In our CGIDEV2 setup we use validation lists to authenticate our web users. Obviously all jobs run on the system as user QTMHHTTP. We pass the user's validation list ID along to the programs so that in our files where we keep "who updeated this record" fields, the users validation list name is used rather than the actual system user name of QTMHHTTP.
For security reasons we now have an application we need to write that must keep audit trail data in a very secure manner. We want to use the system journals to track who did what. But we still want to use CGI and a web based front end. How can we still use CGI but have the jobs run as the actual user rather than QTMHHTTP so the journals are correct? Do we need to change the authentication to go by actual AS400 user ids instead of a validation list and then change the apache set up somehow so the jobs run as the AS400 user id who logs into basic authentication? Am I on the right track? Thanks for any input, Larry _______________________________________________ No banners. No pop-ups. No kidding. Make My Way your home on the Web - http://www.myway.com Yahoo! Groups Links <*> To visit your group on the web, go to: http://groups.yahoo.com/group/Easy400Group/ <*> To unsubscribe from this group, send an email to: [EMAIL PROTECTED] <*> Your use of Yahoo! Groups is subject to: http://docs.yahoo.com/info/terms/
