Where to check whether the user is Admin or developer?

how to check whether the user is Admin or developer????? after he sign's in......I want to use role based login!!!!

Login into a workspace or login into an application?
Denes Kubicek
http://deneskubicek.blogspot.com/
http://www.opal-consulting.de/training
http://apex.oracle.com/pls/otn/f?p=31517:1
-------------------------------------------------------------------

Similar Messages

How to check whether the user has a certificate or not?

Hi everyone.
We're currently finishing a web project and the last step is to check whether users accessing the application have a valid certificate or not.
Users with a valid certificate can access all the data. Users without any certificate installed on their browsers may still proceed, but they won't be able to see all data. Please note that the lack of a certificate doesn't mean an error - it's just another use case.
Is there any way to check whether users have a certificate installed on their browsers?
Thanks in advance.
Edit: sorry, I forgot to post some tech details. We're using Struts 1.2 on a Tomcat 5 app server.
Message was edited by:
advaca

I am not sure how Tomcat handles this, but you need to use two-way (mutual authentication) request but not enforce SSL between Tomcat and the client browser. This will make the browser prompt the user for the cert they want to send. Then you'll need to tackle the other part of your problem, getting the correct content displayed depending on whether the user sent a cert or not. I'm even less help there than I was on the first part of your question.
So, yeah - good luck with that
Lee

Check whether the user has clicked yes or no from air installer

Hi,
I am instaling the Adobe air from my application. I want to know whether the user clicked on yes button or no button in the air installer.
Regards,
Jayagopal.

Hi,
Checking user existence from the Site Groups may result in permission issue. As every user might not have permission to the site groups. I have tested this scenario.
In my opinion, best to use the User groups collection to check whether user belongs to specific group or not.
Here is the sample code.
SPUser currentUser = SPContext.Current.Web.CurrentUser;
SPGroupCollection currentUserGroups = currentUser.Groups;
foreach(SPGroup currentUserGroup in currentUserGroups)
if(currentUserGroup.Name == "xyz")
// Do your operations
Please don't forget to mark it answered, if your problem resolved or helpful.

What's the best way to check whether a user is logged in or not?

I have a question about basic session handling.
I'm running Tomcat 5.0.30 and have a web application where users can register with a username and password, and then log into a "member site".
What is the best way of making sure that a user actually has logged in or not?
What I've done in previous applications I've made is that I've just put a simple variable into the users session after he has successfully entered his password (i.e. Boolean loggedIn=true). Then I just test if this flag is true to grant him access to the member site. Is that a smart way of doing it?
Are there any libraries I can use which handles sessions for me in a secure way?
All comments and suggestions are appreciated!

Maintain a flag using session attributes it to one when the user is logs in set it to value.... and change set it zero or invalidate that session... when the user is logged out...
use something like this while user had logged in
session.setAttribute("flag",<unique_number>);
for checking whether the user had logged in or not...
if(Integer.parseInt(session.getAttribute("flag").toString())=!<unique_number>){
out.println("The session had expired");
out.close();
}

How to check if the user has only the display authority of a message

hi,
How to check if the user has only the display authority of a message but does not have the change authority for a certain message?
Best regards,

