DUPAUT -- Duplicate Authority

DUPAUT DUPLICATE AUTHORITY TAASEEA
The Duplicate Authority command duplicates the authority from one object to another. Any existing authorities for the To object are removed first. The authorization list and existing authorities are made identical. An option exists for who the owner should be and his rights to the To object. Program adoption is not considered. A typical command would be: DUPAUT FROMOBJ(xxx) FROMTYPE(FILE) TOOBJ(www) TOTYPE(DTAARA) All authority on the To object is first removed. The owner is changed and the authorities are copied from the From object. The authorization list specified for the From object is used for the To object. If no authorization list exists for the From object, the To object will not be controlled by an authorization list. By default, the owner of the From object will become the owner of the To object and all his authorities will be identical. The QSPL profile cannot be removed from OUTQ objects. This condition is special cased within the tool. Differences with CHGOBJOWN and GRTOBJAUT ---------------------------------------- When CHGOBJOWN is used, the new owner is given ALL rights to the object. DUPAUT (using the defaults) will provide the new owner with the same rights he has to the From object. For example, the OBJEXIST right may be revoked to prevent the owner from inadvertently deleting an object. If OBJEXIST was revoked from the From object, DUPAUT will not be specify it on the To object. When the reference capability is used with GRTOBJAUT, the individual authorities from the referenced object are merged into the specified object (with the exception of EXCLUDE). Thus the authorities may not be identical with the referenced object. If the user is EXCLUDE on the referenced object, he will be EXCLUDE on the specified object regardless of whether he has any previous authority to the specified object. If the user has more authority in the specified object than in the referenced object, he retains the authorities of the specified object (there is a REPLACE option available on GRTOBJAUT, but it cannot be used when using the reference function). The individual authorities are actually combined into the specified object. For example, if the user did not have the UPD data right in the specified object, but did in the referenced object, the UPD data right would be added to the specified object. If the user is authorized to the specified object, but not to the referenced object, he does not lose any authority. If the user is authorized to the referenced object, but not the specified object, his authorizations will be copied to the specified object. The authorizations will be identical for this user. DUPAUT (using the defaults) will cause the authorities to be identical for all users. If GRTOBJAUT references an object that has an authorization list, the authorization list is used on the specified object. However, if the referenced object does not have an authorization list, no change occurs to the authorization list of the specified object. DUPAUT will cause the authorization lists to be identical. Command parameters CMD ------------------ FROMOBJ The qualified name of the From object to copy the authority from. The library value defaults to LIBL. CURLIB may also be used. FROMTYPE The object type of the From object. TOOBJ The qualified name of the To object to copy the authority to. The library value defaults to LIBL. CURLIB may also be used. Any existing authorities are revoked first. Existing authorities from the From object are copied to the To object (See the OWNEROPT and AUTOPT exceptions). The authorization list of the From object will be used. If no authorization list exists for the From object, the To object will not be controlled by an authorization list. TOTYPE The object type of the To object. OWNEROPT Whether to use the From owner or not. The default is YES, meaning the owner of the From object will be the owner of the To object. NO may be specified to retain the current ownership of the To object. AUTOPT Whether the owner of the From object should have authority to the To object. The default is YES meaning the existing authorities for the owner in the From object are copied to the To object. NO may be specified so that the owner of the From object will not have any authority to the To object. NO should be considered when OWNEROPT(NO) is specified. Note that if OWNEROPT(YES) and AUTOPT(NO) are specified, the owner will not have any authority to the To object. However, since he is the owner, he can grant authority to himself. Restrictions ------------ None. Prerequisites ------------- The following TAA Tools must be on your system: CHKOBJ3 Check object 3 RTVOBJAUT Retrieve object authority SNDCOMPMSG Send completion message Implementation -------------- None, the tool is ready to use. Objects used by the tool ------------------------ Object Type Attribute Src member Src file ------ ---- --------- ---------- ---------- DUPAUT CMD TAASEEA QATTCMD TAASEEAC PGM CLP TAASEEAC QATTCL

DUPAUT          DUPLICATE AUTHORITY                    TAASEEA


The  Duplicate Authority  command  duplicates  the authority  from  one
object  to another.   Any existing  authorities for  the To  object are
removed  first.   The authorization  list and  existing authorities are
made identical.  An option exists  for who the owner should be  and his
rights to the To object.  Program adoption is not considered.

A typical command would be:

             DUPAUT    FROMOBJ(xxx) FROMTYPE(*FILE)
                         TOOBJ(www) TOTYPE(*DTAARA)

All  authority  on the  To  object  is first  removed.    The owner  is
changed and the authorities are copied from the From object.

