Access control

 

An API exit can provide access controls to supplement those provided by WebSphere MQ. In particular, an API exit can provide access control at the message level. An API exit can ensure that an application puts on a queue, or gets from a queue, only those messages that satisfy certain criteria.

Consider the following examples:

• A message contains information about an order. When an application attempts to put a message on a queue, an API exit can check that the total value of the order is less than some prescribed limit.

• Messages arrive on a destination queue from remote queue managers. When an application attempts to get a message from the queue, an API exit can check that the sender of the message is authorized to send a message to the queue.

 

Parent topic:

The role of the API exit and the API-crossing exit in security

sy11500_