Changes the access rights for the specified database
Scope of validity
DBH administration
See also
Administration statement ADD-SQL-DB-CATALOG-ENTRY on "ADD-SQL-DB-CATALOG-ENTRY"
Function
The MODIFY-CATALOG-ACCESS-RIGHTS administration statement allows you to change the access rights for a named database.
This may be necessary when the WRITE access function for a database has been set internally to READ as a result of error recovery. If a consistency check has taken place in the CAT-LOG or DA-LOG file, SESAM/SQL turns off logging for these files in order to obtain partial availability of the DBH. In error recovery, SESAM/SQL sets the access function for the affected database to READ. Once the cause of the error has been eliminated, you can use the MODIFY-CATALOG-ACCESS-RIGHTS statement to permit the WRITE access function for the affected database again.
A transactionless state is not required for the MODIFY-CATALOG-ACCESS-RIGHTS statement.
The change of access rights is transaction-synchronized; in other words, the access rights are changed under the protection of an exclusive transaction lock on the database entry, and the change is synchronized.
Changes to the access functions do not take effect until a statement is issued again. Statements active in the DBH are not notified of the change.
MODIFY-CATALOG-ACCESS-RIGHTS | ||||||||||||||||||||||||
| ||||||||||||||||||||||||
Operands
CATALOG-NAME = <filename 1..18 without-cat-user-gen-vers>
Logical database name of the database for which the access rights are to be modified. The database name must not refer to the SESAM backup copy or a replication of a database.
ACCESS =
Specifies which access functions are to be permitted or suppressed for the database.
ACCESS = *ALL
Allows unrestricted access to the database. Permits read and write access to user data and metadata.
ACCESS = *PARAMETERS(...)
Restricts access to the database.
The parameters are arranged in a hierarchical structure. If CAT-ADMINISTRATION is permitted, so, implicitly, are WRITE and READ In the same way, WRITE implicitly permits READ. At least one parameter must be specified with *YES.
READ = *YES
Permits read access to user data and metadata. The data can be queried but not changed.
READ = *NO
Prevents read access to user data and metadata.
It makes no sense to select READ = NO if you assign the default (YES) to either CAT-ADMINISTRATION or WRITE, since CAT-ADMINISTRATION implicitly permits WRITE and WRITE implicitly permits READ.
WRITE = *YES
Permits read and write access to user data. Metadata can be read but not changed.
WRITE = *NO
Prevents write access to user data and metadata. It makes no sense to select WRITE = NO if you assign the default (YES) to CAT-ADMINISTRATION, since CAT-ADMINISTRATION implicitly permits WRITE.
CAT-ADMINISTRATION = *YES
Permits read and write access to both user data and metadata.
CAT-ADMINISTRATION = *NO
Prevents write access to the metadata in the catalog space of the database. It therefore prevents the use of the following statements:
SQL statements for schema definition and management and memory management
Utility statements
Administration command in ISP format and at the CALL DML interface
The OPT,ACCESS administration command corresponds to the MODIFY-CATALOG-ACCESS-RIGHTS administration statement here.
OPT,ACCESS=(access),C[ATALOG]=catalog-name
access ::= R[EAD],W[RITE],A[DMIN]
The administration command is not effective unless you explicitly specify at least one access function for access.
catalog-name must not contain any commas as characters because commas function as separators. catalog-name must not refer to a SESAM backup copy or a replication of a database.
READ permits only read access, WRITE implicitly permits READ, and ADMIN implicitly permits WRITE and thus also READ.
A transactionless state is not required for the OPT,ACCESS=(ADMIN) command. The change of access rights is synchronized instead.
You cannot subsequently modify the ACCESS=COPY access function. When appropriate, it is changed internally by the COPY utility statement.