&theme parameter
About JasperReports Server window
access control
- administering
- authentication
- authorization
- object-level permissions
- permissions
- repository
Ad Hoc
- caching
  - Configuring Ad Hoc
  - Configuring Ad Hoc
- comparison with Jaspersoft OLAP caching
- data formats
- data policies
- date formats
- fetch time
- queries
- query time
- result sets
  - Configuring Ad Hoc
  - Configuring Ad Hoc
- views
adding
- bean data sources
  - Data Sources
  - Data Sources
- datatypes
- folders
- JDBC data sources
- JNDI data sources
- lists
- queries
- resources
- virtual data sources
administering JasperReports Server
- Ad Hoc
  - Configuring Ad Hoc
  - Configuring Ad Hoc
  - Configuring Ad Hoc
  - Configuring Ad Hoc
- Amazon Web Services
- auditing
- bean data sources
- chart themes
- configuration files
- crosstab limit
- data policies
  - Configuring Ad Hoc
  - Configuring Ad Hoc
- data sources
- datatypes
- Domain validation
- folders
- fonts
- general tasks
- heartbeat
- HTML exporter
- HTML5 for Pro Charts
- input controls
- JAR files
- JasperReports Library
  - Configuring JasperReports Library
  - Configuring JasperReports Library
  - Configuring JasperReports Library
- JasperReports Server configuration
- JDBC data sources
- JNDI data sources
- levels of administration
- lists
- localization
  - Localization
  - Localization
  - Localization
- logging in as a user
- multiple administrators
  - Overview of the Repository
  - Organization, User, and Role Management
- object-level permissions
- online help
- organizations
  - Overview of Organizations
  - Organization, User, and Role Management
  - Managing Organizations
  - Multiple Organizations in the Repository
- passwords
  - Configuring User Password Options
- queries
  - Queries
  - Configuring Ad Hoc
- report intervals
- repository
  - Overview of the Repository
  - Repository Administration
  - Multiple Organizations in the Repository
- resource bundles
- resources
- roles
  - Overview of Users and Roles
  - Managing Roles
  - Managing Roles
- See also access control.[administering JasperReports Server
- summary of tasks
- Talend Integration Suite
- users
  - Overview of Users and Roles
  - Overview of Security
  - Organization, User, and Role Management
  - Managing Users
  - Managing Users
- virtual data sources
- XHTML exporter
administrators
- general tasks
- levels of administration
- organization administrator
- system administrator
Adobe Flash
Amazon Web Services
- Data Sources
- Configuring Amazon Web Services
Apache Hadoop. See Hive-Hadoop data sources.
Apple iOS
Asian fonts
- Localization
- Localization
attributes, profile. See profile attributes.
auditing
- administering
- archiving audit events
  - Server Diagnostics
  - Configuring Auditing and Monitoring
- audit reports
- audited events
- configuring
- importing and exporting audit data
authentication. See access control.
authorization. See access control.
beans. See data sources.
big data
- Data Sources
- Configuring Ad Hoc
browsing the repository
caching. See Ad Hoc.
- Configuring Ad Hoc
- Configuring Ad Hoc
cascading input controls
character encoding
- encoding forms
- JBoss
- JDBC connections
- JDBC data sources
- JDBC drivers
- JNDI data sources
- MySQL
- non-UTF-8 character encoding
- OLAP data sources
- OLAP views
- Oracle databases
- PostgreSQL
- See also fonts, locales, and localization.[character encoding
- Tomcat
- Unicode databases
- UTF-8
charts
charts, themes for
CLOB
configuring JasperReports Server. See administering JasperReports Server.
copying
- folders
- resources
  - Overview of the Repository
  - Managing Folders and Resources
creating
- datatypes
- folders
- input controls
- lists
- queries
- resources
crosstab report, Out of Memory errors
CSS files
- How Themes Work
- Working With CSS Files
custom data sources
- Data Sources
- Data Sources
data formats
data policies
- Configuring Ad Hoc
- Configuring Ad Hoc
data sources
- administering
- Amazon Web Services
- bean
- combining. See virtual data sources.
- custom
  - Data Sources
  - Data Sources
- JDBC
- JNDI
- queries
- virtual
dataset caching
- Configuring Ad Hoc
- Configuring Ad Hoc
dataSnapshotService bean
datatypes
- administering
