Defining file security with FILEMGMT: Difference between revisions
m (Admin moved page Defining File Security with FILEMGMT to Defining file security with FILEMGMT without leaving a redirect) |
m (more conversion cleanup) |
||
Line 1: | Line 1: | ||
<p>You can define security for a <var class="product">Model 204</var> file either using the File Management Subsystem facility (FILEMGMT) or from the command line. For ease of use and to avoid errors, FILEMGMT is recommended. </p> | <p> | ||
<p>Press the | You can define security for a <var class="product">Model 204</var> file either using the File Management Subsystem facility (FILEMGMT) or from the command line. For ease of use and to avoid errors, FILEMGMT is recommended. </p> | ||
<p> | |||
Press the F8 (FORward) key from the File Definition - Organization screen, or the F7 (BACkward) key from the File Definition - Procedure screen. FILEMGMT displays the second file definition screen, the Security screen:</p> | |||
<table> | <table> | ||
<tr> | <tr><td> | ||
<td> | |||
<p class="code">FILEMGMT File Definition - Security PAGE 2 OF 3 | <p class="code">FILEMGMT File Definition - Security PAGE 2 OF 3 | ||
Filename: ABC Inactive | Filename: ABC Inactive | ||
FILE ACCESS OPENCTL X' 80 ' | FILE ACCESS OPENCTL X' 80 ' | ||
Public: X Semipublic: _ Private: _ | Public: X Semipublic: _ Private: _ | ||
Line 17: | Line 16: | ||
REMOTE FILE ACCESS PRIVILEGES | REMOTE FILE ACCESS PRIVILEGES | ||
NO/INV PWD: _ VALID PWD: _ GROUP MEMBER: _ | NO/INV PWD: _ VALID PWD: _ GROUP MEMBER: _ | ||
DEFAULT FILE PRIVILEGES PRIVDEF X' BFFF ' | DEFAULT FILE PRIVILEGES PRIVDEF X' BFFF ' | ||
File Manager: X Record Security Override: _ View File Parms: X | File Manager: X Record Security Override: _ View File Parms: X | ||
RETRIEVE DATA WITH PROCEDURES | RETRIEVE DATA WITH PROCEDURES | ||
Adhoc: X Internal: X External: X | Adhoc: X Internal: X External: X | ||
UPDATE DATA WITH PROCEDURES | UPDATE DATA WITH PROCEDURES | ||
Adhoc: X Internal: X External: X | Adhoc: X Internal: X External: X | ||
INTERNAL PROCEDURES | INTERNAL PROCEDURES | ||
Display/Copy: X Define: X Change: X Delete: X Include: X | Display/Copy: X Define: X Change: X Delete: X Include: X | ||
DEFAULT FIELD LEVEL SECURITY | DEFAULT FIELD LEVEL SECURITY | ||
SELLVL: 0 READLVL: 0 UPDTLVL: 0 ADDLVL: 0 | SELLVL: 0 READLVL: 0 UPDTLVL: 0 ADDLVL: 0 | ||
===> | ===> | ||
1=HELp 2= 3=QUIt 4=FIElds 5=WIDen 6=COMmands | 1=HELp 2= 3=QUIt 4=FIElds 5=WIDen 6=COMmands | ||
Line 52: | Line 41: | ||
</tr> | </tr> | ||
</table> | </table> | ||
<p>You use the File Definition - Security screen to specify <var class="product">Model 204</var> security parameters for the file you are creating. When this screen is displayed for a file for the first time, FILEMGMT shows the standard <var class="product">Model 204</var> default values for the parameters. </p> | |||
<p>For some of the parameters shown on this screen, you specify an actual parameter value. For others, you select options, and FILEMGMT uses your selections to compute an appropriate parameter value.</p> | <p> | ||
<p>[[#Setting file security|Setting file security]] describes the type of information you enter. For more information about parameter settings, refer to the Rocket <var class="product">Model 204</var> File Manager's Guide and to [[Seven-Step File Load examples]]. For a discussion of how to select the most appropriate options for your particular file, refer to the Rocket <var class="product">Model 204</var> File Manager's Guide.</p> | You use the File Definition - Security screen to specify <var class="product">Model 204</var> security parameters for the file you are creating. When this screen is displayed for a file for the first time, FILEMGMT shows the standard <var class="product">Model 204</var> default values for the parameters. </p> | ||
<p>The cursor is initially positioned at the first input prompt (the Public input field).</p> | <p> | ||
For some of the parameters shown on this screen, you specify an actual parameter value. For others, you select options, and FILEMGMT uses your selections to compute an appropriate parameter value.</p> | |||
<p> | |||
[[#Setting file security|Setting file security]] describes the type of information you enter. For more information about parameter settings, refer to the Rocket <var class="product">Model 204</var> File Manager's Guide and to [[Seven-Step File Load examples]]. For a discussion of how to select the most appropriate options for your particular file, refer to the Rocket <var class="product">Model 204</var> File Manager's Guide.</p> | |||
<p> | |||
The cursor is initially positioned at the first input prompt (the Public input field).</p> | |||
==Setting file security== | ==Setting file security== | ||
<p>You can select more than one option from an option category.</p> | <p> | ||
<p>To select an option, type X or another value as indicated.</p> | You can select more than one option from an option category.</p> | ||
<p>To enter a null: type a space, press the ERASE EOF key, or preserve the default underscore character (_). Null indicates that you do not want to select the option. </p> | <p> | ||
<p>Typing a character other than these is invalid, and produces an error message.</p> | To select an option, type X or another value as indicated.</p> | ||
<p>FILEMGMT displays and/or prompts you for the following information.</p> | <p> | ||
To enter a null: type a space, press the ERASE EOF key, or preserve the default underscore character (_). Null indicates that you do not want to select the option. </p> | |||
<p> | |||
Typing a character other than these is invalid, and produces an error message.</p> | |||
<p> | |||
FILEMGMT displays and/or prompts you for the following information.</p> | |||
<table> | <table> | ||
<tr class="head"> | <tr class="head"> | ||
Line 67: | Line 68: | ||
<th>Response</th> | <th>Response</th> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td>Filename</td> | <td>Filename</td> | ||
<td>FILEMGMT displays the name of the file that you entered on the primary screen, and indicates whether the file is Active or Inactive. </td> | <td>FILEMGMT displays the name of the file that you entered on the primary screen, and indicates whether the file is Active or Inactive. </td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td>FILE ACCESS</td> | <td>FILE ACCESS</td> | ||
