access grants
- and scheduled reports
- Domain column-level
- Domain row level
- effect of grants
  - Creating Topics from Domains
  - The Domain Security File
Ad Hoc Editor
- defining filters in
- display mode
- exporting options
- how to use
- interaction with filters and input controls
- opening
- page options
- panels
- round function for custom fields
- saving views
- sources
- support for calculated (custom) fields
- tool bar
Ad Hoc View panel
- about
- Layout Band
Ad Hoc views
- decimal place support for
- laying out
- localizing
- saving
add function
Add Resource
adding a design file as a new Domain
adding filters to custom expressions
adding reports
alphabetical ascending
- Working with Standard Crosstabs
- Drilling Through Data
alternate group
Always prompt
AND
area chart
auto-refresh interval in dashboards
available content
bar chart
basic functions
Boolean operators in Domains
calculated fields
cascading input controls
- Cascading Input Controls
- Adding Cascading Input Controls to a Report
CGP
chart reports
- and dashboards
- display options
- levels
- pivoting
- sample Topic
  - Selecting a Chart Type
  - Formatting Charts
- slider
- theme for
  - Creating and Uploading Chart Themes to the Server
- types of charts
  - Working with Charts
  - Selecting a Chart Type
- unique features
  - Selecting a Chart Type
  - Formatting Charts
chart views, compared with tables and crosstabs
charts
- Flash
- HTML5
Charts Pro
collapse members
column-level security in Domains
column chart
columns
- conditional formatting
- formatting
- percent of column group parent
complex expressions
conditional formatting
constant calculated field
controls. See input controls.
count all
Create menu, dashboard
creating
- dashboards
  - Creating a Dashboard
  - About Screen Sizes
- Domain security files
- Domain Topics
- reports
creating reports
- from the Ad Hoc Editor
- from the Home page
crosstab reports
- and dashboards
- collapse members
- column group parent
- exclude
- expand group
- keep only
- percent of group
- pivoting
- row group parent
- sample size
- sample Topic
- setting data formats
- sorting
  - Working with Standard Crosstabs
  - Drilling Through Data
- switch to column group
  - Working with Charts
  - Working with Standard Crosstabs
- switch to row group
  - Working with Charts
  - Working with Standard Crosstabs
- unique features
crosstab views, compared with tables and charts
custom expression, editing
custom fields
- add
- basic functions
- date functions
- default name
- divide
- multiply
- operators
- overview
- percent of group parent
- percent of total
- rank
- renaming
- round
- special functions
- subtract
- swap fields
custom URL in dashboards
- Creating a Dashboard
- Localizing Controls
dashboards
- adding content
- adding custom URLs
- adding logos
- area
- auto-refresh interval
- available items
- buttons
- containing other dashboards
- content deleted from repository
- creating
  - Creating a Dashboard
  - About Screen Sizes
- custom URLs in
- deleting content
- design considerations
- designer
- editing
  - Adding Controls to a Dashboard
  - Editing a Dashboard
- embedded
- exceed area
- HTTP v. FILE protocol
- input controls for
  - Adding Controls to a Dashboard
  - Editing a Dashboard
  - Input Control Tips
  - Miscellaneous Tips
- limitations
- mapping input controls to URLs
- multiple selection
- opening
- overview
- parameters
- previewing
- refining the layout
- reports for
- screen size
- special content
- SuperMart dashboard
- title
- viewing
- working with
  - Working with Jaspersoft Dashboards
  - Input Control Tips
Data Chooser wizard
- Creating a View from a Domain
- Using the Data Chooser Wizard
data formats
Data page
Data Source Selection panel, about
data sources, access grants, and scheduled reports
datatypes
date functions
defaults, input controls
- Running a Report with Input Controls or Filters
- Adding Input Controls
dependent reports
design files
- adding as a new Domain
- editing
- exporting
- filters
- itemGroups element
- items element
- joins
- Oracle schema name
- resources element
- schema element
- schemaLocation attribute
- See also Domains.[design files
- structure
