HANA DB (& ECC as source system).
    Now for certain users we wanted to restrict the access for certain tables ( tables owned by SLT Schema, i.e schema created in HANA DB with the configuration name provided in the SLT configuration).
    With the SYSTEM user object level authorization's of another schema is not possible hence , an error is thrown when we are trying to provide/control the access of single table for a user.
    Is it ok that we generate a password for SLT schema and try login with schema owner. Is it the best practice or Is there any other way around.
    Regards,
    Kumar

    Hi Santosh,
    You can find more info about SLT Roles and Authorization from below security guide.
    http://help.sap.com/hana/SAP_HANA_Security_Guide_Trigger_Based_Replication_SLT_en.pdf
    Regards,
    V Srinivasan

  • "Low-level" authorizations for accessing BW reports - add users to role

    Using the advice in Topic "Low-level" authorizations for accessing BW reports, I have been able to publish a query to a role that has 3 test users and each user gets the same query but with different data, as determined in the tables.
    Is there a way to look up the users and e-mail addresses from a table and associate them to the role? We have several hundred e-mail recipients that will not need BW access, but only need an e-mail with a static report that contains data on their own territories.

    Hi!
    i think programatically it might be complex. You got to maintain a seperate variant of report per user and use this variant to send mail. that means you need to maintain a variant and a Broadcast setting per user. once maintained you can use it any number of times the values will be recalculated everytime.
    with regards
    ashwin
    <i>PS n: Assigning point to the helpful answers is the way of saying thanks in SDN.  you can assign points by clicking on the appropriate radio button displayed next to the answers for your question. yellow for 2, green for 6 points(2)and blue for 10 points and to close the question and marked as problem solved. closing the threads which has a solution will help the members to deal with open issues with out wasting time on problems which has a solution and also to the people who encounter the same porblem in future. This is just to give you information as you are a new user.</i>

  • Field Level Authorization

    Hi Gurus,
    Can you explain me how to proceed forward inrelation to Field Level Authorizations in SAP HR. For instance I want to restrict roles of individuals based on Field for example restrict users based on Field Workschedule in IT 0007 ( Planned Working Time).
    Regards,
    Happy

        AUTHORITY-CHECK OBJECT 'S_TABU_LIN'
          ID 'ORG_CRIT' FIELD 'MOLGA'
          ID 'ACTVT' FIELD '03'
          ID 'ORG_FIELD1' FIELD '10'
          ID 'ORG_FIELD2' FIELD '*'
          ID 'ORG_FIELD3' FIELD '*'
          ID 'ORG_FIELD4' FIELD '*'
          ID 'ORG_FIELD5' FIELD '*'
          ID 'ORG_FIELD6' FIELD '*'
          ID 'ORG_FIELD7' FIELD '*'
          ID 'ORG_FIELD8' FIELD '*'.
        IF sy-subrc NE 0 .
          MESSAGE e000 WITH 'No Authorization for area' v_text.
        ENDIF.
    Use S_TABU_LIN authority object for field level authorizations.

  • Tab level and column level security

    Hi
    Can anyone suggest a high level view of implementing a tab level security based on the user logged on? I have a form that has multiple tabs and within each of these tabs there are multiple fields displayed (in a multi record block). Based on the user, the relevant canvas tabs should be enabled and only those fields within each of these tabs to which the user is authorized to view should be displayed. I am looking for an approach methodology that can be implemented dynamically. There could be another form to maintain the user, roles and accessibility options.
    Any suggestions are welcome.
    Thanks

    When the form loads, capture the username (network login ID).
    Based on this username, in you when-new-form-instance trigger or when timer expired trigger(you have to create a timer for this), set the property that certain tabs/fields must be enabled/disabled depending on the user.
    Say, you have two groups of users, admins and non-admins..
    when the form loads, capture the username
    compare this username with the tabular data to determine if that user is an admin or non-admin (you can do this using a select query)..
    and using when-no-data-found exception you may set the appropriate previleges using set_tab_property('tab_name',ENABLED,property_true) and hence forth
    hope this helps