Line 76: | Line 79: | ||
<p>Selects file access characteristics for the specified file. FILEMGMT computes the <var class="product">Model 204</var> OPENCTL parameter from your selections and displays the computed value.</p> | <p>Selects file access characteristics for the specified file. FILEMGMT computes the <var class="product">Model 204</var> OPENCTL parameter from your selections and displays the computed value.</p> | ||
<p>Select just one option from the Public, Semipublic, and Private options. </p> | <p>Select just one option from the Public, Semipublic, and Private options. </p> | ||
<table> | <table> | ||
<tr> | <tr> | ||
Line 82: | Line 86: | ||
<th>Response</th> | <th>Response</th> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td>Public</td> | <td>Public</td> | ||
Line 87: | Line 92: | ||
<td>File is a public file.</td> | <td>File is a public file.</td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td>Semipublic</td> | <td>Semipublic</td> | ||
Line 92: | Line 98: | ||
<td>File is a semipublic file.</td> | <td>File is a semipublic file.</td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td>Private</td> | <td>Private</td> | ||
Line 98: | Line 105: | ||
</tr> | </tr> | ||
</table> | </table> | ||
</td> | </td></tr> | ||
</tr> | |||
<tr> | <tr> | ||
<td>Record Security</td> | <td>Record Security</td> | ||
<td>File has record security in effect. | <td>File has record security in effect. | ||
<table> | <table> | ||
<tr class="head"> | <tr class="head"> | ||
Line 109: | Line 117: | ||
<th>Response</th> | <th>Response</th> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td>Key</td> | <td>Key</td> | ||
<td>null</td> | <td>null</td> | ||
<td> | <td> | ||
<p>Name of the field used as the record security key. Key requires an entry if you select Record Security. The entry must be a valid field name (1-70 characters). The requirements for a valid field name are described in the Rocket <var class="product">Model 204</var> File Manager's Guide.</p> | <p> | ||
<p>A null entry is required unless you select Record Security.</p> | Name of the field used as the record security key. Key requires an entry if you select Record Security. The entry must be a valid field name (1-70 characters). The requirements for a valid field name are described in the Rocket <var class="product">Model 204</var> File Manager's Guide.</p> | ||
<p> | |||
A null entry is required unless you select Record Security.</p> | |||
</td> | </td> | ||
</tr> | </tr> | ||
</table> | </table> | ||
</td> | </td></tr> | ||
</tr> | |||
<tr> | <tr> | ||
<td>REMOTE FILE ACCESS PRIVILEGES</td> | <td>REMOTE FILE ACCESS PRIVILEGES</td> | ||
<td>Additional OPENCTL options for Parallel Query Option/204 (PQO) sites. The following options determine how a file can be accessed remotely. | <td>Additional OPENCTL options for Parallel Query Option/204 (PQO) sites. The following options determine how a file can be accessed remotely. | ||
<table> | <table> | ||
<tr class="head"> | <tr class="head"> | ||
Line 129: | Line 141: | ||
<th>Response</th> | <th>Response</th> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td>NO/INV PWD</td> | <td>NO/INV PWD</td> | ||
Line 135: | Line 148: | ||
</td> | </td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td>VALID PWD </td> | <td>VALID PWD </td> | ||
Line 140: | Line 154: | ||
<td>Accessible remotely with a valid password.</td> | <td>Accessible remotely with a valid password.</td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td>GROUP MEMBER </td> | <td>GROUP MEMBER </td> | ||
Line 146: | Line 161: | ||
</tr> | </tr> | ||
</table> | </table> | ||
</td> | </td></tr> | ||
</tr> | |||
<tr> | <tr> | ||
<td>DEFAULT FILE PRIVILEGES</td> | <td>DEFAULT FILE PRIVILEGES</td> | ||
<td>Select the default user privileges for the specified file. FILEMGMT computes the <var class="product">Model 204</var> PRIVDEF parameter from your selections and displays the computed value. | <td>Select the default user privileges for the specified file. FILEMGMT computes the <var class="product">Model 204</var> PRIVDEF parameter from your selections and displays the computed value. | ||
<table> | <table> | ||
<tr class="head"> | <tr class="head"> | ||
Line 157: | Line 173: | ||
<th>Response</th> | <th>Response</th> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td>File Manager</td> | <td>File Manager</td> | ||
Line 163: | Line 179: | ||
<td>Default user privileges include file manager privileges.</td> | <td>Default user privileges include file manager privileges.</td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td>Record Security Override</td> | <td>Record Security Override</td> | ||
Line 168: | Line 185: | ||
<td>Default user privileges allow record security to be overridden.</td> | <td>Default user privileges allow record security to be overridden.</td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td>View File Parms</td> | <td>View File Parms</td> | ||
Line 174: | Line 192: | ||
</tr> | </tr> | ||
</table> | </table> | ||
</td> | </td></tr> | ||
</tr> | |||
<tr> | <tr> | ||
<td>RETRIEVE DATA WITH PROCEDURES</td> | <td>RETRIEVE DATA WITH PROCEDURES</td> | ||
<td>Select the default user privileges for PROCEDURES retrieving data by means of procedures. | <td>Select the default user privileges for PROCEDURES retrieving data by means of procedures. | ||
<table> | <table> | ||
<tr class="head"> | <tr class="head"> | ||
Line 185: | Line 204: | ||
<th>Response</th> | <th>Response</th> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td>Adhoc</td> | <td>Adhoc</td> | ||
Line 190: | Line 210: | ||
<td>Default user privileges allow data to be retrieved by ad hoc requests.</td> | <td>Default user privileges allow data to be retrieved by ad hoc requests.</td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td>Internal</td> | <td>Internal</td> | ||
Line 195: | Line 216: | ||
<td>Default user privileges allow data to be retrieved by internal procedures.</td> | <td>Default user privileges allow data to be retrieved by internal procedures.</td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td>External</td> | <td>External</td> | ||
