IBM Power Ideas Portal
This portal is to open public enhancement requests against IBM Power Systems products, including IBM i. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).
Shape the future of IBM!
We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:
Search existing ideas
Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updates on them if they matter to you. If you can't find what you are looking for,
Post your ideas
Post an idea.
Get feedback from the IBM team and other customers to refine your idea.
Follow the idea through the IBM Ideas process.
Specific links you will want to bookmark for future use
Welcome to the IBM Ideas Portal (https://www.ibm.com/ideas) - Use this site to find out additional information and details about the IBM Ideas process and statuses.
IBM Unified Ideas Portal (https://ideas.ibm.com) - Use this site to view all of your ideas, create new ideas for any IBM product, or search for ideas across all of IBM.
ideasibm@us.ibm.com - Use this email to suggest enhancements to the Ideas process or request help from IBM for submitting your Ideas.
We appreciate the additional suggestions. However, there are other RFEs that are asking for additional enhancements for the Printer Output filters that may already include these additional suggestions. If not, please open a separate RFE so that correspondence for each request remains clear and focused. The author of this RFE was not aware of the existing property and we need to understand if the existing property satisfies the original request. Changing the status back to Need More Information. We would like to understand from the author of this RFE if the existing property satisfies the request.
The problem is when you have a properties file that all users are using.
Here com.ibm.iaccess.splf.FilterRestricted=true
But this also inhibits users with *SPLCTL Special authority to modify the Printer Output filter.
With green screen wrksplf this is not a problem because *SPLCTL Special authority is respected.
An improvement for ACS could be that the property could be set to something like
com.ibm.iaccess.splf.FilterRestricted=*UserProfile
When the user has *SPLCTL authority there should be no restrictions and the filter could be modified.
And if they don't have it, then the filter could not be modified.
This solution also makes it easier to grant special users authority to look at other spool files.
Thank you for submitting your Request For Enhancement and for including the PMRID so that we can review the background for your specific request. The best way to prevent users from seeing spool files they should not see is to restrict their authority on the IBM i server. If your users have access to a 5250 display session, they would be able to view the same spool files using the WRKSPLF SELECT(*ALL) command unless you have taken steps to restrict their authority.
For convenience, we already support a way to prevent the Printer Output filter from being modified. This is documented in the AcsConfig.properties file by setting the property:
com.ibm.iaccess.splf.FilterRestricted=true
Does this meet the requirement?
A solution could be that it was possible to set restrictions according to the *SPLCTL Special authority on the user profile.
This is one thing that I am missing.
Attachment (Description)