ca.portal.admin

DIRECT records

Discussion created by ca.portal.admin on Oct 10, 2006
We have a programmer that is trying to process an area that just
contains DIRECT records. His process reads a record, processes it then
deletes it. He obtains the records by using the OBTAIN FIRST within area
command for all reads. Somehow he is skipping two records. Firstly, how
can that be and secondly, how can he change his process to get all the
records?



Thanks in advance,



Allen Riddle





"
IDMS Public Discussion Forum
IDMS-L@LISTSERV.IUASSN.COM
SMTP
IDMS-L@LISTSERV.IUASSN.COM
IDMS-L@LISTSERV.IUASSN.COM
SMTP








Normal

Normal
Re: DIRECT records
"Perhaps the subschema in use now defines the page range for the record as
being less pages than the one used to store the two records. A utility
counting them via the DMCL definition of the area would still find them. Are
they at an end of the area?

From: ""Riddle, Allen [IDR]"" <Allen.Riddle@IOWA.GOV>
Reply-To: IDMS Public Discussion Forum <IDMS-L@LISTSERV.IUASSN.COM>
To: IDMS-L@LISTSERV.IUASSN.COM
Subject: DIRECT records
Date: Tue, 10 Oct 2006 06:42:32 -0500

We have a programmer that is trying to process an area that just
contains DIRECT records. His process reads a record, processes it then
deletes it. He obtains the records by using the OBTAIN FIRST within area
command for all reads. Somehow he is skipping two records. Firstly, how
can that be and secondly, how can he change his process to get all the
records?



Thanks in advance,



Allen Riddle



"
IDMS Public Discussion Forum
IDMS-L@LISTSERV.IUASSN.COM
SMTP
IDMS-L@LISTSERV.IUASSN.COM
IDMS-L@LISTSERV.IUASSN.COM
SMTP








Normal

Normal
Re: [IDMSVENDOR-L] DIRECT records
"how have you determined that any were ""missed""? just because there are
some of this record type remaining at the end of the run? have you run
journal reports to determine when these ""missed"" records were added?

are there other record types within the area used in this ""processing""?
are all occurrances of this record type intended to be processed and
deleted in the run? or is is selective?
is the error code being checked after each delete? could the ""skipped""
records be those for whom the erase failed?
do these direct records belong to any sets? if so, are those areas readied
as well?



secondly, were it I, i would code as follows:

obtain first within area

loop:until end-of-area
process
erase
get current
obtain next within area (area currency remain
unchanged due to an erase)
end-loop

as currently coded, your program is doing an area sweep EVERY pass
looking for the first record (since these are direct records, each page
must be interrogated looking at line index for appropriate records ...
using area currency would (to me at least) reduce run time substantially



We have a programmer that is trying to process an area that just
contains DIRECT records. His process reads a record, processes it then
deletes it. He obtains the records by using the OBTAIN FIRST within area
command for all reads. Somehow he is skipping two records. Firstly, how
can that be and secondly, how can he change his process to get all the
records?

=20

Thanks in advance,

=20

Allen Riddle

=20

=20



The information transmitted is intended only for the person or entity to which it is addressed and may contain CONFIDENTIAL material. If you receive this material/information in error, please contact the sender and delete or destroy the material/information.
"
IDMS Public Discussion Forum
IDMS-L@LISTSERV.IUASSN.COM
SMTP
IDMS-L@LISTSERV.IUASSN.COM
IDMS-L@LISTSERV.IUASSN.COM
SMTP








Normal

Normal
DIRECT records
"We have a programmer that is trying to process an area that just
contains DIRECT records. His process reads a record, processes it then
deletes it. He obtains the records by using the OBTAIN FIRST within area
command for all reads. Somehow he is skipping two records. Firstly, how
can that be and secondly, how can he change his process to get all the
records?



