pauls_3

Also I do not need instructions on where or how to install Apache or nginx, I need general instructions on how to block the site.

Thanks for the links. It does not answer the question the question, "If I disable access to the "/jasperserver" folder/url how will the actual reports which appear to be under that folder run?" Since this is running in a windows environment, can I use the IIServer to accomplish the same thing? BTW, telling someone to do something without providing a instructions or a link to instructions on how to accomplish it is kind of useless.

One of the reasons we have avoided using Jasper for many years is its large footprint, including Apache Tomcat. In the web based systems we develop we need to produce PDF reports and occassionally Excel spreadsheets on demand. We are control freaks and as such we do not want any user anywhere to have access to the Jasper UI. The reporting model we have used is one in which a small group of DLLs are installed on the webserver, and ".rdl" files are loaded to the server (fyiReporting). Unfortunately this open source project has languished, and as a small shop we don't have the resources to take over maintenance ourselves. Is there any way to completely remove the User Interface from Jasper Reports? I posted another question asking something similar, but have gotten a dearth of responses I understand. What would be the ultimate solution would be somethiong in a conf file that says "enable-User-interface=yes/no"

Hozawa, If I restrict access to the /jasperserver folder will it not block access to all of the reports? The url for the reports contain https://mydomain.com/jasperserver/flow.html?...

We have developed a few reports in Jasper v 6.3.0. we call these reports from a web interface we have developed. We would like to completely disable the Jasper user interface for the user/role that we have assigned these reports to. Right now if the user strips the right hand side of the url they get a screen that allows them to see the repository, look at the reports, etc. Although as a non admin user they cannot change things we would like to disable this screen completely. An alternative would be to disable this screen from access other than from the local server, or the local network. What is the best way to resolve this issue? Edit - clarification: Basically we developed the report using ireport. and then we deploy it to JasperReportServer. We then "link" to the report on JasperReportServer from our web application. If you strip the url of everything after "/jasperserver" it displays a UI panel. I want to disable that panel.