|
Is program B running with owner authority?
Alan Shore
Programmer/Analyst, Direct Response
E:AShore@xxxxxxxx
P:(631) 200-5019
C:(631) 880-8640
"If you're going through Hell, keep going" - Winston Churchill
George Lopez <georgerl@worldpa c.com> To Sent by: RPG programming on the IBM i / rpg400-l-bounces@ System i <rpg400-l@xxxxxxxxxxxx> midrange.com cc Subject 04/29/2010 02:34 Re: Edit Object Authority for PM Library, Program, File and User Security..... Please respond to RPG programming on the IBM i / System i <rpg400-l@midrang e.com>
Thanks Alan, but Program A and Program B have the same usrprf(*OWNER)
and all files are *EXCLUDE. So I should not have this problem because
program A is ok but not B. But I do.
Alan Shore wrote:
You will have to do EXACTLY the same thing for Program B and whateverfiles
that program requiresreal
Ah yes - Security.... it brings back memories.... NONE of them good, a
pain the @#$$$$$ to get to the final result
Alan Shore
Programmer/Analyst, Direct Response
E:AShore@xxxxxxxx
P:(631) 200-5019
C:(631) 880-8640
"If you're going through Hell, keep going" - Winston Churchill
but
George Lopez
<georgerl@worldpa
c.com>To
Sent by: RPG programming on the IBM i /
rpg400-l-bounces@ System i <rpg400-l@xxxxxxxxxxxx>
midrange.comcc
Tim Zils <timz@xxxxxxxxxxxx>, Rick
Zhang <rickz@xxxxxxxxxxxx>, Mike
04/29/2010 02:06 Hellweg <mikeh@xxxxxxxxxxxx>
PMSubject
Re: Edit Object Authority for
Library, Program, File and
Please respond to User Security.....
RPG programming
on the IBM i /
System i
<rpg400-l@midrang
e.com>
list
I changed programs to usrprf(*owner), libraries to AUT(*use) and files
to AUT(*exclude). Programs have usrprf(*owner). So in interactive
environment if I call a program A directly from a menu the access to the
files with *EXCLUDE now works. But I am getting CPF4101 error message
when I am calling a program B from program A.
Additional Message
Information
Message ID . . . . . . :
CPF4104
Date sent . . . . . . : 04/29/10 Time sent . . . . . . :
09:15:51
Message . . . . : User not authorized to operation on file xxxx01 in
*LIBL,
member, device, or program device
*N.
Cause . . . . . : User not authorized to the file, library, member,
or
device/program
device.
Recovery . . . : Obtain authority from the security officer or
object
owner, and then try the request
again.
Simon Coulter wrote:
On 28/04/2010, at 6:47 AM, Jerry Adams wrote:--
If USERA is running PGMA in LIBA (with adopted authority suitableAs long as the owner of PGMA has suitable authority to the file in
for the file), and the file/table exists in LIBB (to which USERA is
*Exclude), would the program be able to access the file?
LIBB then yes.
Would a USROPN or a system-open make any difference?No.
A comment on the previous appends: If you need to add an *EXCLUDE
library to the library list then this must be done either in an
adopting program or from a program that inherits authority from an
adopting program higher in the stack. As I recall such a library
cannot be specified in the user's sign-on job description because the
initial library is built before the initial program is given control
thus adopted authority is not yet in place.
Regards,
Simon Coulter.
--------------------------------------------------------------------
FlyByNight Software OS/400, i5/OS Technical Specialists
http://www.flybynight.com.au/
Phone: +61 2 6657 8251 Mobile: +61 0411 091 400 /"\
Fax: +61 2 6657 8251 \ /
X
ASCII Ribbon campaign against HTML E-Mail / \
--------------------------------------------------------------------
This is the RPG programming on the IBM i / System i (RPG400-L) mailing
To post a message email: RPG400-L@xxxxxxxxxxxx--
To subscribe, unsubscribe, or change list options,
visit: http://lists.midrange.com/mailman/listinfo/rpg400-l
or email: RPG400-L-request@xxxxxxxxxxxx
Before posting, please take a moment to review the archives
at http://archive.midrange.com/rpg400-l.
This is the RPG programming on the IBM i / System i (RPG400-L) mailing list
To post a message email: RPG400-L@xxxxxxxxxxxx
To subscribe, unsubscribe, or change list options,
visit: http://lists.midrange.com/mailman/listinfo/rpg400-l
or email: RPG400-L-request@xxxxxxxxxxxx
Before posting, please take a moment to review the archives
at http://archive.midrange.com/rpg400-l.
As an Amazon Associate we earn from qualifying purchases.
This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].
Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.