- and input controls
- creating
- for input controls
- types
date formats
- Localization
- Localization
defaults
- changing
- chart themes
- Domain validation
- installation
- locale
- Oracle character sets
- Oracle synonyms
- PDF fonts
- report interval scheduling option
- roles
  - Managing Roles
  - Managing Roles
- time zone
- users
deleting
- folders
- resources
  - Overview of the Repository
  - Managing Folders and Resources
demo. See Supermart.
diagnostics
Domains
- adapting reports to audiences
- JDBC column types
- validation
editing folders and resources
events. See logging.
exporting
- audit data
- from the UI
  - Import and Export through the Web UI
  - Import and Export through the Web UI
- overview
- resources
favicon.ico file
Firebug plug-in
Flash
Folder Template
- Managing Organizations
- Administering Themes
folders
- creating
- deleting
- editing
- Folder Template
- moving
- Public
fonts
- administering
- East Asian
  - Localization
  - Localization
- in the repository
- Jaspersoft OLAP
- localization
- multi-byte
- non-UTF-8 fonts
- OLAP views
- PDF files
- See also character encoding, locales, and localization.[fonts
- troubleshooting in exported files
format masks
Fusion Charts
- Configuring JasperReports Library
- Configuring JasperReports Library
generating charts
GlobalPropertiesList
Hadoop-Hive data sources
heartbeat
- Administrator Login
- Configuring the Heartbeat
help configuration
HighCharts generation
Hive Query Language
HiveQL
HTML exporter
HTML5
importing
- audit data
- from the UI
- overview
- resources
input controls
- adding
- administering
- and datatypes
- cascading
- creating
- list of values for
- list type
- parameters for cascading input controls
  - Query-based Input Controls
  - Query-based Input Controls
- parameters for query-based input controls
  - Query-based Input Controls
  - Query-based Input Controls
- query-based
- saving
- types
internationalization. See localization.
iReport. See Jaspersoft iReport Designer.
JAR files, administering
JasperAnalysis. See Jaspersoft OLAP.
JasperETL
JasperReports Library
- configuring
- creating reports
- extending
- structure of a JasperReport
JasperReports Server
- configuration
- plug-in for iReport
JasperServer. See administering JasperReports Server.
Jaspersoft iReport Designer
- chart themes
- creating reports with
- resource bundles
Jaspersoft OLAP
- Managing Roles
- Configuring Ad Hoc
- Localization
Java Management Extensions (JMX)
JavaScript engine
JBoss
- and UTF-8 configuration
- JBoss Portal
JDBC data sources
JMX
JNDI data sources
JRXML files
- reference syntax. See repository.
- resource bundles
js-export command
js-import command
languages. See localization.
license expiration
Liferay Portal
lists
- administering
- creating
- list type input controls
locales
- administering
- character encoding
- creating
- data formats
- date formats
  - Localization
  - Localization
- format masks
- non-UTF-8 character encoding
- properties
- See also character encoding, fonts, and localization.[locales
- time zones
localization
- fonts
- JasperReports Server
- Jaspersoft iReport Designer
- OLAP views
- See also character encoding, fonts, and locales.[localization
- UTF-8
logging
- audit events. See auditing.
- system events
logging in as a user
maxFilterValues
maxPostSize
MDX query in Ad Hoc view
mdxDataStrategy
MongoDB data sources
monitoring
- configuring
- sample reports
moving
- folders
- resources
  - Overview of the Repository
  - Managing Folders and Resources
multi-byte fonts
multiple organizations. See organizations.
MySQL
- Configuring Ad Hoc
- Localization
NVARCHAR2
OLAP views
- Overview of Security
- Localization
- Localization
online help
Oracle
- character sets
- CLOB
- NVARCHAR2
- synonyms
organizations
- admin roles
- administering
- default
- folder structure
- multiple
- Organizations folder
- searching for
- single
  - Overview of Organizations
  - Organization, User, and Role Management
- suborganizations
Organizations folder
Out of Memory errors
overrides_custom.css file
parameterized queries. See queries.
passwords
- auditing
- expiration
- users changing
PDF
- embedding fonts
- troubleshooting fonts in
permissions. See access control.
- Permissions