hi blake
though i am an application consultant and for authorisation u need to have help of BASIS person if u r not the one but still i can guide u regarding the same,
Basically Authorization Management
Use
You can use the following authorization objects to control the authorizations for maintaining business partner data:
        Authorization objects for the Business Partner:
             B_BUPA_GRP
             B_BUPA_ATT
             B_BUPA_FDG
             B_BUPA_RLT
Authorization objects for relationships:
             B_BUPR_BZT
             B_BUPR_FDG
In addition, you can assign an authorization group to a business partner in the dialog. The authorization group controls which users may maintain data for this business partner.
You can also define authorizations for fields and field groups using the Business Data Toolset (BDT). Depending on the settings you have made, the system carries out the relevant authorization checks.
In the dialog in the SAP GUI, you can display an overview of the authorizations assigned to you by pressing the button Settings.
For more information on authorization management, see the Implementation Guide (IMG) of the Business Partner, as well as in the Developers Handbook for the BDT under Authorizations.
IntegrationAuthorization management for the Business Partner forms part of the SAP authorization concept.
Prerequisites
You have made the necessary settings in Customizing of the Business Partner under Basic Settings--> -Address Management.
Moving over
AS ABAP Authorization Concept
The ABAP authorization concept protects transactions, programs, and services in SAP systems from unauthorized access. On the basis of the authorization concept, the administrator assigns authorizations to the users that determine which actions a user can execute in the SAP system, after he or she has logged on to the system and authenticated himself or herself.
To access business objects or execute SAP transactions, a user requires corresponding authorizations, as business objects or transactions are protected by authorization objects. The authorizations represent instances of generic authorization objects and are defined depending on the activity and responsibilities of the employee. The authorizations are combined in an authorization profile that is associated with a role. The user administrators then assign the corresponding roles using the user master record, so that the user can use the appropriate transactions for his or her tasks.
Authorization Checks
To ensure that a user has the appropriate authorizations when he or she performs an action, users are subject to authorization checks.
The following actions are subject to authorization checks that are performed before the start of a program or table maintenance and which the SAP applications cannot avoid:
        Starting SAP transactions (authorization object S_TCODE)
        Starting reports (authorization object S_PROGRAM)
        Calling RFC function modules (authorization object S_RFC)
        Table maintenance with generic tools (S_TABU_DIS)
Checking at Program Level with AUTHORITY-CHECK
Applications use the ABAP statement AUTHORITY-CHECK, which is inserted in the source code of the program, to check whether users have the appropriate authorization and whether these authorizations are suitably defined; that is, whether the user administrator has assigned the values required for the fields by the programmer. In this way, you can also protect transactions that are called indirectly by other programs.
AUTHORITY-CHECK searches profiles specified in the user master record to see whether the user has authorization for the authorization object specified in the AUTHORITY-CHECK. If one of the authorizations found matches the required values, the check is successful.
Starting SAP Transactions
When a user starts a transaction, the system performs the following checks:
        The system checks in table TSTC whether the transaction code is valid and whether the system administrator has locked the transaction.
        The system then checks whether the user has authorization to start the transaction.
The SAP system performs the authorization checks every time a user starts a transaction from the menu or by entering a command. Indirectly called transactions are not included in this authorization check. For more complex transactions, which call other transactions, there are additional authorization checks.
             The authorization object S_TCODE (transaction start) contains the field TCD (transaction code). The user must have an authorization with a value for the selected transaction code.
             If an additional authorization is entered using transaction SE93 for the transaction to be started, the user also requires the suitable defined authorization object (TSTA, table TSTCA).
If you create a transaction in transaction SE93, you can assign an additional authorization to this transaction. This is useful, if you want to be able to protect a transaction with a separate authorization. If this is not the case, you should consider using other methods to protect the transaction (such as AUTHORITY-CHECK at program level).
        The system checks whether the transaction code is assigned an authorization object. If so, a check is made that the user has authorization for this authorization object.
The check is not performed in the following cases:
You have deactivated the check of the authorization objects for the transaction (with transaction SU24) using check indicators, that is, you have removed an authorization object entered using transaction SE93. You cannot deactivate the check for objects from the SAP NetWeaver and HR areas.
This can be useful, as a large number of authorization objects are often checked when transactions are executed, since the transaction calls other work areas in the background. In order for these checks to be executed successfully, the user in question must have the appropriate authorizations. This results in some users having more authorization than they strictly need. It also leads to an increased maintenance workload. You can therefore deactivate authorization checks of this type in a targeted manner using transaction SU24.
             You have globally deactivated authorization objects for all transactions with transaction SU24 or transaction SU25.
             So that the entries that you have made with transactions SU24 and SU25 become effective, you must set the profile parameter AUTH/NO_CHECK_IN_SOME_CASES to Y (using transaction RZ10).
All of the above checks must be successful so that the user can start the transaction. Otherwise, the transaction is not called and the system displays an appropriate message.
Starting Report Classes
You can perform additional authorization checks by assigning reports to authorization classes (using report RSCSAUTH). You can, for example, assign all PA* reports to an authorization class for PA (such as PAxxx). If a user wants to start a PA report, he or she requires the appropriate authorization to execute reports in this class.
We do not deliver any predefined report classes. You must decide yourself which reports you want to protect in this way. You can also enter the authorization classes for reports with the maintenance functions for report trees. This method provides a hierarchical approach for assigning authorizations for reports. You can, for example, assign an authorization class to a report node, meaning that all reports at this node automatically belong to this class. This means that you have a more transparent overview of the authorization classes to which the various reports are transported.
You must consider the following:
              After you have assigned reports to authorization classes or have changed assignments, you may have to adjust objects in your authorization concept (such as roles (activity groups), profiles, or user master records).
              There are certain system reports that you cannot assign to any authorization class. These include:
              RSRZLLG0
              STARTMEN (as of SAP R/3 4.0)
              Reports that are called using SUBMIT in a customer exit at logon (such as SUSR0001, ZXUSRU01).
              Authorization assignments for reports are overwritten during an upgrade. After an upgrade, you must therefore restore your customer-specific report authorizations.
Calling RFC Function Modules
When RFC function modules are called by an RFC client program or another system, an authorization check is performed for the authorization object S_RFC in the called system. This check uses the name of the function group to which the function module belongs. You can deactivate this check with parameter auth/rfc_authority_check.
Checking Assignment of Authorization Groups to Tables
You can also assign authorization groups to tables to avoid users accessing tables using general access tools (such as transaction SE16). A user requires not only authorization to execute the tool, but must also have authorization to be permitted to access tables with the relevant group assignments. For this case, we deliver tables with predefined assignments to authorization groups. The assignments are defined in table TDDAT; the checked authorization object is S_TABU_DIS.
You can assign a table to authorization group Z000. (Use transaction SM30 for table TDDAT) A user that wants to access this table must have authorization object S_TABU_DIS in his or her profile with the value Z000 in the field DICBERCLS (authorization group for ABAP Dictionary objects).
please See also:
        SAP Notes 7642, 20534, 23342, 33154, and 67766
guess this info will help you,there is one graphic which actually explain the hierarchy of authorisation,i will find some time out to let u know more info about the authorisation
but if u sit with ur BASIS guy then u can learn lot of things in PFCG
i guess u r a basis guy,then its not a problem
best regards
ashish

