michael.mccarthy Posted October 20, 2014 Share Posted October 20, 2014 Hi All,I can see how to change the permissions folder by folder to read only however the users still have access to create ad hoc reports. I would like the users to have read only access to the ad hoc reports already created and have no access to create reports/ad hoc reports. I can't see how using the roles that are currently present how to do that and i can't assign levels of access when i create a new role. ThanksMichael Link to comment Share on other sites More sharing options...
ernestoo Posted October 20, 2014 Share Posted October 20, 2014 You'll probably have to do some tricks in applicationContext-security-web.xml and applicationContext-security-pro-web.xml - likely best to get professional services for this type of customizatoin Link to comment Share on other sites More sharing options...
elizam Posted October 20, 2014 Share Posted October 20, 2014 There are several ways to do this, depending on how much work you want to do & how much restriction you want to make. See this answer:http://community.jaspersoft.com/questions/824274/show-only-reports-and-deny-ad-hoc-creation-based-roles Link to comment Share on other sites More sharing options...
michael.mccarthy Posted October 21, 2014 Author Share Posted October 21, 2014 Thanks for your comment. The link doesn't work however. Its not valid when i click on it. Can you repost please? Link to comment Share on other sites More sharing options...
elizam Posted October 21, 2014 Share Posted October 21, 2014 The link is intact in the source & it works for me, so I'm not sure what's going on. Here are some options: Give the role Execute Only permission to all folders containing Ad Hoc Views, Topics, and Domains. To do this, log in as superuser, right click on the folder you want to restrict, and select Permissions. You can choose the access for each user type. Execute Only will let users execute reports that are based on these resources, but they will not be able to view or edit any Ad Hoc Views, and without access to a Topic or Domain, they will not be able to create an Ad Hoc View of their own. (I believe the Data Source folder is restricted already, but if not, you should manage that as well) f you are up for editing configuration files, you could also modify the permissions for the Ad Hoc, Topic, and Domain flows, as outlined in the Ultimate Guide: http://community.jaspersoft.com/documentation/jasperreports-server-ultimate-guide/v561/restricting-access-role 2. Link to comment Share on other sites More sharing options...
djohnson53 Posted October 21, 2014 Share Posted October 21, 2014 Try the links now. Link to comment Share on other sites More sharing options...
michael.mccarthy Posted October 22, 2014 Author Share Posted October 22, 2014 hi Thanks for your comment. this doesn't work for me in my situation because: for the user to be able to login in they need to have one of two user roles - user or admin. if they have user role which is lowest ranking role then i need to modify this role as you have mentioned above i have no doubt this will work. that will however mean that all users using this then can't create ad hoc views. i also need to grant a set of users access to create ad hoc views and in that case i would need to give them admin access which i don't want to do - as they don't understand how to create domains etc... i have also tried creating a new role and doing the above and assigning it to user with the user role also however the user role access takes precedent and does not restrict on the new role created. IT seems like its only possible to have 2 sets of users. admins and other (which i can then define as either create ad hoc views or just executing views) Is this correct? thanks Michael Link to comment Share on other sites More sharing options...
elizam Posted October 22, 2014 Share Posted October 22, 2014 commented on the other thread Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now