Focused User Access Checks for Business Object Maintenance Flows

When a business object based entity is displayed and maintained online, the logic that prepares the data in these flows reside in designated scripts associated with the record's business object. These scripts may be designed to read other entities and call other services in addition to the main entity being processed. A common example is that a transactional object may invoke the related "type" object to get information.

User access in these specific online maintenance flows are now enhanced to focus on the main entity being processed. In the example of the transactional object invoking the related "type" object to get information, the user is not required to have access to the "type" object. Prior to this release, every one of these additional object reads and service calls were also checked for user access (in addition to the main entity being processed). This situation required that the user was granted access to secondary entities, like admin "type" objects and internal services, which inadvertently also enabled access via the main menu.

This supports a more accurate approach for securing the maintenance of entities online.

NOTE: This enhancement does not impact any existing extensions.

Steps to Enable

You don't need to do anything to enable this feature.