Is there any tool to check whether the proper data is inserting or not?

Hi,
We have different products A,B and C.
whenever user crates an account under these products some X,Y,Z table gets updated.
If user1 creates an account under A then X, Y, Z tables update with some data along with some ID
If user2 creates an account under A then X, Y, Z tables update with SAME DATA along with some other ID
Is there any tool to check whether the proper data is inserting (same data is inserting every time) or not?
p.s : if this thread is not related to this forum .. where can I post?
Thanks,
Praveen

Is there any tool to check whether the proper data is inserting (same data is inserting every time) or not?You need to check the code to see that. Is the update or insert on the table has from different places? In that case it would be better to have them moved to a centralized place may be a package.
If you want to restrict the columns to specific values then you can use constraints.

How to check whether a user session is null or not

Hi
I am using Jdeveloper 11.1.2.2
I have a use case of running some Junit test case, this is the problem I have :
There are some Junit tests which are written for some VO's. While testing insert and update operation in Junit there is two mandatory columns Created by and Updated by to be entered for committing into the database.
These values are taken from the UserName of the current UserSession .
So for getting the these values for each user I thought of displaying a JPanel before the test is run, where the user enters the Username and password which is validated and the user is verified.
First, I need to check whether there is a session present or not. For checking this, I wrote a createUserSession() and did like this inside it :
if(fixture.getApplicationModule().getSession().getUserData().isEmpty())If so to show the Jpanel and get the user details and verify the user.
But while running the test itself I found that the session is already present, now I just have to input the values based on who is the user.
But Junit doesn't run the tests in the order in which the test are written. So I have to call this in all the test cases.
The Question is :
How can I check whether the session is already present or not, so that I don't have to ask the user every time while every test is running to enter the Username and Password ?
Thanks,
Nigel.
Edited by: Nigel Thomas on Jul 30, 2012 10:26 AM

Hi,
wondering why don't you create test users and then automatically log them in as Jan Vervecken did on the threads I pointed you to. This way your test cases run without user interaction. To test if a session exists for a user, I would put a custom property into user data. If this property exists, the user session is an existing one. However, make sure the information you save into the user data survives passivation as otherwise the information you get out of this is not accurate. See: http://tompeez.wordpress.com/2011/07/08/jdev-always-test-your-app-with-applicationmodule-pooling-turned-off/
Frank

R12.1.1 staging complete! How to check whether the stage is Good

Hi Gurusl,
I have completed staging R12.1.1 for Hp unix B.11.31. I want to know how to check whether the stage is good for installation or whether it is corrupted. Is there any metalink note or script from where we can check it. Ur help will be highly appreciated. Thanks in advance
regards,

Hi,
Please refer to (Note: 802195.1 - MD5 Checksums for R12.1.1 Rapid Install Media).
Regards,
Hussein

Need to Check whether the program is Active or not

Is there any statement where i can check whether the report program is Active or not.
Using below statement i am copying the entire Code in internal table it_source.Before copying in the source code in the internal table it_source.I need to check that program is Active or not if it is not active and i need to give a pop message and forceliy i need to Active it.
read report wa_trdir-name into it_source.

Hi Srini,
i just checked the table REPOSRC for a program which was not activated, i got two entries for the program one as active and one as inactive ,as soon as i activated the program there was a single entry.
so is it that we should check if we have any inactive entry in the table for the program?.
Regards,
gunjan

Hi guys,Explain how to find whether the user request is dialog or bc ...

how to find whether the user request is dialog or bc or some other wp and where we can see that ?

