acpload utility

+

Search Tips   |   Advanced Search

The acpload utility loads the XML files containing the main access control policies into the appropriate databases.

1. The acpload utility only requires the input_filename parameter.

2. If you create customized XML files, copy them into...

   WC_installdir/xml/policies/xml

   ...to have them loaded into the databases. Validate the XML files against the corresponding DTD changes.

3. There is a setting in the loading scripts that specifies the following parameter setting while resolving ID's and loading the data to the database:

   -maxerror 100000

   This means that if there up to 100000 foreign key violations while loading the data, they will be ignored, instead of aborting. This value can be increased or decreased as needed. For example, if you want to stop after one such error, you would change the value to 1.

4. To load the access groups and access control policies, run the following related utilities in this sequence:

   1. acugload (loads the user access group definitions)

   2. acpload (loads the main access control policy)

   3. acpnlsload (loads the display names and descriptions)

5. I5/OS:

   If you create customized XML files, use the full path to the DTD in your file. The access control policies DTDs are located in the WC_installdir/xml/policies/dtd directory.

6. To run the utility, login using the non-root WebSphere Commerce user ID.

   AIX|Linux|Solaris:

   The user ID must have the following permissions:

   • Read/write/execute authority to the directories, subdirectories, and files of WC_installdir/xml/policies and WC_installdir/logs.

   • Read/execute authority to the WC_installdir/bin directory and its files.

     If the user does not have the required authority, you need to grant this authority using the chmod command.

   I5/OS: You must login with a profile which has the following permissions:

   • Read/write/execute authority to files under WC_installdir/xml/policies, WC_userdir /instances and WC_userdir /instances/ instance/logs.

   • Read/execute authority to the WC_installdir/bin directory and its files.

     For example, define the profile with USRCLS *SECOFR.

7. Check for errors in the log files. Note that errors might not appear on the command line.

   1. AIX|Linux|Solaris|Windows:

      Check the acpload.log and messages.txt files in the following directory:

      • WC_installdir/logs

   2. I5/OS:

      • WC_userdir /instances/acpload.log

      • WC_userdir /instances/ instance/logs/messages.txt

   3. Any error files generated in WC_installdir/xml/policies/xml directory.

8. Update the registries: Access Control Policies and Access Control Policy Groups.

 

Parameter values

database

(Required) Name of the database in which to load the policy.

database_user

(Required) Name of the database user who can connect to the database.

database_user_password

(Required) The associated password for the database user.

input_filename

(Required) The input policy XML file that specifies what policy data to load into the database.

schema_name

(Optional) The name of target database schema. This name is normally the same as database_user.

 

Example

From the WC_installdir/bin directory, run:

./acpload.sh mall dbuser dbusrpwd defaultAccessControlPolicies.xml

• Windows: acpload.cmd mall dbuser dbusrpwd defaultAccessControlPolicies.xml

• acpload defaultAccessControlPolicies.xml

 

Related Concepts

Authorization
Understanding access control

 

Related tasks

Loading access control policy data

 

Related Reference

acpextract utility
acugload utility
acpnlsload utility