WEBPUBLOG (JANUS DEFINE parameter): Difference between revisions
m (1 revision) |
m (1 revision) |
||
| Line 1: | Line 1: | ||
<span class="pageSubtitle"><section begin="desc" />Forces 'real' login for public URLs.<section end="desc" /></span> | <span class="pageSubtitle"><section begin="desc" />Forces 'real' login for public URLs.<section end="desc" /></span> | ||
<var>WEBPUBLOG</var> is a parameter on [[JANUS DEFINE]], which defines and sets characteristics of a Janus port | <var>WEBPUBLOG</var> is a parameter on [[JANUS DEFINE]], which defines and sets characteristics of a Janus port. | ||
This parameter indicates that a "real" login should be done for the WEBUSER userid for public URLs. The "real" login will be a trusted login so passwords will not be required from end-users, but the WEBUSER userid '''must''' be defined in CCASTAT or to the external authorizer (RACF, ACF2 or Top Secret) if <var>WEBPUBLOG</var> is specified for a port. If <var>WEBPUBLOG</var> is '''not''' specified, the WEBUSER userid will be logged on for public URLs whether or not it is defined in CCASTAT or to an external authorizer, and it will be given UPRIV 0 (default user privileges). | This parameter indicates that a "real" login should be done for the WEBUSER userid for public URLs. The "real" login will be a trusted login so passwords will not be required from end-users, but the WEBUSER userid '''must''' be defined in CCASTAT or to the external authorizer (RACF, ACF2 or Top Secret) if <var>WEBPUBLOG</var> is specified for a port. If <var>WEBPUBLOG</var> is '''not''' specified, the WEBUSER userid will be logged on for public URLs whether or not it is defined in CCASTAT or to an external authorizer, and it will be given UPRIV 0 (default user privileges). | ||
Revision as of 22:33, 29 February 2012
<section begin="desc" />Forces 'real' login for public URLs.<section end="desc" />
WEBPUBLOG is a parameter on JANUS DEFINE, which defines and sets characteristics of a Janus port.
This parameter indicates that a "real" login should be done for the WEBUSER userid for public URLs. The "real" login will be a trusted login so passwords will not be required from end-users, but the WEBUSER userid must be defined in CCASTAT or to the external authorizer (RACF, ACF2 or Top Secret) if WEBPUBLOG is specified for a port. If WEBPUBLOG is not specified, the WEBUSER userid will be logged on for public URLs whether or not it is defined in CCASTAT or to an external authorizer, and it will be given UPRIV 0 (default user privileges).
WEBPUBLOG can be used if even public logins should be logged by an external authorizer (as a matter of policy), or if non-standard privileges are to be assigned to the public user. Use caution if assigning any privileges to the WEBUSER userid, since this can be a potential security exposure. WEBPUBLOG might also be used to take advantage of the improved monitoring and auditing capabilities made possible by the WEBLOGHOLD parameter.
WEBPL is a synonym for WEBPUBLOG.
Valid only for WEBSERV ports.
References
See: List of Janus commands | List of JANUS DEFINE parameters.