As in the scenario for granting access based on activities, you define an authorization object. However, for this scenario, you also add the authorization field ZBNS_VARN for the bonus variant.
Follow the instructions for defining authorization objects in the user guide for ABAP development tools (ADT).
In our example, in the newly created authorization object, under Authorization Fields, you need the following:
You need the predefined Activity (ACTVT) authorization field to define the permitted activities for the business users of your business service: 01 Add or Create, 02 Change, 03 Display, and 06 Delete as standard activities.
If you have non-standard activities such as Calculate Bonus that you need to protect (and to permit later), check the list of existing values. If you click on an empty row and choose [ENTER], the list of available values is shown. For the bonus calculation example, let's choose 93 Calculate for the business object-specific activity Calculate Bonus.
You need the newly created authorization field
ZBNS_VARNfor the bonus variant.