Line 201: | Line 223: | ||
</tr> | </tr> | ||
</table> | </table> | ||
</td> | </td></tr> | ||
</tr> | |||
<tr> | <tr> | ||
<td>UPDATE DATA WITH PROCEDURES </td> | <td>UPDATE DATA WITH PROCEDURES </td> | ||
<td>Select the default user privileges for updating data by means of procedures. | <td>Select the default user privileges for updating data by means of procedures. | ||
<table> | <table> | ||
<tr class="head"> | <tr class="head"> | ||
Line 212: | Line 235: | ||
<th>Response</th> | <th>Response</th> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td>Adhoc</td> | <td>Adhoc</td> | ||
Line 217: | Line 241: | ||
<td>Default user privileges allow data to be updated by ad hoc requests.</td> | <td>Default user privileges allow data to be updated by ad hoc requests.</td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td>Internal</td> | <td>Internal</td> | ||
Line 222: | Line 247: | ||
<td>Default user privileges allow data to be updated by internal procedures.</td> | <td>Default user privileges allow data to be updated by internal procedures.</td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td>External</td> | <td>External</td> | ||
Line 228: | Line 254: | ||
</tr> | </tr> | ||
</table> | </table> | ||
</td> | </td></tr> | ||
</tr> | |||
<tr> | <tr> | ||
<td>INTERNAL PROCEDURES</td> | <td>INTERNAL PROCEDURES</td> | ||
<td>Select the default user privileges for performing operations on internal procedures. | <td>Select the default user privileges for performing operations on internal procedures. | ||
<table> | <table> | ||
<tr class="head"> | <tr class="head"> | ||
Line 239: | Line 266: | ||
<th>Response</th> | <th>Response</th> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td>Display/Copy</td> | <td>Display/Copy</td> | ||
Line 244: | Line 272: | ||
<td>Default user privileges allow internal procedures to be displayed, echoed, and copied.</td> | <td>Default user privileges allow internal procedures to be displayed, echoed, and copied.</td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td>Define</td> | <td>Define</td> | ||
Line 249: | Line 278: | ||
<td>Default user privileges allow internal procedures to be defined.</td> | <td>Default user privileges allow internal procedures to be defined.</td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td>Change</td> | <td>Change</td> | ||
Line 254: | Line 284: | ||
<td>Default user privileges allow changes (other than deletions) to internal procedures.</td> | <td>Default user privileges allow changes (other than deletions) to internal procedures.</td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td>Delete</td> | <td>Delete</td> | ||
Line 259: | Line 290: | ||
<td>Default user privileges allow internal procedure to be deleted.</td> | <td>Default user privileges allow internal procedure to be deleted.</td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td>Include</td> | <td>Include</td> | ||
Line 265: | Line 297: | ||
</tr> | </tr> | ||
</table> | </table> | ||
</td> | </td></tr> | ||
</tr> | |||
<tr> | <tr> | ||
<td>DEFAULT FIELD LEVEL SECURITY </td> | <td>DEFAULT FIELD LEVEL SECURITY </td> | ||
<td>Default field level security. Valid values are 0-255. | <td>Default field level security. Valid values are 0-255. | ||
<table> | <table> | ||
<tr> | <tr> | ||
Line 276: | Line 309: | ||
<th>Response</th> | <th>Response</th> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td>SELLVL </td> | <td>SELLVL </td> | ||
Line 282: | Line 315: | ||
<td>Default SELECT access. </td> | <td>Default SELECT access. </td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td>READLVL </td> | <td>READLVL </td> | ||
Line 287: | Line 321: | ||
<td>Default READ access. </td> | <td>Default READ access. </td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td>UPDTLVL </td> | <td>UPDTLVL </td> | ||
Line 292: | Line 327: | ||
<td>Default UPDATE access. </td> | <td>Default UPDATE access. </td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td>ADDLVL </td> | <td>ADDLVL </td> | ||
Line 298: | Line 334: | ||
</tr> | </tr> | ||
</table> | </table> | ||
</td> | </td></tr> | ||
</tr> | |||
</table> | </table> | ||
Line 305: | Line 340: | ||
<ol> | <ol> | ||
<li>Select the FILE Maintenance RESET function (number 2) from the primary screen. FILEMGMT displays the first of the reset screens, the File Parameter Reset screen. </li> | <li>Select the FILE Maintenance RESET function (number 2) from the primary screen. FILEMGMT displays the first of the reset screens, the File Parameter Reset screen. </li> | ||
<li>Press PF8 (FORward) to display the File Security Reset screen:</li> | |||
</ol> | </ol> | ||
<table> | <table> | ||
<tr> | <tr> | ||
Line 336: | Line 373: | ||
</tr> | </tr> | ||
</table> | </table> | ||
<p>You use the Reset screens to change the values of <var class="product">Model 204</var> file parameters that were originally set on the File Definition screens or the File Size Definition screen. FILEMGMT stages the file for a RESET command in response to your input.</p> | |||
<p>The Reset screens display the file parameters that can be reset. File parameters not displayed on the Reset screens can be changed only by recreating the file.</p> | <p> | ||
<p>For some of the file parameters shown on these screens, you specify an actual parameter value. For others, you select options, and FILEMGMT uses your selections to compute appropriate values for the FOPT, FRCVOPT, OPENCTL, and PRIVDEF parameters.</p> | You use the Reset screens to change the values of <var class="product">Model 204</var> file parameters that were originally set on the File Definition screens or the File Size Definition screen. FILEMGMT stages the file for a RESET command in response to your input.</p> | ||
<p>You need not fill in all values on all screens. Current parameter values are preserved for any parameters for which you do not enter values.</p> | <p> | ||
<p>You can move freely between the two Reset screens by pressing the PF7 (BACkward) and PF8 (FORward) keys. FILEMGMT does not save any of the information you enter until you press one of the following function keys from either of the screens:</p> | The Reset screens display the file parameters that can be reset. File parameters not displayed on the Reset screens can be changed only by recreating the file.</p> | ||
