IBM AS/400E Using directives for security and access control

a. Add a Pass directive using the WRKHTTPCFG command.

Pass /sample /qsys.lib/samplel.lib/samplef.file/samplem.mbr

Where samplel is the library, samplef is the file, and samplem is member

name in which the AS/400 stores this document.

b. Set the source type of samplem member to HTML(CHGPFM).

Access to file is *USE for QTMHHTTP or *PUBLIC(GRTOBJAUT).

vTo store it in the Integrated File System webtest directory:

a. Add a Pass directive using the WRKHTTPCFG command.

Pass /sample /webtest/sample.html

where webtest is an integrated file system directory,and sample.html is

the document.

b. Access to file is *R for QTMHHTTP or *PUBLIC(CHGAUT).

vTo store it in IFS QOpenSys/webtest directory:

a. Add a Pass directive using the WRKHTTPCFG command.

Pass /sample /qopensys/webtest/sample.html

where webtest is an integrated file system directory in QOpenSys file

system.

b. Access to file is *R for QTMHHTTP or *PUBLIC(CHGAUT).

vTo store it in the QDLS folder:

a. Add a Pass directive using the WRKHTTPCFG command.

Pass /sample /qdls/webtest/sample.htm

Where webtest is a QDLS folder, and sample.htm is the document.

b. Access to file is *R for QTMHHTTP or *PUBLIC(CHGAUT).

7. Add QTMHHTTP to AS/400 directory entry(WRKDIRE).

8. Finally, still using WRKHTTPCFG, enable POST in your HTTP configuration

file. POST must be enabled in order for the server to serve CGI programs that

read standard input.

9. Start or restart the server.

10. Point your web browser to the URL for the HTML document on the server

where hostname is the fully qualified host domain name of your AS/400

system.

http://hostname/sample

Note: For REXX programs, you only need to indicate in the EXEC directive the

path and the file name. REXX CGI execs must reside in database files named

REXX or QREXSRC. For example:

EXEC /rexx/* /QSYS.LIB/AS400CGI.LIB/QREXSRC.FILE/*

The URL is :

http://hostname/rexx/samplecgi.rexx

Using directives for security and access control

The server administrator controls the behavior of the server. The server will not do

anything that the server administrator has not explicitly configured it to do.

Several features of the server ensure that the administrator maintains this control:

86 WebProgramming Guide V4R5