SoftCode Applications Continued
Functional Authorization Levels
The soft function database has been instructed to include a Function Authorization Level (FAL). The FAL code field coincides with the generic security system authorization level, a three-digit (zero decimal), code field.
EDTPNLKEY
The authorization level is an added command parameter for the Edit Command Key command, EDTCMDKEY, and to the program options command, EDTPGMOPT (Edit Program Options). The default in both commands is an authorization level of zero (000). The command will list all function keys defined for the program panel at the authority level specified. To work with all entries regardless of the authority level, use the command WRKPNLKEY.
Edit Panel Keys (EDTPNLKEY) Type choices, press Enter. Program identification . . . . . > SC0320RP Name, *EDITOR, *PLXEDT Panel identification . . . . . . *BLANK Name, *ALL, *BLANK Authority level . . . . . . . . 000 Number, 000 Bottom F3=Exit F4=Prompt F5=Refresh F12=Cancel F13=How to use this display F24=More keys FIG. 2
Editing Functions
The editor displays the application name, the panel name and the authorization level. The editor will allow changes to the function key, macro or text, but not to the authorization level. The panel displayed shows only application entries that correspond to the command parameters, program, panel, and any functions at the designated FAL.
SCROYA1 SC0020RP iSoftwerks Incorporated SYSNAME 4/02/10 SCROY 634042 SOFT FUNCTION EDITOR SC0020S1 08:36:57 APPLICATION: SC0320RP PANEL: AUTHORITY LEVEL: 000 Key ID Macro Function, program call or command Function text F21 &CALL QUSCMDLN Command line F23 MOREOPTS More options F24 MOREKEYS More keys F3 EXIT Exit F4 PROMPT Prompt F5 RESET Refresh F9 CALL SC0335RP PLIST1 A Add item + F3=Exit Fig. 3
Security Monitor
In general the authorization level should be set to 999 if the program does not use FAL sensitive displays. However if an application is designed to present command keys to a certain type of user, or different levels of functions for supervisory personnel, then the authority level parameter can be used in conjunction with the security checker program to prevent users from accessing command keys, or program options they are not authorized to perform.
SOFTMENU Softcode Services Menu System: SYSNAME Select one of the following: .............................................................................. : . Security SC0460RM Error . : : X-Gate record not on file. Contact Information Systems to have the : : gate SC0320RP installed. : : : : : : : : : : Bottom : : F12=Cancel : : : :............................................................................: 13. Restore save file from IFS 14. Save save file to IFS 15. Display softcode documentation Selection or command ===> F3=Exit F4=Prompt F5=Workbench F9=Retrieve F12=Cancel (C) iSoftwerks, Incorporated 2010 Fig.4
Once the authorization level has been established, the program user will only see those function keys for the established authorization level, or lower. Soft functions defined for the application with a higher authorization level will be omitted from the command key, and option text. In addition, even if the function or option is selected, the authority level will prevent an unauthorized user from executing the function.