Permissions to access the file system

Depending on the functions performed by your program, the CICS® Transaction Gateway Java™ APIs might require access to the file system, for example to write trace files.

The following permission statement gives permission for the CICS Transaction Gateway to access and create an ibm/ctg subdirectory in the users' home directory on the UNIX System Services file system:

permission java.io.FilePermission "${user.home}${file.separator}ibm
${file.separator}ctg${file.separator}-","read,write,delete";

The format of the permission might vary depending on the installation, and you can specify alternative locations, or none at all. CICS Transaction Gateway classes require access to the file system in the following cases:

For writing trace information to a file
For accessing key rings, if you are using JSSE for your SSL protocol implementation
See Network security for information on how JSSE is selected as the implementation.

For example, you can specify the following permission to allow access to the directory /tmp/ibm and all subdirectories:

permission java.io.FilePermission "/tmp/ibm/", 
                                  "read,write,delete";