Show TOC

Security Aspects for the Service Implementation WorkbenchLocate this document in the navigation structure

Use

SIW is a generation tool that permits authorized developers to read or modify repository objects as well as the content of customizing tables. As these are critical activities, all input channels (UI, API, RFC functions, SIW Monitor) are secured by special authorization checks. The following authorization objects are explicitly checked by SIW:

  • S_DEVELOP - Development authorization for repository objects

  • S_SIW_CFG - Special authorization to use the generation tool SIW

Further authorization objects might be checked implicitly, depending on the SAP NetWeaver API used - for example S_TABU_DIS and S_TABU_CLI for table display.

The standard PFCG role SAP_BC_SIW_DEV contains these authorizations and can be used as a template for creating a customer-specific role, for example "Service Implementation Developer".