QM Open Note

QM Open Note is a blog post series about topics, which can be useful when working with Quality Management.

Overview

Current blog post is about providing a possible authorization check using object B_NOTIF when working with function ‘Approval Requirement for Notifications’.

In detail

The notification approval is activated, as described by KBA:

2533027 – How to set a notification approval to be mandatory?

However, no authorization check is executed while approving a notification. Information about this topic can be found in KBA:

2903043 – No authority check when approving/rejecting a notification.

A check is required that only authorized users can approve the notification.

Known problem & solution

KBA 2903043 mentions customer exit QQMA0024 (EXIT_SAPLIQS0_016, INCLUDE ZXQQMU35), as a possible way to implement a check.

The code section below deactivates the functions (buttons) ‘Give Approval’ / ‘Reject Approval’, if the user has no authorization to B_NOTIF, activity 71 (Approving a notification as the approver).

*Authority check
    AUTHORITY-CHECK OBJECT 'B_NOTIF'
             ID 'QMART' FIELD i_tq80-qmart
             ID 'NOTIF_ACT' FIELD '71'
             ID 'PARVW' DUMMY.

*Deactivate GNOK "Approve notification" and GNAB "Reject notification"
    IF NOT sy-subrc = 0.
      APPEND 'GNOK' TO t_ex_fcode.
      APPEND 'GNAB' TO t_ex_fcode.
    ENDIF.

The code is not part of the standard and needs to be tested, whether it fulfills the business requirements.

Feel free to share your experience/feedback in the Comment Section. Thank you.