<p> | |||
For some of the file parameters shown on these screens, you specify an actual parameter value. For others, you select options, and FILEMGMT uses your selections to compute appropriate values for the FOPT, FRCVOPT, OPENCTL, and PRIVDEF parameters.</p> | |||
<p> | |||
You need not fill in all values on all screens. Current parameter values are preserved for any parameters for which you do not enter values.</p> | |||
<p> | |||
You can move freely between the two Reset screens by pressing the PF7 (BACkward) and PF8 (FORward) keys. FILEMGMT does not save any of the information you enter until you press one of the following function keys from either of the screens:</p> | |||
<table> | <table> | ||
<tr> | <tr> | ||
Line 346: | Line 390: | ||
<td>COMmands</td> | <td>COMmands</td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td>PF12</td> | <td>PF12</td> | ||
Line 351: | Line 396: | ||
</tr> | </tr> | ||
</table> | </table> | ||
<p>The section [[#Input for the Security Reset screens|Input for the Security Reset screens]] describes the type of information you enter. For more information about parameter settings, refer to the <var class="product">Model 204</var> Parameter and Command Reference. For a discussion of how to select the most appropriate options for your particular file, refer to the Rocket <var class="product">Model 204</var> File Manager's Guide.</p> | |||
<p>The cursor is initially positioned at the first input prompt on the first screen.</p> | <p> | ||
The section [[#Input for the Security Reset screens|Input for the Security Reset screens]] describes the type of information you enter. For more information about parameter settings, refer to the <var class="product">Model 204</var> Parameter and Command Reference. For a discussion of how to select the most appropriate options for your particular file, refer to the Rocket <var class="product">Model 204</var> File Manager's Guide.</p> | |||
<p> | |||
The cursor is initially positioned at the first input prompt on the first screen.</p> | |||
==Input for the Security Reset screens== | ==Input for the Security Reset screens== | ||
<p>You can select more than one option from an option category.</p> | <p> | ||
<p>To select an option, type X or a numeric value.</p> | You can select more than one option from an option category.</p> | ||
<p>To enter a null: type a space, press the ERASE EOF key, or preserve the default underscore character (_). Null indicates that you do not want to select the option. </p> | <p> | ||
<p>Typing a character other than these is invalid, and produces an error message.</p> | To select an option, type X or a numeric value.</p> | ||
<p>FILEMGMT displays and/or prompts you for the following information.</p> | <p> | ||
To enter a null: type a space, press the ERASE EOF key, or preserve the default underscore character (_). Null indicates that you do not want to select the option. </p> | |||
<p> | |||
Typing a character other than these is invalid, and produces an error message.</p> | |||
<p> | |||
FILEMGMT displays and/or prompts you for the following information.</p> | |||
<table> | <table> | ||
<tr class="head"> | <tr class="head"> | ||
Line 364: | Line 419: | ||
<th>Response</th> | <th>Response</th> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td>Filename</td> | <td>Filename</td> | ||
<td>FILEMGMT displays the name of the file that you entered on the primary screen, and indicates whether the file is Active or Inactive. </td> | <td>FILEMGMT displays the name of the file that you entered on the primary screen, and indicates whether the file is Active or Inactive. </td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td colspan="2">Screen 2: File Security Reset screen</td> | <td colspan="2">Screen 2: File Security Reset screen</td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td>FILE ACCESS</td> | <td>FILE ACCESS</td> | ||
<td>Select file access characteristics for the specified file. FILEMGMT computes a new value for the <var class="product">Model 204</var> OPENCTL parameter from your selections and displays the computed value. Select just one option from the Public, Semipublic, and Private options. </td> | <td>Select file access characteristics for the specified file. FILEMGMT computes a new value for the <var class="product">Model 204</var> OPENCTL parameter from your selections and displays the computed value. Select just one option from the Public, Semipublic, and Private options. </td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td>Public</td> | <td>Public</td> | ||
<td>File is a public file. The default is X. </td> | <td>File is a public file. The default is X. </td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td>Semipublic</td> | <td>Semipublic</td> | ||
<td>File is a semipublic file. The default is null. </td> | <td>File is a semipublic file. The default is null. </td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td>Private</td> | <td>Private</td> | ||
<td>File is a private file. The default is null.</td> | <td>File is a private file. The default is null.</td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td>Record Security</td> | <td>Record Security</td> | ||
<td>File has record security in effect. The default is null.</td> | <td>File has record security in effect. The default is null.</td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td>REMOTE FILE ACCESS PRIVILEGES</td> | <td>REMOTE FILE ACCESS PRIVILEGES</td> | ||
<td>Additional OPENCTL options for Parallel Query Option/204 (PQO) sites, the following options determine how a file can be accessed remotely.</td> | <td>Additional OPENCTL options for Parallel Query Option/204 (PQO) sites, the following options determine how a file can be accessed remotely.</td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td>NO/INV/ PWD</td> | <td>NO/INV/ PWD</td> | ||
<td>Accessible remotely without a valid password</td> | <td>Accessible remotely without a valid password</td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td>VALID PWD</td> | <td>VALID PWD</td> | ||
<td>Accessible remotely with a valid password.</td> | <td>Accessible remotely with a valid password.</td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td>GROUP MEMBER</td> | <td>GROUP MEMBER</td> | ||
