Re: Which objects do not have an authorization list -- SECURITY400

Subject: Re: Which objects do not have an authorization list
From: rob@xxxxxxxxx
Date: Mon, 11 May 2009 16:06:16 -0400
List-archive: <http://archive.midrange.com/security400>
List-help: <mailto:security400-request@midrange.com?subject=help>
List-id: Security Administration on the AS400 / iSeries <security400.midrange.com>
List-post: <mailto:security400@midrange.com>
List-subscribe: <http://lists.midrange.com/mailman/listinfo/security400>, <mailto:security400-request@midrange.com?subject=subscribe>
List-unsubscribe: <http://lists.midrange.com/mailman/listinfo/security400>, <mailto:security400-request@midrange.com?subject=unsubscribe>

The OP wanted to know which objects in a library are not secured by an
authorization list.
Using PRTPUBAUT I would have to run it for every possible object type
supported by PRTPUBAUT (four screens of two columns each in the help).

May I suggest the use of QSYLUSRA? You could wrapper that with a User
Defined Function or UDF and do the following:
DSPOBJD ... OUTPUT(*OUTFILE) OUTFILE(QTEMP/MYFILE)

STRSQL
SELECT ODLBNM, ODOBNM, ODOBTP, GetAuthList(ODLBNM, ODOBNM, ODOBTP)
FROM QTEMP/MYFILE
WHERE ODLBNM='somelib'

Or you could use QSYLUSRA from either the Open list of objects api or the
display list of objects api.

Rob Berendt

This mailing list archive is Copyright 1997-2026 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.