If you have a commercial version of JasperReports Server, you can choose to map all external users to a single organization; for example, in the following cases:
| • | You have a commercial JasperReports Server deployment that does not implement multiple organizations, but instead uses the default organization. This includes commercial versions that are licensed for a single organization. In this case, externally authenticated users must be mapped to the default organization. |
| • | You have multiple organizations in JasperReports Server, but still want all external users to be placed in a single organization. |
To map all external users to a single organization, you need to set the following properties in the ldapExternalTenantProcessor bean:
| 1. | Remove the organizationRDNs property (or make sure the list of properties is empty). |
| 2. | Add the defaultOrganization property and set it to the organization you want assigned to all external LDAP tenants. |
| The ldapExternalTenantProcessor bean is not available in the community edition. You do not need to set the organization in the community edition. ldapExternalTenantProcessor is an example of a processor. For more information about processors, see Creating a Custom Processor. |
The following example places all external users in the default organization, organization_1.
<bean id="ldapExternalTenantProcessor" class="com.jaspersoft.jasperserver.multipleTenancy.security. externalAuth.processors.ldap.LdapExternalTenantProcessor" parent="abstractExternalProcessor"> <property name="ldapContextSource" ref="ldapContextSource" /> <property name="multiTenancyService"> <ref bean="internalMultiTenancyService"/></property> <property name="excludeRootDn" value="true"/> <!-- to place externals users in a single organization, make sure this list is empty --> <property name="organizationRDNs"> <list> </list> </property> <!-- to set the organization for all users, add this property -->[/code] <property name="defaultOrganization" value="organization_1"/></bean>[/code] |
| Make sure to specify a value for the defaultOrganization. If defaultOrganization is left empty, users may be mapped to the null organization id. This id is usually reserved for special users such as the system administrator and allows access to the repository folder of all other organizations. |
Recommended Comments
There are no comments to display.