<td>Accessible remotely as a permanent group member.</td> | <td>Accessible remotely as a permanent group member.</td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td>DEFAULT PROCEDURE CLASS PRCLDEF</td> | <td>DEFAULT PROCEDURE CLASS PRCLDEF</td> | ||
<td | <td>Default user class for procedures, if the file is public or semipublic. | ||
<p> | |||
Valid values are 0-255. The default is 0.</td> | |||
</td> | |||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td>DEFAULT FILE PRIVILEGES</td> | <td>DEFAULT FILE PRIVILEGES</td> | ||
<td>Select default user privileges characteristics for the specified file. FILEMGMT computes a new value for the <var class="product">Model 204</var> PRIVDEF parameter from your selections and displays the computed value.</td> | <td>Select default user privileges characteristics for the specified file. FILEMGMT computes a new value for the <var class="product">Model 204</var> PRIVDEF parameter from your selections and displays the computed value.</td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td>File Manager</td> | <td>File Manager</td> | ||
<td>Default user privileges include file manager privileges. The default is X.</td> | <td>Default user privileges include file manager privileges. The default is X.</td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td>Record Security</td> | <td>Record Security</td> | ||
<td>Default user privileges allow record security Override to be overridden. The default is null.</td> | <td>Default user privileges allow record security Override to be overridden. The default is null.</td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td>View File Parms</td> | <td>View File Parms</td> | ||
<td>Default user privileges allow file parameters to be viewed. The default is X. The default cannot be changed for a pre-9.0 file.</td> | <td>Default user privileges allow file parameters to be viewed. The default is X. The default cannot be changed for a pre-9.0 file.</td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td colspan="2">RETRIEVE DATA WITH PROCEDURES</td> | <td colspan="2">RETRIEVE DATA WITH PROCEDURES</td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td>Adhoc</td> | <td>Adhoc</td> | ||
<td>Default user privileges allow data to be retrieved by ad hoc requests. The default is X.</td> | <td>Default user privileges allow data to be retrieved by ad hoc requests. The default is X.</td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td>Internal</td> | <td>Internal</td> | ||
<td>Default user privileges allow data to be retrieved by internal procedures. The default is X.</td> | <td>Default user privileges allow data to be retrieved by internal procedures. The default is X.</td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td>External</td> | <td>External</td> | ||
<td>Default user privileges allow data to be retrieved by external procedures. The default is X. </td> | <td>Default user privileges allow data to be retrieved by external procedures. The default is X. </td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td colspan="2">UPDATE DATA WITH PROCEDURES</td> | <td colspan="2">UPDATE DATA WITH PROCEDURES</td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td>Adhoc</td> | <td>Adhoc</td> | ||
<td>Default user privileges allow data to be updated by ad hoc requests. The default is X.</td> | <td>Default user privileges allow data to be updated by ad hoc requests. The default is X.</td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td>Internal</td> | <td>Internal</td> | ||
<td>Default user privileges allow data to be updated by internal procedures. The default is X.</td> | <td>Default user privileges allow data to be updated by internal procedures. The default is X.</td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td>External</td> | <td>External</td> | ||
<td>Default user privileges allow data to be updated by external procedures. The default is X.</td> | <td>Default user privileges allow data to be updated by external procedures. The default is X.</td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td colspan="2">INTERNAL PROCEDURES</td> | <td colspan="2">INTERNAL PROCEDURES</td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td>Display/Copy</td> | <td>Display/Copy</td> | ||
<td>Default user privileges allow internal procedures to be displayed, echoed, and copied. The default is X.</td> | <td>Default user privileges allow internal procedures to be displayed, echoed, and copied. The default is X.</td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td>Define</td> | <td>Define</td> | ||
<td>Default user privileges allow internal procedures to be defined. The default is X.</td> | <td>Default user privileges allow internal procedures to be defined. The default is X.</td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td>Change</td> | <td>Change</td> | ||
<td>Default user privileges allow changes (other than deletions) to internal procedures. The default is X.</td> | <td>Default user privileges allow changes (other than deletions) to internal procedures. The default is X.</td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td>Delete</td> | <td>Delete</td> | ||
<td>Default user privileges allow internal procedures to be deleted. The default is X.</td> | <td>Default user privileges allow internal procedures to be deleted. The default is X.</td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td>Include</td> | <td>Include</td> | ||
<td>Default user privileges allow internal procedures to be included. The default is X.</td> | <td>Default user privileges allow internal procedures to be included. The default is X.</td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td>DEFAULT FIELD LEVEL SECURITY</td> | <td>DEFAULT FIELD LEVEL SECURITY</td> | ||
<td>Default field level security. Valid values are 0-255. The default is 0.</td> | <td>Default field level security. Valid values are 0-255. The default is 0.</td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td>SELLVL</td> | <td>SELLVL</td> | ||
<td>Default SELECT access. </td> | <td>Default SELECT access. </td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td>READLVL</td> | <td>READLVL</td> | ||
