How to get the browser session data and use that for RBAC

[ravi.tadepally]

Hi Jaspersoft Team,

We are currently working on integrating Jaspersoft UI with another internal UI and looking into ways to read the session data to determine the role of the user.

Based on the session data received we will be determining the role and set the permissions for the resources user can access.

Please suggest if there is any approach we can take to achieve this.

Thanks in advance.

[Michael Bielkiewicz]

The best way is probably to utilize our REST API which has a "user" endpoint. When viewing a user, you can check their assigned roles. See document:

https://community.jaspersoft.com/documentation/tibco-jasperreports-server-rest-api-reference/v8/users-service#Viewing_a_User

[ravi.tadepally]

Hi mbielkiewicz - thank you for providing the information. Unfortunately I am not able to use the below Rest API as we are using Community edition of jasperserver and its only available in commercial edition.

http://<host>:<port>/jasperserver[-pro]/rest_v2/organizations/orgID/users?<arguments>.

Is there anyway we can achieve multi tenancy to restriction users based on multiple organizations so that for specific org assigned to user he will be having only access to that particular resources?

Again we are looking to achieve this in community version of jasperserver for which the above organization rest api is not accessible.

Thanks in advance

[ravi.tadepally]

Hi mbielkiewicz - Does Jaspersoft provide any trial license for Jasperserver Commercial edition  so that we can test the functionality of the above mentioned features?

Can you please provide details if you have such trial version license.

Thanks in advance.