How to accept TSO user id



IBM's Command List programming language & Restructured Extended Executor

How to accept TSO user id

Postby bandigurunath » Mon Jan 27, 2014 4:01 pm

Hi,
I am new to REXX programining.My query is i need to give edit access to a specific file for specific user id's. I am planning to accept their useid's thru TSO teminal( When ever the user enter with there credentials in TSO at that time only he can edit the file). In REXX how to accept the user id?
Thank you.
bandigurunath
 
Posts: 2
Joined: Wed Jan 01, 2014 11:58 am
Has thanked: 0 time
Been thanked: 0 time

Re: How to accept TSO user id

 

Re: How to accept TSO user id

Postby enrico-sorichetti » Mon Jan 27, 2014 4:39 pm

speak to Your security support group
cheers
enrico
When I tell somebody to RTFM or STFW I usually have the page open in another tab/window of my browser,
so that I am sure that the information requested can be reached with a very small effort
enrico-sorichetti
Global moderator
 
Posts: 2643
Joined: Fri Apr 18, 2008 11:25 pm
Has thanked: 0 time
Been thanked: 130 times

Re: How to accept TSO user id

Postby dick scherrer » Mon Jan 27, 2014 7:50 pm

Hello,

You do not do this. The security admins can tell you how to modify access to the dataset(s).

None of this should be in the REXX code.
Hope this helps,
d.sch.
User avatar
dick scherrer
Global moderator
 
Posts: 6304
Joined: Sat Jun 09, 2007 8:58 am
Has thanked: 3 times
Been thanked: 91 times

Re: How to accept TSO user id

Postby Pedro » Wed Jan 29, 2014 11:36 pm

It is not clear what you mean here:
When ever the user enter with their credentials in TSO at that time only he can edit the file


Perhaps it works differently somewhere else, but my experience is that you cannot logon and use TSO without already providing your password. You have already proved who you are. Why would you need more 'credentials'?
Pedro Vera
User avatar
Pedro
 
Posts: 569
Joined: Thu Jul 31, 2008 9:59 pm
Location: Silicon Valley
Has thanked: 0 time
Been thanked: 39 times

Re: How to accept TSO user id

Postby steve-myers » Wed Jan 29, 2014 11:57 pm

Pedro: I think bandigurunath is proposing that he validates the userid by obtaining the user's password. bandigurunath: in theory this can be done by an authorized Assembler program, but it is not going to happen in Rexx. Period. Full stop. End of story.
steve-myers
Global moderator
 
Posts: 1885
Joined: Thu Jun 03, 2010 6:21 pm
Has thanked: 4 times
Been thanked: 197 times

Re: How to accept TSO user id

Postby dick scherrer » Thu Jan 30, 2014 7:59 am

Hello,

The users will provide their id and pswd to log in.

Permission will have to be granted to allow them to edit. This should be done with your security admins.
Hope this helps,
d.sch.
User avatar
dick scherrer
Global moderator
 
Posts: 6304
Joined: Sat Jun 09, 2007 8:58 am
Has thanked: 3 times
Been thanked: 91 times

Re: How to accept TSO user id

Postby sureshpathi10 » Thu Jan 30, 2014 12:11 pm

I guess, you have list of ID's who has authority to edit that particular dataset. And in you rexx code, you have to get logged user-id and compare with your existing list and proceed with edit dataset..

If I guessed correctly, you need
userid()
built-in-function, which will give current logged in user id.

But as mentioned earlier by others, these edit authority should be in the hand of security admin.
sureshpathi10
 
Posts: 1
Joined: Thu Jan 30, 2014 11:53 am
Has thanked: 1 time
Been thanked: 0 time

Re: How to accept TSO user id

Postby dick scherrer » Thu Jan 30, 2014 10:27 pm

Hello,

built-in-function, which will give current logged in user id.
No, this should NOT be done . . .

The permissions need to be enforced in security, NOT the code.
Hope this helps,
d.sch.
User avatar
dick scherrer
Global moderator
 
Posts: 6304
Joined: Sat Jun 09, 2007 8:58 am
Has thanked: 3 times
Been thanked: 91 times

Re: How to accept TSO user id

Postby Pedro » Thu Jan 30, 2014 10:33 pm

1. the user has already verified the credentials by providing userid and password to log in.
2. the administrator should issue PERMIT commands to grant permission prior to the user needing access.
3. RACF will manage the list of users authorized to edit a data set.
4. When someone tries to edit a data set, at that time the system determines whether he is not allowed to edit or not and if so, "at that time only he can edit the file"

That is the way the system is supposed to work, without any user written code.

If you are the one to manage the list of authorized users, contact the security administrator to make sure you have RACF CONTROL authority over the data set. You need to be able to issue PERMIT and LISTDSD commands.
Pedro Vera
User avatar
Pedro
 
Posts: 569
Joined: Thu Jul 31, 2008 9:59 pm
Location: Silicon Valley
Has thanked: 0 time
Been thanked: 39 times


Return to CLIST & REXX

 


  • Related topics
    Replies
    Views
    Last post