Hello Damodar,
You can find out that in SM50.
However one piece of advice. I have noticed that you are raising lots of questions about very basic questions. Either you new to SAP or dont know anything about SAP Basis and want to get in this area. Or else you are preparing for some interview. In either of these cases expecting solutions given at SDN are not going to be of much help. Better read yorself in SAP Help as most people do. SDN should not be overly used for such purposes. Basic questions are welcome but you want to learn SAP through SDN !!!
Regards.
Ruchit.

Email notification is not sent to the user and admin

Hi gurus ,
We have a incident that user and admin is not received the email notification to lotus notes id.other users receiving the notifications from the same application.Same user and admin receiving mails from other applications
SWI1 no error but in SOST there is no record of a mail sent.
Have checked SU01 the user has an email address maintained both in ESS and R/3.
As per config SO16 - home address is selected.
In the profile his external email id is selected as home address.
what should i check next to sort out the issue.
Please help .
Sampada .
Edited by: Siri Sampada on Jan 15, 2011 11:11 AM

This was a workflow issue

Howto check whether the input parameter of type table is NULL

hi i have a procedure where the input parameters are of type collection (nested table ) the first line of my proc should check whether the input is null how to do that .
i have defined the collection this way.
CREATE OR REPLACE TYPE acct_tab as table of varchar2(40);
my procedure is as follows
create or replace procedure account_proc ( in_acct_array acct_tab) is
begin
----> I want to check whether the input is null how to do this?
end

Raj,
SQL> CREATE OR REPLACE TYPE acct_tab as table of varchar2(40);
2 /
Type created.
SQL>
SQL> create or replace procedure account_proc ( in_acct_array acct_tab) is
2 begin
3 if in_acct_array IS EMPTY
4 then
5   dbms_output.put_line('empty') ;
6 else
7   dbms_output.put_line(' NOT empty') ;
8 end if ;
9 end;
10 /
Procedure created.
SQL>
SQL> declare
2    v acct_tab:=acct_tab();
3 begin
4          account_proc( v ) ;
5 end ;
6 /
empty
PL/SQL procedure successfully completed.SS

How to check whether portal user exists or not using UM API.

Hi Experts,
Let us say i need to create an user account "PortalUser",i know how to create an user,setting first name,lastname,password for that.
but here before creating the portal user, i need to check whether that user exists or not.If user already exists ,then i need to skip the below for creating the user.
IUserFactory userFact = UMFactory.getUserFactory();
IGroupFactory groupFact = UMFactory.getGroupFactory();
IRoleFactory roleFact = UMFactory.getRoleFactory();
IUser tuser = userFact.getUserByLogonID("PortalUser");
IUserMaint newUser = userFact.newUser("PortalUser");
newUser.setFirstName("PortalUser");
newUser.setLastName("Test");
newUser.setEmail("PortalUser.Testatgmaildotcom");
//Locale PortalLanguage = new Locale(Lang.toLowerCase(), "");
Locale PortalLang=new Locale("en");
newUser.setLocale(PortalLang);
newUser.save();
newUser.commit();
IUserAccount userAcc = UMFactory.getUserAccountFactory().newUserAccount("PortalUser", newUser.getUniqueID());
userAcc.setPassword("test1test$");
userAcc.save();
userAcc.commit();
Thanks in advance.
Thanks
Sony.

Hi,
Try this code,
IUserFactory factory = UMFactory.getUserFactory();
IUser user = factory.getUserByLogonID(userId);
lastName = user.getLastName();
firstName = user.getFirstName();
refer this pdf,its very helpful
https://www.sdn.sap.com/irj/servlet/prt/portal/prtroot/com.sap.km.cm.docs/library/events/webinars-nw-rig/using%20the%20user%20management%20api%20with%20ep%20applications%20-%20webinar%20powerpoint.pdf
Regards,
Sunaina Reddy T

What is to be used to know whether the user has made any changes in alv

hi all,
i want to know what is to be used for checking whether a user has done any changes in an editable alv.
i have used sy-datar but it has nothing in it.
so kindly help SAP gurus.
with regards,
Sindhuja

Hi Sindhu ,
If you want to capture the changed data ( rows) use the event : handle_data_changed .
When the user changes the data , this event will be triggered and the table will have only the changed data.
Regards,
Chitra

How to check whether a user has permission to create term in Taxonomy Term Store using CSOM ?

I want to check programmatically whether the current user is a Term Store Administrator or not.

I am not sure how Tomcat handles this, but you need to use two-way (mutual authentication) request but not enforce SSL between Tomcat and the client browser. This will make the browser prompt the user for the cert they want to send. Then you'll need to tackle the other part of your problem, getting the correct content displayed depending on whether the user sent a cert or not. I'm even less help there than I was on the first part of your question.
So, yeah - good luck with that
Lee

Where to check whether the user is Admin or developer?

Similar Messages

Maybe you are looking for