Signon Method


Description

Describes the mechanism used to sign on a user when starting a Webulator/400 session at this URL.

Parameters

Method
Can be one of User, Screen, UseAuthentication, ExitPgm or Disabled.

User will cause the system to automatically sign on with a specific user name. This is a secure way to configure Webulator/400 because you have control over what AS/400 user profiles people are allowed to sign on with. If this is specified, it must be followed by a UserName, which is described below.

Screen will cause people to be presented with an AS/400 signon screen. They may then type in the AS/400 user and password they want to use to sign on. This may be less secure because the AS/400 user and password could be sent over the TCP/IP network between the browser and the server. It is recommended that this only be used over internal networks unless secured with SSL. If using secured Webulator/400 sessions, all data, including user ids and passwords is encrypted.

UseAuthentication uses authentication information sent from the browser as the AS/400 user and password. This is slightly more secure than Screen because the user and password are sent uuencoded (while uuencoded text is not as obvious as "clear" text, it is not a form of encryption and it is easy to "decode" it). You can also combine this with access control to limit the user IDs and passwords that can be entered for a URL. This changes the meaning of Webulator/400 require entries; any users listed will be expected to be valid user profiles instead of entries in a user file.

ExitPgm will instruct Webulator/400 to call a user written exit program anytime a signon screen is encountered. This method offers the greatest amount of flexibility but also requires additional setup time because of the effort needed to write the actual exit program. If this is specified, it must be followed by a Exit Program, Exit Program Library and Exit Program Format Name which are described below.

Disabled Disables webulator access in the current directory.

UserName
This must be present if User was specified above. It is the AS/400 user that will be signed on. It must have a corresponding entry in the Webulator/400 user file.

AllowSignonOverride
This is only applicable if the method is set to User or UseAuthentication. If set, Webulator/400 will allow signon screen fields to be overridden by URL options.

IgnoreSignonOverride
This is only applicable if the method is set to User or UseAuthentication. If set, Webulator/400 will not allow signon screen fields to be overridden by URL options.

Exit Program
This entry is required if the method is set to ExitPgm. This is the program that will be called whenever a signon screen is detected from the AS/400. It is the exit program's responsibility to determine whether a particular request should be allowed and if so it must return a valid user id and password to use for the system.

Exit Program Library
This entry is required if the method is set to ExitPgm. This is the library where the exit program resides.

Exit Program Format Name
This entry is required if the method is set to ExitPgm. This entry specifies the format of the structure that the exit program is expecting. Initially the only valid Format Name is QAPP0100. This list will be expanded as new formats are implemented.

Default if no entry found

If no entry is provided for a directory, the parent directory's value will be inherited. If the root directory has no entry, the default, which is Screen, will be inherited.

Command To Change This Value


File Syntax

Signon Method UserName


Also see