Previous Topic: SELDATA Keyword—SDT SELDATA FieldNext Topic: SERIALNUM Keyword—Certificate Serial Number

KeywordsSELECT Keyword—Record Control

SELECT Keyword—Record Control

Valid on z/OS, z/VSE, and z/VM.

Use the SELECT keyword to:

Use any of the following methods to control access to SELECT records: Expiration, Facility, Time/Day, and Actions. Specify any or all of the access levels associated with an FCT: SET, INQUIRE, ALL, BROWSE, DELETE, NONE, READ, and UPDATE. If ACCESS is not specified, CA Top Secret defaults to READ access.

When used with the SDT record, this keyword has the following format:

TSS ADDTO(SDT) SELECT(selname) 
               DESCRIPT(descriptname)
               SELDATA('IF [NOT] selexpression [AND|OR] selexpression')
sel‑name

Specifies a user‑defined record ID that must be unique for each SELECT record. It can contain letters, numbers, and special characters.

Range: Up to 8 characters

descript‑name

Designates an optional user‑description field used as a logical name for this record. If the description field contains blanks enclose it in single quotes.

Range: Up to 32 characters

When used with PERMIT commands involving RLP and SLP, this keyword has the following format:

TSS PERMIT(acid) FCT(oper) 
                 SELECT(selread,selwrite)

TSS PERMIT(acid) {OTRAN(tran)|PPT(program)}
                 SELECT(selread)
Capacity of list

One SELECT statement per TSS command

selread

Specifies the SDT SELECT record used as the selection process file accesses of READ and BROWSE.

selwrite

Specifies the SDT SELECT record used as the selection process for file accesses of UPATE(WRITE, REWRITE, DELETE).

Note: It is not necessary to have both a selread and selwrite record for a SELECT statement. If selwrite is omitted, then the SELECT record specified by the selread is given both READ and UPDATE accesses.

selin

Can have an access level of: READ, BROWSE

selout

Can have an access level of: WRITE, UPDATE, DELETE

Note: If only an input record is used on the SELECT statement, it would be permitted UPDATE access.

When used with PERMIT, this keyword has the following format:

TSS PERMIT(acid) FCT(oper) SELECT(selin,selout)
selin

Specifies the input select record.

selout

Specifies the output select record.

Note: It is not necessary to have both an input and output record for a SELECT statement.

Capacity of list

One SELECT statement per TSS command

This keyword is used with:

Examples: SELECT keyword

This example creates a SELECT record called PROBE1 in the SDT, selecting departments ranging from 200 through 299:

TSS ADDTO(SDT) SELECT(PROBE1)
               SELDATA('IF DEPARTMENT GE "200" AND DEPARTMENT LE "299" ')

This example permits a user to access all data from an FCT called PAY and select all records so that departments 1000 through 1999 are chosen:

TSS PERMIT(USR01) FCT(PAY) 
                  ACCESS(ALL)
                  SELECT('IF DEPT GE "1000" AND DEPT LT "2000" ')

This example revokes access:

TSS REVOKE(USR01) FCT(PAY)

This example permits a user to access all data from an FCT called PAY and select all records so that departments 1000 through 1999 are chosen, but limit user only to update DEPARTMENT 1500:

TSS ADDTO(SDT) SELECT(READDEPT)
               SELDATA('IF DEPARTMENT GE "1000" AND DEPARTMENT LT "2000" ')

TSS ADDTO(SDT) SELECT(UPDTDEPT)
               SELDATA('IF DEPARTMENT EQ "1500" ')

TSS PERMIT(USR01) FCT(PAY)
                  ACCESS(ALL)
                  SELECT(READDEPT,UPDTDEPT)

This example revokes access:

TSS REVOKE(USR01) FCT(PAY)