<td>Default READ access. </td> | <td>Default READ access. </td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td>UPDTLVL</td> | <td>UPDTLVL</td> | ||
<td>Default UPDATE access. </td> | <td>Default UPDATE access. </td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td>ADDLVL</td> | <td>ADDLVL</td> | ||
Line 504: | Line 593: | ||
</tr> | </tr> | ||
</table> | </table> | ||
==File parameter reset commands== | ==File parameter reset commands== | ||
<p>To issue a command, press a PF key or type a command name at the prompt (===>) and press Enter.</p> | <p> | ||
To issue a command, press a PF key or type a command name at the prompt (===>) and press Enter.</p> | |||
<table> | <table> | ||
<tr class="head"> | <tr class="head"> | ||
Line 512: | Line 604: | ||
<th>Meaning</th> | <th>Meaning</th> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td> | <td>F1</td> | ||
<td>HELp</td> | <td>HELp</td> | ||
<td>Displays HELP text for the File Parameter Reset screens.</td> | <td>Displays HELP text for the File Parameter Reset screens.</td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td> | <td>F3</td> | ||
<td>QUIt</td> | <td>QUIt</td> | ||
<td>Exits from the File Parameter Reset screens and returns to the primary screen without changing any parameter values. </td> | <td>Exits from the File Parameter Reset screens and returns to the primary screen without changing any parameter values. </td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td> | <td>F6</td> | ||
<td>COMmands </td> | <td>COMmands </td> | ||
<td>Stages the file for RESET. Proceeds to the Execute Commands screens. This screen displays the staged commands that were generated for the file and allows you to select the commands you want to execute. </td> | <td>Stages the file for RESET. Proceeds to the Execute Commands screens. This screen displays the staged commands that were generated for the file and allows you to select the commands you want to execute. </td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td> | <td>F7</td> | ||
<td>BACkward</td> | <td>BACkward</td> | ||
<td>Screen 2 only. Returns to the first File Parameter Reset screen. </td> | <td>Screen 2 only. Returns to the first File Parameter Reset screen. </td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td> | <td>F8</td> | ||
<td>FORward</td> | <td>FORward</td> | ||
<td>Screen 1 only. Proceeds to the second File Parameter Reset screen.</td> | <td>Screen 1 only. Proceeds to the second File Parameter Reset screen.</td> | ||
</tr> | </tr> | ||
<tr> | <tr> | ||
<td> | <td>F12 </td> | ||
<td>END</td> | <td>END</td> | ||
<td>Stages the file for RESET. Exits from the File Parameter Reset screen and returns to the primary screen.</td> | <td>Stages the file for RESET. Exits from the File Parameter Reset screen and returns to the primary screen.</td> | ||
</tr> | </tr> | ||
</table> | </table> | ||
==Controlling file access with the SECURE and DESECURE commands== | ==Controlling file access with the SECURE and DESECURE commands== | ||
<p>SECURE and DESECURE are <var class="product">Model 204</var> commands that you can use to control file access. </p> | <p> | ||
<p>Securing a file ensures that a user cannot access a file illegally by running a <var class="product">Model 204</var> program with a different password table. A special key in the password table serves as the key for securing a file. The key can be changed by the system manager with the LOGKEY command. </p> | SECURE and DESECURE are <var class="product">Model 204</var> commands that you can use to control file access. </p> | ||
<p>When a secured file is opened, <var class="product">Model 204</var> compares the key to a copy placed in the file by the SECURE command. The file is opened if the two fields match. If the fields do not match, the user is logged out and an error message is displayed on the operator's console.</p> | <p> | ||
<p>Existing files can be secured or desecured. Staged files can be secured or desecured, with these exceptions:</p> | Securing a file ensures that a user cannot access a file illegally by running a <var class="product">Model 204</var> program with a different password table. A special key in the password table serves as the key for securing a file. The key can be changed by the system manager with the LOGKEY command. </p> | ||
<p> | |||
When a secured file is opened, <var class="product">Model 204</var> compares the key to a copy placed in the file by the SECURE command. The file is opened if the two fields match. If the fields do not match, the user is logged out and an error message is displayed on the operator's console.</p> | |||
<p> | |||
Existing files can be secured or desecured. Staged files can be secured or desecured, with these exceptions:</p> | |||
<ul> | <ul> | ||
<li>Files staged for SECURE cannot be desecured, and conversely, files staged for DESECURE cannot be secured.</li> | <li>Files staged for SECURE cannot be desecured, and conversely, files staged for DESECURE cannot be secured.</li> | ||
<li>Files staged for CREATE, RECREATE, DELETE, and INITIALIZE can be neither secured nor desecured. </li> | <li>Files staged for CREATE, RECREATE, DELETE, and INITIALIZE can be neither secured nor desecured. </li> | ||
</ul> | </ul> | ||
<p>You must have file-level privileges of at least X'A000' (file manager and ad hoc data update) to issue SECURE and DESECURE commands. In this case, you actually need update but not retrieve privileges. (Refer to "File security" for a discussion of these privileges.)</p> | <p> | ||
<p>To stage a file for the SECURE or DESECURE command:</p> | You must have file-level privileges of at least X'A000' (file manager and ad hoc data update) to issue SECURE and DESECURE commands. In this case, you actually need update but not retrieve privileges. (Refer to "File security" for a discussion of these privileges.)</p> | ||
<p> | |||
To stage a file for the SECURE or DESECURE command:</p> | |||
<ol> | <ol> | ||
<li>Enter the file name on the primary screen.</li> | <li>Enter the file name on the primary screen.</li> |
Revision as of 16:41, 21 March 2014
You can define security for a Model 204 file either using the File Management Subsystem facility (FILEMGMT) or from the command line. For ease of use and to avoid errors, FILEMGMT is recommended.
