You cannot change the priority of indices.

You can ask IRIS to ignore particular index -- %IGNOREINDEX, or disable index for a particular condition -- %NOINDEX

You can force join order with %INORDER hint

https://docs.intersystems.com/iris20253/csp/docbook/DocBook.UI.Page.cls?KEY=GSOC_hints

Generally, if you see that some query does not use particular index, that should be used, or chooses bad join order -- collect table statistics, if this does not help -- contact InterSystems Support (WRC), or post details here -- the query, its plan, and describe what plan you'd like to see

If the CSPGatewayLatency is almost 5 seconds -- ignore, this is false positive, fixed in 2024.1.2. Or better -- upgrade! ;-) https://docs.intersystems.com/iris20241/csp/docbook/changes/index.html#CSPServer_DP-433569

No.

You can filter results based on the row level security policy Row-Level Security https://docs.intersystems.com/iris20252/csp/docbook/Doc.View.cls?KEY=GOBJ_persother_rls#GOBJ_persother_rlssetup

You can also grant access to specific columns in tables to particular roles, and then grant these roles to a particular user https://docs.intersystems.com/iris20252/csp/docbook/Doc.View.cls?KEY=RSQL_grant#RSQL_grant_synopsis

Take a look at class %SYS.ProcessQuery

USER>set q=##class(%SYS.ProcessQuery).ExamStackByPid($J,1)
 
USER>zw ^mtemp(q)
^mtemp(4,"*FORMAT")=1
^mtemp(4,"*LEVEL",1)=1
^mtemp(4,"*LEVEL",2)=2
^mtemp(4,"*STACK")=2
^mtemp(4,"*STACK",0,"V","$D")=""
...
^mtemp(4,"*STACK",1,"I")="1^S^^^0^"
^mtemp(4,"*STACK",1,"L")="  1   SIGN ON                            "
^mtemp(4,"*STACK",1,"S")=""
^mtemp(4,"*STACK",1,"T")="SIGN ON                           "
^mtemp(4,"*STACK",2,"I")="2^e^^^0^S q=##CLASS(%SYS.ProcessQuery).ExamStackByPid($J,1)"
^mtemp(4,"*STACK",2,"L")="  2   $$EXTFUNC                          ~S q=##CLASS(%SYS.ProcessQuery).ExamStackByPid($J,1)"
^mtemp(4,"*STACK",2,"S")="~S q=##CLASS(%SYS.ProcessQuery).ExamStackByPid($J,1)"
^mtemp(4,"*STACK",2,"T")="$$EXTFUNC                         "
^mtemp(4,"*VARS")=1

Hi Roy,

I wonder if you used some LLM to write big chunks of this article.

For example, CSP.ini in section 4.2 looks strange to me

Indeed, there is a System_Manager parameter in CSP.ini, however its value is allowed IP addresses. And there is no such parameter as System_Manager_Host

There is no such section as WEBAPP in CSP.ini to my knowledge. There is a APP_PATH. AutheEnabled, Timeout, and LockCSPName are properties of the web-application, but you generally specify them for the web-application in IRIS or in the Installation Manifest, not in the CSP.ini

Where did you find these parameters? I have not found them documented in https://docs.intersystems.com/irislatest/csp/docbook/DocBook.UI.Page.cls?KEY=GCGI_cspini

Additionally, in 5.1 you have iam listed as a part of IrisCluster definition, and then in the implementation guide there are steps 3 and 4. And step 3 suggests to deploy IAM using IrisCluster operator, and step 4 is to deploy IrisCluster itself. However IAM is a part of IrisCluster in the sample above

Please describe your use case. What you ask for is not possible, however perhaps there are other solutions

What is the authentication method for this web-application? I would suggest to you to have delegated authentication (ZAUTHENTICATE), get the Cookie there and inspect it

For example, in the sample here ZAUTHENTICATE checks OAuth2 token. You can check Cookie there

Adjust also GetCredentials accordingly

No way, unfortunately. Unless you can use ODBC from your project to access Caché, not InterSystems.Data.CacheClient.dll

Or, if you connect from external java program to IRIS -- check DelimitedIdentifiers option: https://docs.intersystems.com/iris20243/csp/docbook/DocBook.UI.Page.cls?KEY=RACS_DelimitedIds

Thank you Luis Angel.

Other possibility -- use CPF Merge

Define an SSL configuration with CreateSSLConfig, then modify superserver with ModifyServer to assign this SSL configuration https://docs.intersystems.com/iris20242/csp/docbook/DocBook.UI.Page.cls?KEY=RACS_actions

Hi Daniel.

This 404 error shows IIS page. For the debugging purposes the recommendation is to enable PassThrough responses in IIS: https://docs.intersystems.com/iris20242/csp/docbook/DocBook.UI.Page.cls?KEY=GCGI_webserver#GCGI_configiis_soapfault

IRIS returns 404 when the page or class does not exist, and when PROTECT error happens.

So enable the PROTECT events in the Audit, and check if anything is logged there

Check that IIS is configured correctly to forward the request that returns 404 to the Web Gateway and then IRIS

I wonder if this is an error in the documentation, and you rather should use PasswordExternal property, that is for specifying clear text password

Tani's comment below is of course correct -- it's always a bad idea to put passwords in the plaintext

Hi Muhammad.

Enable logging in the %JDBC External language server, reproduce the error, and check the log. Hopefully there will be some useful information in the log

Enable Audit and LoginFailure event in the Audit, reproduce the error and check the Audit Events. Hopefully you'll have LoginFailure there. Click on Details -- you should see the reason for Access denied

expandAll does not invoke any callback methods.

It shows only the nodes that are defined currently for the tree

See for example sample page csp/samples/ZENTest.DynaTreeTest.cls

Execute zenPage.getComponentById( "tree").expandAll(true); from the Developer console. Note, that no nodes are expanded. Now click on the Vegetable -> Fruit, then collapse them and call zenPage.getComponentById( "tree").expandAll(true); again. Now these nodes are shown. However, children for Animal and Mineral are still not shown, because they are not populated yet

I wonder if a workaround could be to define Session Events class for /csp/sys and set the language there