This article describes how to use the print publicly authorized
objects commands (PRTPUBAUT), explains why it is important, and provides step-by-step
instructions.
The Print Publicly Authorized Objects (PRTPUBAUT) command allows you to
print a report of the specified objects that do not have public authority
of *EXCLUDE. For *PGM objects, only the programs that do not have public authority
of *EXCLUDE that a user can call (the program is either user domain or the
system security level (QSECURITY system value) is 30 or below) will be included
in the report. This is a way to check for objects that every user on the system
is authorized to access.
This command will print two reports. The first report (Full Report) will
contain all of the specified objects that do not have public authority of
*EXCLUDE. The second report (Changed Report) will contain the objects that
now do not have public authority of *EXCLUDE that did have public authority
of *EXCLUDE or did not exist when the PRTPUBAUT command was previously run.
If the PRTPUBAUT command was not previously run for the specified objects
and library, folder, or directory, there will be no 'Changed Report'. If the
command has been previously run, but no additional objects do not have public
authority of *EXCLUDE, then the 'Changed Report' will be printed but there
will be no objects listed.
Restriction: You must have *ALLOBJ
special authority to use this command.
Examples: This command creates the full, and changed reports for
all the file objects in the library GARRY that do not have a public authority
of *EXCLUDE:
PRTPUBAUT OBJTYPE(*FILE) LIB(GARRY)
This command creates the full, changed, and deleted reports for all the
stream file objects in the subdirectory structure that starts at the directory
garry that
do not have a public authority of *EXCLUDE:
PRTPUBAUT OBJTYPE(*STMF) DIR(GARRY) SCHSUBDIR(*YES)