The following table describes the impact on JasperReports Server when managing users in the external authority:
Action in External | Impact on JasperReports Server |
Creating a new user | JasperReports Server automatically creates the new external user account when the user first accesses the server. As long as the user relies on existing roles in an existing organization, the user requires no changes in the server. If the user is associated with new roles, see Managing External Role Definitions. |
Updating a password | JasperReports Server does not store the passwords of external users, and is not impacted by changes to user passwords or user password policies on the external authority. |
Updating personal information | With the default mapping of external users, only the login name is stored in an external user account. If you configure role mapping based on personal information in the external user entry, you need to take into account any possible change in the content or structure of the external authority. For example, if a role is based on a user’s department attribute, make sure the user cannot modify this attribute in the external authority. Otherwise, the user could inadvertently or maliciously change his or her roles within JasperReports Server. |
Changing group or role membership | Described in Managing External Role Definitions. |
Changing organization membership | When organizations represent departments within a company, a user may change organizations, as mapped from the external authority. From JasperReports Server’s point of view, this is the same as deleting a user in the old organization and creating a user in another organization. See the corresponding rows of this table for these two actions. |
Disabling or deleting a user | When the user can no longer authenticate with the external authority, he can’t access JasperReports Server. Even though the external user account synchronized during the last user session remains in the internal database, it cannot be used for logging in. This defunct user account has no impact on the server; you can safely delete it, if desired. An external user can be disabled in JasperReports Server, preventing the user from logging in in the future. |
Recommended Comments
There are no comments to display.