Thanks in advance,



Allen Riddle




"
IDMS Public Discussion Forum
IDMS-L@LISTSERV.IUASSN.COM
SMTP
IDMS-L@LISTSERV.IUASSN.COM
IDMS-L@LISTSERV.IUASSN.COM
SMTP








Normal

Normal
ADSA Response Security
"Hi Listers,

I am trying to secure a response executed from a selection list that is
transferred to by an EXECUTE NEXT FUNCTION. The reason is that some
users area allowed access to the next dialog and some aren't. They have
different security activity codes(?) I originally thought that response
security was checked when you put a response name in
AGR-CURRENT-RESPONSE
and did an EXECUTE NEXT FUNCTION. This is apparently not the case as
the ADS reference manual states (in an I guess not so obscure
reference):

Note: Process code can move values to the AGR-CURRENT-RESPONSE field,
overwriting the response selected by the user. The run time system
does not check security for a response moved to the AGR-CURRENT-
RESPONSE field in process code. A process code value is executed
if it is valid for the current function.

Then I thought I would be able to use the AGR-SECURITY-CODE 256 bits/32
bytes, but that doesn't seem to be used.

Other than hard-coding user IDs, can anyone think of a way to do this?

Thanks,

Tim Gortner
State of Iowa
Department of Human Services
"
IDMS Public Discussion Forum
IDMS-L@LISTSERV.IUASSN.COM
SMTP
IDMS-L@LISTSERV.IUASSN.COM
IDMS-L@LISTSERV.IUASSN.COM
SMTP








Normal

Normal
Re: ADSA Response Security
"Tim,.

look at option bits 87 & 88 - seems to fit your situation


Chris Hoelscher
now in his 50th year!!!
"
IDMS Public Discussion Forum
IDMS-L@LISTSERV.IUASSN.COM
SMTP
IDMS-L@LISTSERV.IUASSN.COM
IDMS-L@LISTSERV.IUASSN.COM
SMTP








Normal

Normal
CA Education Announcement
"CA asked me to pass this notice on to the list.


Computer Associates is offering 2 public IDMS classes in the Learning Center located at the CA offices in Plano, TX. during the last week in October/first week in November. These classes will run consecutively over the course of the week, and the first class (ID400) is a prerequisite to the second class (ID405). There is no prerequisite to the first class (ID400), just a basic understanding of mainframe technology and a desire to understand IDMS at a high level.

The classes are:

ID400 on 10/30/06: CA-IDMS/DB Concepts and Facilities (1 day)

ID405 on 10/31/06 through 11/03/06: CA-IDMS/DB For The New DBA (4 days)

Further information on the classes can be found at the following link:

http://gems.ca.com/Gemsmarketing/CourseFinder.asp?Action=SUBMIT&ProdGroup=IDB&DeliveryMethod=&Keyword=&Solution=3&LC=FC000007&DateFrom=&DateTo=&Owner=NA-EDUC&KeywordText=&cboSolution=3&cboProdGroup=IDB&cboLC=FC000007&cboD

or by calling the CA Education hotline at (800) 237-9273. Registration can be accomplished either through the website, or the hotline.


Bob Wiklund
Tiburon Technologies
623 594-6022
"
IDMS Public Discussion Forum
IDMS-L@LISTSERV.IUASSN.COM
SMTP
IDMS-L@LISTSERV.IUASSN.COM
IDMS-L@LISTSERV.IUASSN.COM
SMTP








Normal

Normal
Re: ADSA Response Security
"look in member GJx0OPTN in your base sampjcl


GS39792 SECURITY IS NOT CHECKED AFTER AGR-CURRENT-RESPONSE
IS MODIFIED BY PROCESS CODE

Code the following #DEFOPTF in your RHDCOPTF module
to activate this apar.

#DEFOPTF OPT00086


GS39794 SECURITY IS NOT CHECKED AFTER AGR-CURRENT-RESPONSE
IS MODIFIED BY PROCESS CODE

Code the following #DEFOPTF in your RHDCOPTF module
to activate this apar.