The  authorization list specified for  the From object  is used for the
To object.  If  no authorization list exists  for the From object,  the
To object will not be controlled by an authorization list.

By default, the owner  of the From object will become the  owner of the
To object and all his authorities will be identical.

The  QSPL  profile   cannot  be  removed  from  *OUTQ  objects.    This
condition is special cased within the tool.

Differences with CHGOBJOWN and GRTOBJAUT
----------------------------------------

When CHGOBJOWN  is used,  the new  owner is  given *ALL  rights to  the
object.

       DUPAUT (using  the  defaults) will  provide the  new owner  with
       the same  rights he has  to the From  object.  For  example, the
       *OBJEXIST  right  may  be  revoked  to  prevent  the  owner from
       inadvertently deleting  an  object.   If  *OBJEXIST was  revoked
       from the  From object, DUPAUT will  not be specify it  on the To
       object.

When  the reference capability  is used with  GRTOBJAUT, the individual
authorities from the  referenced object are  merged into the  specified
object (with  the exception  of *EXCLUDE).   Thus  the authorities  may
not be identical with the referenced object.

If the  user is *EXCLUDE on the referenced  object, he will be *EXCLUDE
on the  specified object  regardless  of whether  he has  any  previous
authority to the specified object.

If the  user has  more authority in  the specified  object than  in the
referenced object,  he retains the authorities of  the specified object
(there  is a  REPLACE option available  on GRTOBJAUT, but  it cannot be
used when using  the reference function).   The individual  authorities
are actually combined  into the specified object.   For example, if the
user  did not  have the *UPD  data right  in the  specified object, but
did in the  referenced object, the  *UPD data right  would be added  to
the specified object.

If the  user is  authorized to  the specified  object, but  not to  the
referenced object, he does not lose any authority.

If  the  user is  authorized  to  the referenced  object,  but  not the
specified object, his  authorizations will be  copied to the  specified
object.  The authorizations will be identical for this user.

       DUPAUT (using  the defaults)  will cause  the authorities to  be
       identical for all users.

If GRTOBJAUT  references an object that has  an authorization list, the
authorization  list is used  on the specified object.   However, if the
referenced  object does  not  have  an authorization  list,  no  change
occurs to the authorization list of the specified object.

       DUPAUT will cause the authorization lists to be identical.

Command parameters                                    *CMD
------------------

   FROMOBJ       The  qualified name  of the  From object  to  copy the
                 authority  from.     The  library  value  defaults  to
                 *LIBL.  *CURLIB may also be used.

   FROMTYPE      The object type of the From object.

   TOOBJ         The qualified  name  of  the  To object  to  copy  the
                 authority to.   The library  value defaults  to *LIBL.
                 *CURLIB may also be used.

                 Any existing authorities are revoked first.

                 Existing  authorities from the From  object are copied
                 to  the  To  object  (See  the  OWNEROPT  and   AUTOPT
                 exceptions).

                 The  authorization list  of the  From  object will  be
                 used.   If no authorization  list exists for  the From
                 object,  the To  object will  not be  controlled by an
                 authorization list.

   TOTYPE        The object type of the To object.

   OWNEROPT      Whether to  use the From  owner or  not.  The  default
                 is  *YES, meaning the  owner of  the From  object will
                 be the owner of the To object.

                 *NO  may be specified to  retain the current ownership
                 of the To object.

   AUTOPT        Whether the  owner  of  the From  object  should  have
                 authority  to the  To  object.   The  default is  *YES
                 meaning  the  existing authorities  for  the  owner in
                 the From object are copied to the To object.

                 *NO may be  specified so  that the owner  of the  From
                 object will not  have any authority to the  To object.
                 *NO  should   be  considered  when   OWNEROPT(*NO)  is
                 specified.

                 Note   that  if  OWNEROPT(*YES)  and  AUTOPT(*NO)  are
                 specified, the  owner will not  have any authority  to
                 the To  object.   However, since he  is the  owner, he
                 can grant authority to himself.

Restrictions
------------

None.

Prerequisites
-------------

The following TAA Tools must be on your system:

     CHKOBJ3         Check object 3
     RTVOBJAUT       Retrieve object authority
     SNDCOMPMSG      Send completion message

Implementation
--------------

None, the tool is ready to use.

Objects used by the tool
------------------------

   Object        Type    Attribute      Src member    Src file
   ------        ----    ---------      ----------    ----------

   DUPAUT        *CMD                   TAASEEA       QATTCMD
   TAASEEAC      *PGM       CLP         TAASEEAC      QATTCL

Added to TAA Productivity tools August 1, 1998

Home Page

Up to Top