Guardian Procedure Calls Reference Manual (G06.25+)
Guardian Procedure Calls (F)
Guardian Procedure Calls Reference Manual—522629-013
5-122
FILE_OPEN_ Procedure
For a given access mode, the accessor’s security level is checked against the file
security level. File access is allowed or not allowed as shown in Table 5-6
. In this
table, file security levels are indicated by FUP security codes. For a given
accessor security level, a Y indicates that access is allowed to a file with the
security level shown; a hyphen indicates that access is not allowed.
If the caller to FILE_OPEN_ fails the security check, the open fails with an error 48.
A file’s security can be obtained by a call to FILE_GETINFOLIST[BYNAME]_,
FILEINFO, or by the File Utility Program (FUP) INFO command.
If you are using the Safeguard product, this security information might not apply.
•
Tape file open—access mode
The file system does not enforce read-only or write-only access for unlabeled tape,
even though no error is returned if you specify one of these access modes when
opening a tape file.
Table 5-5. Levels of Security
FUP
Code
Program
Values Access
– 7 Local super ID only
U 6 Owner (local or remote), that is, any user with owner’s ID
C 5 Member of owner’s group (local or remote), that is, any member
of owner’s community
N 4 Any user (local or remote)
O 2 Owner only (local)
G 1 Member of owner’s group (local)
A 0 Any user (local)
Table 5-6. Allowed File Accesses
Accessor’s Security Level File Security Level
– U C N O G A
Super ID user, local access
Super ID user, remote access
Y
–
Y Y Y
Y Y Y
Y Y Y
–
– –
Owner or owner’s group manager, remote access
Member of owner’s group, remote access
Any other user, remote access
–
–
–
Y Y Y
–
Y Y
–
– Y
–
– –
–
– –
–
– –
Owner or owner’s group manager, local access
Member of owner’s group, local access
Any other user, local access
–
–
–
Y Y Y
–
Y Y
–
– Y
Y Y Y
–
Y Y
–
– Y