SIW is a generation tool that permits authorized developers to read or modify repository objects as well as the content of customizing tables. As these are critical activities, all input channels (UI, API, RFC functions, SIW Monitor) are secured by special authorization checks. The following authorization objects are explicitly checked by SIW:
S_DEVELOP - Development authorization for repository objects
S_SIW_CFG - Special authorization to use the generation tool SIW
Further authorization objects might be checked implicitly, depending on the SAP NetWeaver API used - for example S_TABU_DIS and S_TABU_CLI for table display.
The standard PFCG role SAP_BC_SIW_DEV contains these authorizations and can be used as a template for creating a customer-specific role, for example "Service Implementation Developer".