Accessing objects as session owner
Each object has an owner name associated with it. The rules determining what objects are accessed depend on what owner name is used when a session is started. Use this session owner value to control access to the object.
The session owner is set during the call to dsmInitEx in the clientOwnerNameP parameter. If you start a session with dsmInitEx owner name of NULL and you use passwordaccess=prompt, that session owner is handled with session (root or authorized user) authority. This is also true if you log in with a root user ID or an authorized user ID and you use passwordaccess= generate. During a session started in this manner, you can perform any action on any object that is owned by this node regardless of the actual owner of that object.
If a session is started with a specific owner name, the session can only perform actions on objects that have that object owner name associated with them. Backups or archives into the system all must have this owner name associated with them. Any queries performed return only the values that have this owner name associated with them. The object owner value is set during the dsmSendObj call in the Owner field of the ObjAttr structure. An owner name is case-sensitive. Table 1 summarizes the conditions under which a user has access to an object.
| Session owner | Object owner | User access |
|---|---|---|
| NULL (root, system owner) | (empty string) |
Yes |
| NULL | Specific name | Yes |
| Specific name | (empty string) |
No |
| Specific name | Same name | Yes |
| Specific name | Different name | No |