#DEFOPTF OPT00087


load module RHDCOPTF



















Chris Hoelscher
IDMS & DB2 Database Administrator
Humana Inc
502-476-2538
choelscher@humana.com




The information transmitted is intended only for the person or entity to which it is addressed and may contain CONFIDENTIAL material. If you receive this material/information in error, please contact the sender and delete or destroy the material/information.
"
IDMS Public Discussion Forum
IDMS-L@LISTSERV.IUASSN.COM
SMTP
IDMS-L@LISTSERV.IUASSN.COM
IDMS-L@LISTSERV.IUASSN.COM
SMTP








Normal

Normal
Re: ADSA Response Security
"Chris: Sorry, but I don't know what ""option bits"" you are referring to.
Can you be more specific? Tim


----- Original message -----
From: ""Chris Hoelscher"" <chrishoelscher@INSIGHTBB.COM>
To: IDMS-L@LISTSERV.IUASSN.COM
Date: Tue, 10 Oct 2006 19:46:09 -0400
Subject: Re: ADSA Response Security

Tim,.

look at option bits 87 & 88 - seems to fit your situation


Chris Hoelscher
now in his 50th year!!!
"
IDMS Public Discussion Forum
IDMS-L@LISTSERV.IUASSN.COM
SMTP
IDMS-L@LISTSERV.IUASSN.COM
IDMS-L@LISTSERV.IUASSN.COM
SMTP








Normal

Normal
Re: ADSA Response Security
"Chris:

As smart and knowledgable as I am, <ahem> I am a developer - not a DBA.
It sounds like you are saying that this issue of security not being
checked when the process code modifies AGR-CURRENT-RESPONSE is addressed
by these 2 apars? Yes?

Tim


----- Original message -----
From: ""Chris Hoelscher"" <choelscher@HUMANA.COM>
To: IDMS-L@LISTSERV.IUASSN.COM
Date: Wed, 11 Oct 2006 15:33:54 -0400
Subject: Re: ADSA Response Security

look in member GJx0OPTN in your base sampjcl


GS39792 SECURITY IS NOT CHECKED AFTER AGR-CURRENT-RESPONSE
IS MODIFIED BY PROCESS CODE

Code the following #DEFOPTF in your RHDCOPTF module
to activate this apar.

#DEFOPTF OPT00086


GS39794 SECURITY IS NOT CHECKED AFTER AGR-CURRENT-RESPONSE
IS MODIFIED BY PROCESS CODE

Code the following #DEFOPTF in your RHDCOPTF module
to activate this apar.

#DEFOPTF OPT00087


load module RHDCOPTF



















Chris Hoelscher
IDMS & DB2 Database Administrator
Humana Inc
502-476-2538
choelscher@humana.com




The information transmitted is intended only for the person or entity to
which it is addressed and may contain CONFIDENTIAL material. If you
receive this material/information in error, please contact the sender
and delete or destroy the material/information.
"
IDMS Public Discussion Forum
IDMS-L@LISTSERV.IUASSN.COM
SMTP
IDMS-L@LISTSERV.IUASSN.COM
IDMS-L@LISTSERV.IUASSN.COM
SMTP








Normal

Normal
Re: ADSA Response Security
"Tim,

You want to be careful about applying the optional PTF that turns on the
security checking. This security ""hole"" was exploited by many developers
and once you ask ADS to do the checking, you could disable transactions that
you want to allow. I had a similar question surrounding this ADSA security
and got is confirmed by IDMS Level I tech support(thank you Randy). For
example, from the ADSA menus you may not want users to get into response
XYZ, but after some programmatic checking, you decided, OK, they can do
this. Well, if XYZ was secured with a security class in ADSA that the user
doesn't hold as an activity code, then by turning on this optional PTF,
you're going to cease to have access via EXECUTE NEXT FUNCTION to XYZ. This
may not be a problem for you, but then again, it might.

Hope this helps

Linda Casey
Run Right, LLC

Outcomes