HRBAS00_STRUAUTH (BAdI: Structural Authorization) (SAP Library

HRBAS00_STRUAUTH (BAdI: Structural Authorization)

Definition

Business Add-In (BAdI) that you can use to implement a customer-specific test procedure for the structural authorization check.

Use

You can implement a customer-specific test procedure for general and structural authorization checks using a Business Add-In (BAdI). The BAdI for the structural authorization check is called HRBAS00_STRUAUTH.

Note

You can find the Business Add-In (BAdI) in the IMG for Personnel Management under Organizational Management ® Basic Settings ® Authorization Management ® Structural Authorization ® BAdI: Structural Authorization. You can find information on implementing a BAdI in the documentation of the corresponding IMG activity.

For general information on Business Add-Ins and their implementation, see also Notes under BAdI: Customer-specific authorization checks.

You can implement the BAdI using the following methods, all of which must be implemented:

CHECK_AUTHORITY_VIEW

FILL_DATE_VIEW

FILL_HYPER_VIEW

CHECK_AUTH_PLAN1

Structure

The following describes the individual methods, which are coordinated using the IF_EX_AUTHORITY_BADI interface. The method interfaces are stored in the system as documentation of the corresponding methods. Review the method documentation of the corresponding method if you are implementing a new method or changing method.

CHECK_AUTHORITY_VIEW (Check Structural Authorization of an Object)

This method checks a user’s structural authorization for an object once the set of authorized objects for this user (VIEW) is determined.

This implementation should reduce runtime problems if this user should be granted authorization for large structures. This enables the check to be performed by object type or by user. The authorization check can also be implemented independently of the VIEW.

FILL_DATE_VIEW (Fill Table of Authorization Ranges for an Object)

This method fills the interval tables for the intervals that a user has authorization to access an object. The authorization check can also be performed independently of the VIEW created.

FILL_HYPER_VIEW (Fill Table of Authorization Relationships)

This method fills the relationship tables (HYPER_VIEW) for relationships that a user has authorization for. The tables can be filled by object type or by user.

CHECK_AUTH_PLAN1 (Check Personnel Authorization)

This method checks the structural authorization from a personnel administration perspective (for example, write or read access) and fills the period tables for which a user has authorization accordingly.

Example

In the BAdI, you can display sample implementation code under Goto ® Display Sample Coding. You can also view this sample code in the Class Builder (SE24), by displaying the CL_EXM_IM_HRBAS00_STRUAUTH class and the corresponding methods.