On 12/27/21 10:39 AM, Rob Berendt wrote:
<snip>
If users need data, provide them a proper interface that gives them the
data in a controlled, maintainable, fashion.
</snip>
... like the web admin. Which still relies upon IBMi security to change things outside of their responsibility.
Unless, of course, you give users *ALLOBJ, *JOBCTL, etc as a general rule.

IMHO, end users should be kept as far away from the bare metal as possible. If they are running queries frequently, they should be provided a proper UI that lets them do the queries they need without having to use SQL.

The web admin interface is not a proper interface for end user. A web interface is a great idea, but it should designed & developed to prevent inappropriate access & updates.

IBM i security is fantastic, but the level of granularity needed to manage a large user base with differing levels of access is (again, IMO) a significant burden on administrators.

david


As an Amazon Associate we earn from qualifying purchases.

This thread ...

Replies:

Follow On AppleNews
Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2022 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.