How the Authorization File Works

When a user first installs the Web runtime, the installation creates a default authorization file, "acuauth.txt", and places it in the same directory that contains "acugtax.ocx". If downloaded from our Web site, these files are installed into a hidden directory such as "Temporary Internet Files" or "Downloaded Program Files," depending on the browser configuration.

If installed from our distribution media, "acuauth.txt" and "acugtax.ocx" are placed in the "C:\Program Files\Micro Focus\Acucbl900\AcuGT\bin\" directory.

By default, the "acuauth.txt" file contains one line that specifies a list of directories where COBOL programs may create or delete files and subdirectories. The directories are specified as a sequence of pathnames delimited by quotation marks. The purpose of this file is to allow applications that create local temporary files to work immediately.

If you install the Web runtime as part of the ACUCOBOL-GT Development System, "acuauth.txt" contains only the following line:

"C:\Program Files\Micro Focus\controldir\plgndata"

where controldir is the directory that contains "acugtax.ocx".

If a COBOL application requires access to other directories or disks on the user's machine, you must instruct your end users to add those directories to the "acuauth.txt" file manually. In this way, end users can accept responsibility for specifying which directories on the client machine may be made accessible to Web runtime applications.

You cannot change this file programmatically.

We recommend designing your application so that this is not necessary. Using AcuServer and/or AcuConnect, you can design your application to utilize remote application and data resources.

However, if you do need access to the client machine, you might want to use messages to help users manage the file. For example, if an application receives file status "37,07" (access denied) when trying to open a file on the local machine, the program can display a message that indicates the problem and instructs the user to add the directory name to the file.

You can also instruct users to add other information to the file, for example, to access restricted library routines. See Using the authorization file for access for more information.

Once the file is edited, applications executed by the Web controls are allowed to read and write data in these directories, as well as create and delete subdirectories. No other area of the user's local or network file system will be accessible to the COBOL programs executed by the Web controls. This provides some measure of protection for the end user's machine and network.

If the "acuauth.txt" file is empty or missing when the Web runtime is invoked, the COBOL application is denied access to the local machine's file system.