| Category: | Bug report |
Priority: | Urgent |
Status: | Closed |
| Project: | Severity: | Critical |
Resolution: | Fixed |
|
| Component: | Reproducibility: | Always |
Assigned to: |
first i set the permission of the root folder to"read" for the role user in jasperintelligence.
Then i installed the plugin for ireport wich makes a connection to my jasperintelligence server. After logging in with a user(Userrole was set in jasperintelligence) he had all the administrator functions(New files, delete files, etc)
If you set the folder "no access" he wouldnt be able to see the root directory but he could create new folders in it and
see/edit them.
When looking in the log file of tomcat i noticed that the sessionID = null when logging into jasperintelligence with
ireport, and that sessionID is not null when logging in with jasperintelligence
thread
http://www.jasperforge.org/index.php?option=com_joomlaboard&Itemid=215&f...
1 Comment:
Fixed in a later release