Press the F8 (FORward) key from the File Definition - Organization screen, or the F7 (BACkward) key from the File Definition - Procedure screen. FILEMGMT displays the second file definition screen, the Security screen:
FILEMGMT File Definition - Security PAGE 2 OF 3 Filename: ABC Inactive FILE ACCESS OPENCTL X' 80 ' Public: X Semipublic: _ Private: _ Record Security: _ Key: REMOTE FILE ACCESS PRIVILEGES NO/INV PWD: _ VALID PWD: _ GROUP MEMBER: _ DEFAULT FILE PRIVILEGES PRIVDEF X' BFFF ' File Manager: X Record Security Override: _ View File Parms: X RETRIEVE DATA WITH PROCEDURES Adhoc: X Internal: X External: X UPDATE DATA WITH PROCEDURES Adhoc: X Internal: X External: X INTERNAL PROCEDURES Display/Copy: X Define: X Change: X Delete: X Include: X DEFAULT FIELD LEVEL SECURITY SELLVL: 0 READLVL: 0 UPDTLVL: 0 ADDLVL: 0 ===> 1=HELp 2= 3=QUIt 4=FIElds 5=WIDen 6=COMmands 7=BACkward 8=FORward 9=SIZe 10= 11= 12=END |
You use the File Definition - Security screen to specify Model 204 security parameters for the file you are creating. When this screen is displayed for a file for the first time, FILEMGMT shows the standard Model 204 default values for the parameters.
For some of the parameters shown on this screen, you specify an actual parameter value. For others, you select options, and FILEMGMT uses your selections to compute an appropriate parameter value.
Setting file security describes the type of information you enter. For more information about parameter settings, refer to the Rocket Model 204 File Manager's Guide and to Seven-Step File Load examples. For a discussion of how to select the most appropriate options for your particular file, refer to the Rocket Model 204 File Manager's Guide.
The cursor is initially positioned at the first input prompt (the Public input field).
Setting file security
You can select more than one option from an option category.
To select an option, type X or another value as indicated.
To enter a null: type a space, press the ERASE EOF key, or preserve the default underscore character (_). Null indicates that you do not want to select the option.
Typing a character other than these is invalid, and produces an error message.
FILEMGMT displays and/or prompts you for the following information.
Prompt | Response | ||||||||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
Filename | FILEMGMT displays the name of the file that you entered on the primary screen, and indicates whether the file is Active or Inactive. | ||||||||||||||||||
FILE ACCESS |
Selects file access characteristics for the specified file. FILEMGMT computes the Model 204 OPENCTL parameter from your selections and displays the computed value. Select just one option from the Public, Semipublic, and Private options.
| ||||||||||||||||||
Record Security | File has record security in effect.
| ||||||||||||||||||
REMOTE FILE ACCESS PRIVILEGES | Additional OPENCTL options for Parallel Query Option/204 (PQO) sites. The following options determine how a file can be accessed remotely.
| ||||||||||||||||||
DEFAULT FILE PRIVILEGES | Select the default user privileges for the specified file. FILEMGMT computes the Model 204 PRIVDEF parameter from your selections and displays the computed value.
| ||||||||||||||||||
RETRIEVE DATA WITH PROCEDURES | Select the default user privileges for PROCEDURES retrieving data by means of procedures.
| ||||||||||||||||||
UPDATE DATA WITH PROCEDURES | Select the default user privileges for updating data by means of procedures.
| ||||||||||||||||||
INTERNAL PROCEDURES | Select the default user privileges for performing operations on internal procedures.
| ||||||||||||||||||
DEFAULT FIELD LEVEL SECURITY | Default field level security. Valid values are 0-255.
|
Resetting file security
- Select the FILE Maintenance RESET function (number 2) from the primary screen. FILEMGMT displays the first of the reset screens, the File Parameter Reset screen.
- Press PF8 (FORward) to display the File Security Reset screen:
FILEMGMT File Security Reset Screen Page 2 of 2 Filename: ABC Inactive FILE ACCESS OPENCTL X' 80 ' Public: X Semipublic: _ Private: _ Record Security: REMOTE FILE ACCESS PRIVILEGES NO/INV PWD: _ VALID PWD: _ GROUP MEMBER: _ DEFAULT FILE PRIVILEGES PRIVDEF X' BFFF ' File Manager: X Record Security Override: _ View File Parms: X RETRIEVE DATA WITH PROCEDURES Adhoc: X Internal: X External: X UPDATE DATA WITH PROCEDURES Adhoc: X Internal: X External: X INTERNAL PROCEDURES Display/Copy: X Define: X Change: X Delete: X Include: X DEFAULT FIELD LEVEL SECURITY SELLVL: 0 READLVL: 0 UPDTLVL: 0 ADDLVL: 0 DEFAULT PROCEDURE CLASS PRCLDEF: 0 ===> 1=HELp 2= 3=QUIt 4= 5= 6=COMmands 7=BACkward 8= 9= 10= 11= 12=END |
You use the Reset screens to change the values of Model 204 file parameters that were originally set on the File Definition screens or the File Size Definition screen. FILEMGMT stages the file for a RESET command in response to your input.
The Reset screens display the file parameters that can be reset. File parameters not displayed on the Reset screens can be changed only by recreating the file.
For some of the file parameters shown on these screens, you specify an actual parameter value. For others, you select options, and FILEMGMT uses your selections to compute appropriate values for the FOPT, FRCVOPT, OPENCTL, and PRIVDEF parameters.
You need not fill in all values on all screens. Current parameter values are preserved for any parameters for which you do not enter values.