  • Role tab under authorization in cockpit is missing

    Hi All,
    Role tab under authorization in cockpit is missing - due to this I am not able to complete the Authorization for W3U4 session.  Please see the attached picture also.
    Can someone tell me how to proceed here ?
    Thanks in Advance,
    Ziya

    1.  Roles tab is not coming even under "java application" in cockpit.
    2.  Also in my workbench.bat file I changed to below code,  still I am getting the error.
    rem set http_proxy=http://localhost:8080:<port>
    rem set https_proxy=https://localhost:8080:<port>
    rem set no_proxy=localhost,127.0.0.0,.local
    Can you please help ?
    Regards,
    Ziya

  • SM30 Field level authorization check

    Hi,
    I have a requirement to add the authorization check in SM30 for the company field in the custom table. Please suggest.
    Thanks,
    Gagan Chodhry

    Hi,
    I have this requirement for both type of tables i.e. custom as well as standard. Tables has got field profit center.. I need to show the table based on the loggedin user authorization to the profit center.
    If it is a custom table then as mentioned by Siva, there is a way I heared that we can check the authorization in PAI event, but when I tried to do a small test, I could get the field symbol with the values, but I was not able to skip that record for disply.
    If anyone can send the sample or the way to skip the record based on the check.
    Also is there any other way to add the field level authorization to custom and standard tables...
    Thanks,
    Gagan Chodhry

  • Multiple Level authorization

    Hi I am using OBIEE 11.1.1.5.
    I want to set the row level security and also with multiple level. for example i have one sales dashboard, i have entered using sales person id then the dashboard shows for the particular salesman sales details and i have entered as zonal sales manager then the dashboard shows the details of sales men under my zonal or i have entered to dashboard using the regional sales id i can able to view the all the regional information. How can achieve this.
    For single level authorization i can used the row level security. but multiple level how is it possible?
    Regards
    Gauthaman

    You can set up a initialization block to set up values for three variables.
    1) GROUP
    2) LEVEL or COLUMN_NAME
    3) COLUMN_VALUE
    In your single level authorization you will intialize only 1 and 3 variables, here intialize second one also and use it in the filter clause.
    like COLUMN_NAME = COLUMN_VALUE

  • I'm getting a pop-up that tells me to go to Store Authorize this computer.  When I get to the store, where is the tab to authorize this computer?

    I am getting a pop-up that says the computer is not authorized and instructs me to go to Store>Authorize Computer, where in the store is the tab to authorize the computer?

    I authorized the computer, got a message saying the computer was already authorized.  The I connected my iPhone to the computer and got a message saying the computer was not authorized, that I needed to go thru the previous stps to authorize.  iTunes is giving me conflicting directions.  How doi I resolve that?

  • 0PLANT Level Authorizations

    Hi Guru's,
           I have a query regarding Object level Authorizations i.e i have created one query with variable Plant now i need to rollout to single query to all plants and respective person only can able to view their plant values....so i need to create 0plant as Auth relavent for that i use RSSM t.code but there i am not able to see the 0plant object .....please for Object level authorizations how can i proceed ...
    Regards
    Jagadeesh.M

    Hi Anil,
        I did following steps please go through it once and suggest me
    1. Change 0Plant to Auth Relavent in Object.
    2. RSSM tcode create a Z_plant and select 0plant and infocube and query objects and save it.
    3. then back to rssm and check the infoprovider
    4. create a Auth variable in bex
    5.assign that query to user role and in that role select the Auth object and mention the plant and cube and query name.
    6.generaet the roles.
    then execute using that user but it can executing for all plants but i need to restrict for single.
    Please treat it as urgent and give me if any missing steps...
    thanque anil...
    Reagrds
    Jagadeesh.m

Maybe you are looking for