Identity context

 

Identity context information identifies the user of the application that first put the message on a queue:

• The queue manager fills the UserIdentifier field with a name that identifies the user; the way that the queue manager can do this depends on the environment in which the application is running.

• The queue manager fills the AccountingToken field with a token or number that it determined from the application that put the message.

• Applications can use the ApplIdentityData field for any extra information that they want to include about the user (for example, an encrypted password).

Suitably authorized applications can set the above fields.

A Windows systems security identifier (SID) is stored in the AccountingToken field when a message is created under WebSphere MQ for Windows. The SID can be used to supplement the UserIdentifier field and to establish the credentials of a user.

For information on how the queue manager fills the UserIdentifier and AccountingToken fields, see the descriptions of these fields in the Application Programming Reference.

Applications that pass messages from one queue manager to another should also pass on the identity context information so that other applications know the identity of the originator of the message.

 

Parent topic:

Message context

fg10870_