- Permissions
PhantomJS
plug-in for iReport
portlets
- and JBoss
- and Liferay
- role
PostgreSQL
Pro Charts
Pro Charts generation
profile attributes
- and auditing
- and query-based input controls
- defined
- viewing users’
properties files
- creating
- resource bundles
Public folder
queries
- administering
- and Ad Hoc views
- creating
- multiple query languages
- parameters for cascading input controls
- parameters for query-based input controls
  - Query-based Input Controls
  - Query-based Input Controls
- query executors
- saving
- using
query-based input controls
repo syntax
reports
- and cascading input controls
- creating
- JasperReport
- JasperReports Library
- Jaspersoft iReport Designer
- report intervals
- scheduling
- troubleshooting fonts in exported reports
repository
- access control
- administering
  - Overview of the Repository
  - Repository Administration
- browsing
- configuring
- design issues
- events
- folders
- importing and exporting
- Organizations folder
- Public folder
- reference syntax
- referencing resources
- resources
  - Overview of the Repository
  - JasperReport Structure
- sample data
- searching
  - Overview of the Repository
  - Managing Roles
- See also resources.[repository
- structure
- UTF-8 encoding
  - Localization
  - Localization
resource bundles
- in the repository
- See also localization.
resources
- adding
  - Overview of the Repository
  - Managing Folders and Resources
- browsing
- copying
- cutting
- deleting
  - Overview of the Repository
  - Managing Folders and Resources
- editing
- fonts
- importing and exporting
- in repository
- JAR files
- moving
- pasting
- queries
- resource bundles
- resource references in JRXML files. See repository.
- searching
result sets
- Configuring Ad Hoc
- Configuring Ad Hoc
Rhino
roles
- administering
- administrative
- and users
  - Managing Roles
  - Managing Roles
- default roles
  - Managing Roles
  - Managing Roles
- object-level permissions
  - Permissions
  - Permissions
- searching for
saving
- input controls
- queries
searching the repository
- Overview of the Repository
- Managing Roles
session timeout
snapshotPersistenceEnabled
snapshotRecordingEnabled
SQL query in Ad Hoc view
suborganizations. See organizations.
SuperMart demo and roles
support, finding product version
system admin roles
system logging
System Properties folder
Talend Integration Suite (TIS EE)
themes
- &theme parameter
- active theme
- CSS files
  - How Themes Work
  - Working With CSS Files
- custom overrides
- default theme
- downloading
- Firebug plug-in
- in the Folder Template
- inheritance mechanism
- inherited theme
- Jaspersoft iReport Designer
- permissions
- recovering from inadvertent changes
- sample galleries
- See also chart themes. [themes
- system theme
- Themes folder
- uploading
- URL parameter
- ZIP archive
third-party APIs
time zones
Tomcat
translations
Unicode Transformation Format (UTF-8). See character encoding.
Universal Resource Identifiers (URI)
user interface samples
users
- administering
- authenticating
- changing passwords
- default users
- logging in as
- object-level permissions
- roles
- searching for
- session timeout
version of the software
Vertica databases
views
virtual data sources
web services
XHTML exporter

Configuring CSRF Prevention

Cross-Site Request Forgery (CSRF) is an exploit where the attacker impersonates a valid user session to gain information or perform actions on behalf of the attacker. In JasperReports Server, the security framework protects all administration pages under the Manage menu with a CSRF token in the post header, for example:

JASPER_CSRF_TOKEN: BVSY-UBBJ-K8E9-L4NZ-5866-Z4P2-ZG75-KKBW-U53Z-I833-V0OJ-BRK5-OFG5-ZL6X

In the default configuration of the server, CSRF prevention active. Jaspersoft does not recommend changing this setting:

CSRF Prevention
Configuration File
…\WEB-INF\classes\esapi\security-config.properties
Property	Value	Description
security.validation.csrf.on	true <default> false	Turns CSRF prevention on or off. By default, CSRF prevention is on. Any other value besides case-insensitive “false” is equivalent to true.

Version:

v5.5.2

v5.5.1

v5.5.0

Main menu

You are here

Configuring CSRF Prevention