Security exits

This section describes replaceable security exits CICSEXC1 and CICSECX2. IBM provides sample assembler exits that you can customize or replace.

Note:
These exits must reside in the same region as REXX/CICS (for example: the use of distributed program link is not allowed).

CICSEXC1

CICSECX1 is a library member access security exit.

Parameters

The COMMAREA contains the following on input to the exit.

Parameter Number of Bytes Datatype Description
1 4 fullword Return code
2 8 character CICS sign on ID
3 4 character Function requested
4 44 character VSEMEM class resource ID libname.sublibname.membername
5 4 fullword Length of the VSEMEM resource ID
6 3 character IMPORT access intent
7 7 character Library name

Return codes

0
Function request allowed
4
Not authorized

Function IDs

CNVT
CONVTMAP request
EXPT
EXPORT request
IMPT
IMPORT request

IMPORT access intent

EXC
Read and write, for example EDIT.
SHR
Read only.
IMPT
Read only.

CICSECX2

CICSECX2 is a REXX File System access security exit.

Parameters

The COMMAREA contains the following on input to the exit.

Parameter Number of Bytes Datatype Description
1 4 fullword Return code
2 8 character CICS sign on ID
3 1 character Function requested
4 3 Reserved for IBM use
5 4 fullword Address of fully qualified RFS file ID string
6 4 fullword Length of RFS file ID string

Return Codes

0
Function request allowed
non-zero
Not authorized

Function IDs

A
Alter
R
Read
U
Update