Warning
This repository has been archived
IBM Legacy Public Repository Disclosure: All content in this repository including code has been provided by IBM under the associated open source software license and IBM is under no obligation to provide enhancements, updates, or support. IBM developers produced this code as an open source project (not as an IBM product), and IBM makes no assertions as to the level of quality nor security, and will not be maintaining this code going forward.
You can use a client allowlist to limit which levels of CICS Explorer can connect to a CMCI JVM server. For more information, see Defining a client allowlist to CMCI JVM server in a CICSplex.
This is implemented by the use of a sample program which can ensure that only approved versions of the CICS Explorer can be used to access a given CICS TS region.
A customised version of the sample program DFHWBAAX is able to provide this
functionality.
The customised DFHWBAAX program analyses the user-agent string from the HTTP header
which CICS has received. Each release of Explorer includes a unique user-agent string in
the HTTP header. The received string is tested against user defined "approved" strings to
determine whether the connection attempt should be allowed to succeed.
Any number of "approved" strings can be defined, which enables a flexible policing method which can be used with any in-service release of CICS TS.
Please note that this analyser runs for every CMCI request and may affect the performance time of requests. If you are noticing a performance slow-down, remove your custom web analyser and check that this is not the cause before raising a PMR with IBM.
Further details of this module can be found in the associated CICSDev article.
This project is licensed under Apache License Version 2.0.