Date: Fri, 22 Nov 2002 16:00:30 +0530
Reply-To: CICS List <CICS-L@LISTSERV.UGA.EDU>
Sender: CICS List <CICS-L@LISTSERV.UGA.EDU>
From: karthikeyan P <pkarthik@CHENNAI.TCS.CO.IN>
Subject: Query on CICS/DB2 Primary & Secondary Auth IDs
Content-type: text/plain; charset=us-ascii
We have a MQ triggered CICS transaction which runs with the primary DB2 authorization ID
as the CICS default userid when it makes a call to DB2. We have AUTH=USERID in the
DB2ENTRY definition. As the mq triggred transaction runs on the background with the
authority of default userid, the primary auth id passed to the DB2 is the default cics
Now, we have a requirement to run the mq triggered cics transaction with the authority of
the user who has initiated the triggering. The MQ message has the userid as a part of
their message. The application can find out the userid from the mq message.
Since, the transaction is triggered by the cics trigger monitor , the triggered tranaction
runs with the auth of defualt userid.
Requirement is :
Change the primary auth id from the authority of the cics default id (under which the
application is running) by parsing the message in the application and passing to the same
to DB2 as primary auth id for DB2 calls instead of under the default userid.
One way is :
I can go for a wrapper to be triggered initially instead of the original program. In the
wrapper, obtain the userid from the message and do a exec cics start of the original
transaction with the option userid so that the parsed userid will be used as the primary
auth in db2 calls in the original transaction.We would like to keep this as a last resort.
Are there any other ways of doing this like :
1. Writing a exit to change the primary auth ids at the time of connecting to DB2 . How
complex is this. Any samples on this?
2. Any DB2 SQL commands can be used in the original program itself to acheive this.
Please let me know your views/inputs on this.
Wishing to hear from you soon.
Thanks & Regards,
* * * The information contained in this message is legally privileged and confidential
information intended only for the use of the addressed individual or entity indicated in
this message (or responsible for delivery of the message to such person). It must not be
read, copied, disclosed, distributed or used by any person other than the addressee.
Unauthorised use, disclosure or copying is strictly prohibited and may be unlawful.
Opinions, conclusions and other information on this message that do not relate to the
official business of any of the constituent companies of the TATA CONSULTANCY SERVICES
shall be understood as neither given nor endorsed by the Group. If you have received this
message in error, you should destroy this message and kindly notify the sender by e-mail.
Thank you. * * *