PE list is empty still CBE check succeeding

mktdata

tutorial5-TSCO.txt

Hello, we are using RFA 8.1 C++ api and Open DACS Api's to consume market data. We were testing DAC set up with one of our mutual client. For a certain DAC user who was not entitled for London Stock Exchange, we were receiving permission data in Refresh message. We used sample application provided with DACS api "OpenDac-C++-tutorials - Tutorial5" to test CBE entitlement result. As you can see in attached logs and screenshot, CBE check was succeeding.

As you can see in attached screenshot[marked in yellow], PE list was empty. Our questions is how CBE check is marked as succeeding even when PE list was empty? Is tutorial code incorrect or incomplete?

Jirapongse

@mktdata

Thanks for reaching out to us.

If you call the AuthorizationAgent::checkSubscription() method without specifying an AuthorizationLockData (DACS Lock), it is a subject-based entitlement (SBE) check. It will return "succeeded" if the SBE is not enabled on the service.

To perform the CBE checks, you need to pass an AuthorizationLockData (DACS Lock) when calling the AuthorizationAgent::checkSubscription() method.

I hope that this information is of help.

mktdata

@Jirapongse , Can you check screen shot from sample application provided with DACS api "OpenDac-C++-tutorials - Tutorial5" below and let us know if it is correct?

In below code, when DACS lock is decoded[yellow mark in screen shot], it shows there is no PE code in it. Still CBE check succeeds.

Caller of "checkSubCBE" :-

Implementation of "checkSubCBE" :-

Jirapongse

@mktdata

Yes, if the DACS lock contains only the service ID and the service ID is valid, the API will return allowed.

However, if the DACS Lock contains a PE (258) and the user is not allowed to get data from that PE, the access will be denied.