Query Security
I have written several queries which I don't want others to change. I edited the authority for this query and changed the object authority to *EXCLUDE for user *PUBLIC and all other authorized users. However, users are still able to access and change my queries. Why? What do I need to do?
Software/Hardware used:
Software/Hardware used:
ASKED:
October 5, 2006 8:33 AM
UPDATED:
October 6, 2006 12:06 PM
Answer Wiki:
Couple of things jump right to mind:
- By chance, do these users have the *ALLOBJ special authority in their profile, or belong to a group that does? If so, that trumps any other authority rules you may be trying to implement.
- How are they accessing these queries? By chance, would it be from a CL that runs with adopted authority, or within some sort of program menu structure that utilizes adopted authority, a la BPCS or Jack Henry? If so, that might be running as some other user that the one you think.
Just the first two things that come to mind.
To see all answers submitted to the Answer Wiki: View Answer History.
Either of the two scenarios Carter mentioned is likely. If you have adopted authority where *ALLOBJ. Best to track when you query was run and by what CurUser. Might try checking QHST. Also check how your query is invoked. You may have someone else that borrowed it but had *ALLOBJ in their code.