New features implemented
New features are added to Hovitaga OpenSQL Editor:
Record level authorizations - Besides defining which tables can be read, you can control which records can be read from a table. A generic standard SAP authority object (S_TABU_LIN) is used to filter the query results based on any organizational criteria defined in customizing. For example a scenario can be set up easily where certain users only see data for their company code (or country or any organizational level).
Additionally any number of authority objects can be assigned to tables within a customizing transaction. A field mapping between the authority object and the table must be made that is used when filtering query results.
For example to filter entries in the VBAK table (Order headers) by sales organization simply assign authority object V_VBAK_VK0 to the table. To filter entries by plant in table MARC (Plant data), assign authority object M_MATE_WRK to table MARC. If these authority objects were already used in the SAP system, then the roles, profiles etc. do not need to be changed, no other user maintenance effort is required.
Field level authorizations - Additionally to the record level authorization concept Hovitaga OpenSQL Editor can be controlled on field level also. For example, certain users could see the contents of the salary field in a table, others could not, depending on the authorizations. There is an authority object that controls what columns may a user access in a database table. This can be maintained with the standard SAP tools without any special customizing effort.