- uploading edited file
- version attribute
- xmlns attribute
- XSD
display mode
distinct count
divide function
Domain Designer wizard
- Example of Creating a Domain
- Example of Creating a Domain Using a Virtual Data Source
Domain Expression Language. See DomEL.
Domain plug-in
- input controls
- parametrized queries
- using in iReport
Domain Topics
- editing
- effect of access grants
  - Creating Topics from Domains
  - The Domain Security File
- saving
Domains
- access grants and scheduled reports
- boolean comparison operators
- defined
- design file
- designing a Domain
  - Example of Creating a Domain
  - Example of Creating a Domain Using a Virtual Data Source
  - The Properties Panel
- Domain plug-in for iReport
  - Plug-in Requirements
  - Running a Report from iReport
- DomEL
- editing
- effect of access grants
  - Creating Topics from Domains
  - The Domain Security File
- exporting designs to XML files
- filters
  - Interactively Filtering Report Output
  - Return Value
- Groovy
- input controls
- item sets
  - Example of Creating a Domain
  - Example of Creating a Domain Using a Virtual Data Source
- joins
  - Example of Creating a Domain
  - Example of Creating a Domain Using a Virtual Data Source
  - Display Tab
- locale bundles
- localization
- placeholders
- presentation and physical layers
- principal expressions
- profile attributes
  - Operators and Functions
  - Profile Attributes
- properties files
- referential integrity
- samples
- saving as Topics. See Domain Topics.
- Simple Domain
- SuperMart Domain
- typical uses
- using a Domain for a report
- using a virtual data source
DomEL
dynamic filters
Editing custom expressions
editing, dashboard
Event Details page
expand members
exporting Domain designs to XML design files
external resources
fields
- Organization
- Search
FILE protocol
filters
- compared to input controls
- filtering items in Domains
- in Domain plug-in
- in Domains
- in repository searches
- in the Ad Hoc Editor
  - Using Filters and Input Controls
  - Using Input Controls
- in Topics
- reports with
- settings
- types
- using
Filters panel, about
fixed sizing
Flash charts
folders
- Dashboards
- moving
- repository
formats for report output
formatting
- columns
  - Column Formatting
- conditional
FTP
- Setting Output Options
- Setting Output Options
Fusion
Getting Started page
- for administrators
- for end users
- icons
- return button
Groovy
- Profile Attributes
- The Domain Security File
groups
- expanding and collapsing
- pivoting and switching
help
hide scroll bars
hiding detail rows
HTML5
IDs
- organization
- sample user IDs
input controls
- adding
- Always prompt option
- and dashboards
  - Creating a Dashboard
  - Adding Controls to a Dashboard
- and parametrized queries
- cascading
  - Cascading Input Controls
  - Adding Cascading Input Controls to a Report
- check box type
- compared to filters
- dashboards
- date type
- default values
  - Running a Report with Input Controls or Filters
  - Adding Input Controls
- design tips
- display differences in dashboards
- drop-down type
- in reports run from Domain plug-in
- in the Ad Hoc Editor
  - The Data Source Selection Panel
  - Using Filters and Input Controls
- limitations
- list type
- localizing
- mapped to custom URLs
  - Localizing Controls
  - Miscellaneous Tips
- Optional JSP Location option
- query type
- reports with
- reuse of
- running a report with
- text
- types
- using
- Visible property
installing JasperReports Server plug-in
iReport
- adding resources
- connecting to JasperServer
- creating JRXML file in
- designer
- Domain plug-in
  - Plug-in Requirements
  - Running a Report from iReport
- JRXML files
- repository
  - Plug-in Requirements
  - Editing a Report in the Repository from iReport
- running reports in
item sets
- Example of Creating a Domain
- Example of Creating a Domain Using a Virtual Data Source
itemGroups element in design files
- Structure of the Design File
- Structure of the Design File
items element in design files
JAR files
- Adding a Complex Report Unit to the Server
- Uploading Undetected File Resources
- Creating and Uploading Chart Themes to the Server
JasperReport wizard
