Applications use the ABAP statement AUTHORITY-CHECK, which is inserted in the source code
of the program, to check whether users have the appropriate authorization and whether these
authorizations are suitably defined; that is, whether the user administrator has assigned the
values required for the fields by the programmer. In this way, you can also protect transactions
that are called indirectly by other programs.
AUTHORITY-CHECK searches profiles specified in the user master record to see whether the
user has authorization for the authorization object specified in the AUTHORITY-CHECK. If one of
the authorizations found matches the required values, the check is successful.
No comments:
Post a Comment