You can move freely between the two Reset screens by pressing the PF7 (BACkward) and PF8 (FORward) keys. FILEMGMT does not save any of the information you enter until you press one of the following function keys from either of the screens:
PF6 | COMmands |
PF12 | END |
The section Input for the Security Reset screens describes the type of information you enter. For more information about parameter settings, refer to the Model 204 Parameter and Command Reference. For a discussion of how to select the most appropriate options for your particular file, refer to the Rocket Model 204 File Manager's Guide.
The cursor is initially positioned at the first input prompt on the first screen.
Input for the Security Reset screens
You can select more than one option from an option category.
To select an option, type X or a numeric value.
To enter a null: type a space, press the ERASE EOF key, or preserve the default underscore character (_). Null indicates that you do not want to select the option.
Typing a character other than these is invalid, and produces an error message.
FILEMGMT displays and/or prompts you for the following information.
Prompt | Response |
---|---|
Filename | FILEMGMT displays the name of the file that you entered on the primary screen, and indicates whether the file is Active or Inactive. |
Screen 2: File Security Reset screen | |
FILE ACCESS | Select file access characteristics for the specified file. FILEMGMT computes a new value for the Model 204 OPENCTL parameter from your selections and displays the computed value. Select just one option from the Public, Semipublic, and Private options. |
Public | File is a public file. The default is X. |
Semipublic | File is a semipublic file. The default is null. |
Private | File is a private file. The default is null. |
Record Security | File has record security in effect. The default is null. |
REMOTE FILE ACCESS PRIVILEGES | Additional OPENCTL options for Parallel Query Option/204 (PQO) sites, the following options determine how a file can be accessed remotely. |
NO/INV/ PWD | Accessible remotely without a valid password |
VALID PWD | Accessible remotely with a valid password. |
GROUP MEMBER | Accessible remotely as a permanent group member. |
DEFAULT PROCEDURE CLASS PRCLDEF | Default user class for procedures, if the file is public or semipublic.
Valid values are 0-255. The default is 0. |
DEFAULT FILE PRIVILEGES | Select default user privileges characteristics for the specified file. FILEMGMT computes a new value for the Model 204 PRIVDEF parameter from your selections and displays the computed value. |
File Manager | Default user privileges include file manager privileges. The default is X. |
Record Security | Default user privileges allow record security Override to be overridden. The default is null. |
View File Parms | Default user privileges allow file parameters to be viewed. The default is X. The default cannot be changed for a pre-9.0 file. |
RETRIEVE DATA WITH PROCEDURES | |
Adhoc | Default user privileges allow data to be retrieved by ad hoc requests. The default is X. |
Internal | Default user privileges allow data to be retrieved by internal procedures. The default is X. |
External | Default user privileges allow data to be retrieved by external procedures. The default is X. |
UPDATE DATA WITH PROCEDURES | |
Adhoc | Default user privileges allow data to be updated by ad hoc requests. The default is X. |
Internal | Default user privileges allow data to be updated by internal procedures. The default is X. |
External | Default user privileges allow data to be updated by external procedures. The default is X. |
INTERNAL PROCEDURES | |
Display/Copy | Default user privileges allow internal procedures to be displayed, echoed, and copied. The default is X. |
Define | Default user privileges allow internal procedures to be defined. The default is X. |
Change | Default user privileges allow changes (other than deletions) to internal procedures. The default is X. |
Delete | Default user privileges allow internal procedures to be deleted. The default is X. |
Include | Default user privileges allow internal procedures to be included. The default is X. |
DEFAULT FIELD LEVEL SECURITY | Default field level security. Valid values are 0-255. The default is 0. |
SELLVL | Default SELECT access. |
READLVL | Default READ access. |
UPDTLVL | Default UPDATE access. |
ADDLVL | Default ADD access. |
File parameter reset commands
To issue a command, press a PF key or type a command name at the prompt (===>) and press Enter.
Key | Command | Meaning |
---|---|---|
F1 | HELp | Displays HELP text for the File Parameter Reset screens. |
F3 | QUIt | Exits from the File Parameter Reset screens and returns to the primary screen without changing any parameter values. |
F6 | COMmands | Stages the file for RESET. Proceeds to the Execute Commands screens. This screen displays the staged commands that were generated for the file and allows you to select the commands you want to execute. |
F7 | BACkward | Screen 2 only. Returns to the first File Parameter Reset screen. |
F8 | FORward | Screen 1 only. Proceeds to the second File Parameter Reset screen. |
F12 | END | Stages the file for RESET. Exits from the File Parameter Reset screen and returns to the primary screen. |
Controlling file access with the SECURE and DESECURE commands
SECURE and DESECURE are Model 204 commands that you can use to control file access.
Securing a file ensures that a user cannot access a file illegally by running a Model 204 program with a different password table. A special key in the password table serves as the key for securing a file. The key can be changed by the system manager with the LOGKEY command.
When a secured file is opened, Model 204 compares the key to a copy placed in the file by the SECURE command. The file is opened if the two fields match. If the fields do not match, the user is logged out and an error message is displayed on the operator's console.
Existing files can be secured or desecured. Staged files can be secured or desecured, with these exceptions:
- Files staged for SECURE cannot be desecured, and conversely, files staged for DESECURE cannot be secured.
- Files staged for CREATE, RECREATE, DELETE, and INITIALIZE can be neither secured nor desecured.
You must have file-level privileges of at least X'A000' (file manager and ad hoc data update) to issue SECURE and DESECURE commands. In this case, you actually need update but not retrieve privileges. (Refer to "File security" for a discussion of these privileges.)
To stage a file for the SECURE or DESECURE command:
- Enter the file name on the primary screen.
- Select the SECURE or DESECURE command.
- Press Enter.
FILEMGMT displays a message confirming that the file is staged for SECURE or DESECURE. You can proceed to the Execute Commands screen to execute the command.