- Controls & Resources
- Data Source
- edit report unit
- Query
  - Defining the Data Source
  - Defining the Query
- Set Up
Jaspersoft OLAP prerequisites
Jobs List page
jobs. See scheduling reports.
joins
- in Domains
- security
JRXML files
- and Domain Topics
- and Topics
- external resources
- field names in
  - Creating Topics
  - Localizing Reports
- in iReport
- suggested file resources
- to create a new report
  - Uploading the Main JRXML
  - Adding a Complex Report Unit to the Server
- uploading
- validating in iReport
Layout Band
layouts of views
Library menu
Library page
- Created Date column
- Modified Date column
line chart
locale bundles
locales
- expressions
- in Ad Hoc views
- showing
localization of Domains
Locate File Resource page
Locate Query page
logging in
- multiple organizations
- passwords
- with the default administrator login
Maps Pro
menus
- Create
- View
messages about system events
Messages page
Microsoft SQL Server Analytical Services
Microsoft SSAS
multi-level slider. See slider.
multi-tenant server
multiple organizations, logging in with
multiple v. single controls in dashboard
multiply function
NOT
notifications, setting
numeric ascending and descending
- Working with Standard Crosstabs
- Drilling Through Data
OLAP
- charts
- crosstabs
online help
operators, boolean operators
options for output
- Setting Output Options
- Setting Up Notifications
OR
Oracle
- choosing schemas
- NVARCHAR2
- schema name in design file
- synonyms
output options, setting
parametrized queries
- adding input controls
- and dashboards
- dashboards
- in reports run from Domain plug-in
- in the Ad Hoc Editor
- running a report with parametrized queries
- See also filters. [parametrized queries
passwords
percent of group parent functions
percent of total function
physical layer
pie chart
pivoting
- The Data Source Selection Panel
- Working with Charts
- Working with Standard Crosstabs
placeholders
plug-ins
- Domain
  - Plug-in Requirements
  - Running a Report from iReport
- JasperReports Server
PostgreSQL, choosing schemas
- Example of Creating a Domain
- Example of Creating a Domain Using a Virtual Data Source
- Manage Data Source Dialog Box
pre-filtering items in Domains
prerequisites for Jaspersoft OLAP
presentation layer
preview
principal expressions
print view
profile attributes
properties, in locale bundles
proportional sizing
protocols, HTTP v. FILE
queries
- viewing SQL query in Ad Hoc Editor
- viewing the MDX query in the Ad Hoc Editor
query resource
rank function
recurrence
- calendar recurrence
- simple recurrence
- types
redo
- The Data Source Selection Panel
referential integrity
Removing filters from custom expressions
report schedules, changing
report units
- adding to server
- complex
- overview
- saving
Report Viewer
- about
- toolbar
reports
- adding
- attaching files
- changing schedules
- chart layout and formatting options
  - Selecting a Chart Type
  - Formatting Charts
- creating
  - Overview of the Ad Hoc Editor
  - Creating Topics from Domains
  - Adding Reports Directly to the Repository
  - Adding a Complex Report Unit to the Server
- creating from an Ad Hoc view
- crosstab layout and formatting options
- crosstab vs. table and chart
- dependent
- design
- designing in the Ad Hoc Editor
- effect of access grants
  - Scheduling Reports
  - Creating Topics from Domains
  - The Domain Security File
- empty
- exporting report output
- filters in
- Flash-enabled
- input controls in
- job schedules, changing
- localization
- notifications
- output options
- report output
- running
  - Running or Creating a Simple Report
  - Running a Job in the Background
  - Running a Report from iReport
- sample size
- saving
- saving report output
- saving to FTP
- saving to host file system
- scheduling
- See also scheduling reports and running reports. [reports
- sending HTML
- setting data formats
- simple
- sorting
  - Working with Tables
  - Working with Standard Crosstabs
  - Drilling Through Data
- submitting
- summarizing rows and columns
- table vs. crosstab and chart
- types
- unit
- with input controls
repository
- adding reports directly
- browsing
- folders
- in iReport
  - Plug-in Requirements
