× The internal search function is temporarily non-functional. The current search engine is no longer viable and we are researching alternatives.
As a stop gap measure, we are using Google's custom search engine service.
If you know of an easy to use, open source, search engine ... please contact support@midrange.com.


  1.  Home
  2. MIDRANGE-L
  3. April 2007

RE: Adopted authority and triggers

Roger,

This is a shameless plug but they are solutions to your problem.

If you have PowerTech's Network Security you can utilize its Generic
Exit point to perform a profile switch and release. One solution might
be something like this.

1. Set up Memorized Transaction rules in Network Security. The data's
format is up to you since you are defining what will be passed to the
Generic Exit point program. Part of setting up a Memorized Transaction
is the ability to provide a user profile that can be switched to.

2. Have your application call the Generic Exit point program. If it
returns an Allow then you continue processing. If it returns Disallow,
your application takes appropriate action.

3. When processing is done call the Generic Exit program again to
release the switch.

If you have auditing turned on the rule validation will show up on
Network Security's reports.

You can also embed PowerTech's Authority Broker product into your
application. Authority Broker will allow you to switch profiles and
report on commands run during the switch.

In either case your problem is solved and you have built-in audit
trails.

Gary Monnier | Senior Software Developer
19426 68th Ave. S
Kent, WA 98032
gary.monnier@xxxxxxxxxxxxx
www.powertech.com



-----Original Message-----
From: midrange-l-bounces+gary.monnier=powertech.com@xxxxxxxxxxxx
[mailto:midrange-l-bounces+gary.monnier=powertech.com@xxxxxxxxxxxx] On
Behalf Of Mackie, Roger L. (Precision Press)
Sent: Tuesday, April 03, 2007 11:44 AM
To: Midrange Systems Technical Discussion
Subject: RE: Adopted authority and triggers


Unfortunately, no. The reason for using adopted authority for this
application was to exclude the user from the data except when using the
approved stored procedures. *USE authority would let them use MS Query
to access data we don't want them to see unless we got even more
complicated with exit points, etc.. We're using data queues for other
applications, so it's not as big of a stretch to add that piece, but I
was trying to keep it simpler.

Thanks anyway,
Roger Mackie

-----Original Message-----
From: midrange-l-bounces@xxxxxxxxxxxx
[mailto:midrange-l-bounces@xxxxxxxxxxxx] On Behalf Of Turnidge, Dave
Sent: Tuesday, April 03, 2007 12:33 PM
To: Midrange Systems Technical Discussion
Subject: RE: Adopted authority and triggers

Don't suppose there's any chance of letting users *USE the library? This
prevents them from creating anything, but (depending on the object level
authority) should let them do what is needed for processing...



As an Amazon Associate we earn from qualifying purchases.

This thread ...
Follow On AppleNews
Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.