  - Editing a Report in the Repository from iReport
- list of reports
- overview
- panel
- resources
- searching
- system messages
- viewing
reset
- Creating a Dashboard
- Adding Controls to a Dashboard
resolution
resource access permission
resources
- adding to iReport
- and Ad Hoc views
- and localizations
- bundles
- moving folders
- repository
resources element in design files
RGP
round function
row-level security in Domains
rows, percent of row group parent
running reports
- example
  - Running or Creating a Simple Report
  - Running a Report with Input Controls or Filters
- Flash charts
- from iReport
- in the Ad Hoc Editor
- in the background
- on a schedule
- See also reports and scheduling reports. [running reports
sample Domains
sample files
- AllAccounts.jrxml
  - Overview of a Report Unit
  - Uploading the Main JRXML
- for JasperReports
- logo.jpg
- SalesByMonth.jrxml
- SalesByMonthDetail.jrxml
sample reports
- Accounts
- Freight
- library
- SalesByMonth
sample size
sample Topics
- foodmart data for crosstab
- Simple Domain Topic
sample user IDs
samples
- about
- locating
Save Topic page
saving reports
Schedule tab
Scheduler wizard
scheduling reports
- access grants and scheduled reports
- defining a job
- defining schedules
- deleting
- editing a job
- excluding holidays
  - Running a Job Repeatedly
  - Running a Job Repeatedly
- notifications
- output options
- pausing
  - Viewing the List of Scheduled Jobs
  - Viewing the List of Scheduled Jobs
- recurrence
- See also reports and running reports. [scheduling reports
- status
- viewing job schedules
schema element in design files
schemaLocation attribute in design files
schemas. See design files. [schemas
screen sizes
search field
Search Results page
searches
- default settings
- filtering
- refining
- settings
searching
- filters
- repository
security files
- column-level security
- effect of access grants
- filters
- principal expressions
- row-level security
- structure
servers, multi-tenant
Set Up the Report page
Set Up the Report Page
show scroll bars
showing detail rows
Simple Domain Topic
single v. multiple controls in dashboard
slice
slider
sorting
sorting reports
- Working with Tables
- Working with Standard Crosstabs
- Drilling Through Data
sorting views
spacer
special content in dashboards
- Creating a Dashboard
- Adding Controls to a Dashboard
special functions
SSAS
standard controls in dashboards
submit
- Creating a Dashboard
- Adding Controls to a Dashboard
submitting reports
subtract function
SuperMart
switch to column group
- Working with Charts
- Working with Standard Crosstabs
switch to row group
- Working with Charts
- Working with Standard Crosstabs
switching groups
table reports
- and dashboards
- compared with crosstab and chart
- hiding detail rows
- showing detail rows
- sorting
- spacer
table views
- designing layouts
- sorting
table views, compared with charts and crosstabs
testProfileAttribute
- Operators and Functions
- Profile Attributes
text label
themes, for charts
- Creating and Uploading Chart Themes to the Server
time series chart
tool bar
Topics
- as JRXML files
  - Creating Topics
  - Creating Topics from Domains
- creating
- defined
- field names in
- JRXML files
- localization
- parametrized queries
- saving Domains as Topics. See Domain Topics.
- See also Domain Topics. [Topics
- Simple Domain Topic
- uploading
Topics and Domains page
undo
- The Data Source Selection Panel
uploading edited design files
URLs in dashboards
user IDs
- logging in
- sample
utilities
- iReport
- messages
version attribute in design files
View menu
- Repository
- Search Results
viewing
- dashboards
- fields and data in a Domain Topic
- repository
- scheduled reports
viewing the SQL query
views
- designing layouts
- types
virtual data source
Widgets Pro
wizards
- Data Chooser
  - Creating a View from a Domain
  - Using the Data Chooser Wizard
- Domain Designer
  - Example of Creating a Domain
  - Example of Creating a Domain Using a Virtual Data Source
- Domain Designer, edit Domain
- JasperReport. See JasperReport wizard.
- report scheduler
- Scheduler
XML Domain design files
xmlns attribute in design files
XSD of Domain design file

Row-Level Security

Row-level security is specified in resourceAccessGrants. For each dataset from which data is returned by a query in the design file, a resourceAccessGrantList specifies the rows to which a user has access. Each grant is defined in a resourceAccessGrant that contains a principalExpression and a filterExpression.

A resourceAccessGrant must be defined for a joined resource if any query in the security definition has at least one item from the resource, even if that query does not include the related dataset.

Row-level security applies whenever access to a secured resource is requested, even if the request is indirect. For instance, a column in the Region table might be joined to a column in the Sales table. User Tomas has access to Region but not Sales. Tomas’s report uses columns from Region but he cannot see them because he does not have access to Sales.

Row-level security is defined as follows:

<resourceAccessGrants>    <!-- Begin row-level security -->
 <resourceAccessGrantList id="expense_join_resource_access_grant" label="aLabel"
              resourceId="expense_join">
  <resourceAccessGrants>
   <resourceAccessGrant id="expense_join_ROLE_SUPERMART_MANAGER_store_row_grant">
    <principalExpression>
     authentication.getPrincipal().getRoles().any{ it.getRoleName() in
     ['ROLE_SUPERMART_MANAGER'] }</principalExpression>
    <filterExpression>s.store_country in ('USA') and s.store_state in ('CA')
    </filterExpression>
   </resourceAccessGrant>
   <resourceAccessGrant id="account_ROLE_SUPERMART_MANAGER_account_row_grant"
              orMultipleExpressions="true">
    <principalExpression>
     authentication.getPrincipal().getRoles().any{ it.getRoleName() in
     ['ROLE_SUPERMART_MANAGER'] }</principalExpression>
    <filterExpression>s.store_number == 0</filterExpression>
   </resourceAccessGrant>
   <resourceAccessGrant id="account_ROLE_SUPERMART_MANAGER_account_row_grant2"
              orMultipleExpressions="true">
    <principalExpression>
     authentication.getPrincipal().getRoles().any{ it.getRoleName()
     in ['ROLE_SUPERMART_MANAGER'] }</principalExpression>
    <filterExpression>s.store_number == 24</filterExpression>
   </resourceAccessGrant>
  </resourceAccessGrants>
 </resourceAccessGrantList>
 <resourceAccessGrantList id="account_resource_access_grant" label="aLabel"
              resourceId="account">
  <resourceAccessGrants>
   <resourceAccessGrant id="account_resource_super_user_row_grant">
    <principalExpression>
     authentication.getPrincipal().getRoles().any{ it.getRoleName() in
     ['ROLE_ADMINISTRATOR'] }</principalExpression>
   </resourceAccessGrant>
   <resourceAccessGrant id="account_ROLE_SUPERMART_MANAGER_row_grant">
    <principalExpression>
     authentication.getPrincipal().getRoles().any{ it.getRoleName() in
     ['ROLE_SUPERMART_MANAGER'] }</principalExpression>
    <filterExpression>account_type == 'Expense'</filterExpression>
   </resourceAccessGrant>
  </resourceAccessGrants>
 </resourceAccessGrantList>
</resourceAccessGrants>

Elements of resourceAccessGrants are:

•

resourceAccessGrantList. List of grants for one dataset in the Domain.

•

resourceAccessGrant. Grant in the dataset for a specific case, such as a user or role.

•

principalExpression. Evaluation of the authentication object and user to determine the role to be granted access.

•

filterExpression. Filter on the dataset; determines the rows to which access is granted. Filters are applied to resource IDs. See the The DomEL Syntax for examples of valid filter expressions. For an alternative to writing filter expressions in Groovy, see the testProfileAttribute function in Operators and Functions.

Version:

v5.5.2

v5.5.1

v5.5.0

Main menu

You are here

Row-Level Security