Can not assign default role to a SSO user.

Jaspersoft Community 'Read-Only' as of July 8, 2022

Transition to New TIBCO Community Just Weeks Away

You can still search, review wiki content, and review discussions in read-only mode. Please email community@tibco.com with questions or issues requiring TIBCO review or response.

We are using jasperserver-pro, and have SSO integreted.

By default, all the SSO user login as ROLE_USER, and go to XXX orgranization.

<property name="defaultOrganization" value="XXX" />

 <property name="defaultInternalRoles">
                        <list>
                                <value>ROLE_USER</value>
                        </list>
 </property>

When a SSO user login named "Jack", he only has ROLE_USER, then we created another role under XXX organization called DEMO_USER.

Here is the problem, when we assgin ROLE_ADMINISTRATOR and DEMO_USER to him, at that point of time, he has both role and he is able to manage user.

But when he logout and login, the role ROLE_ADMINISTRATOR is gone, DEMO_USER is still there.

hxue's picture
30
Joined: May 14 2019 - 9:14am
Last seen: 1 year 5 months ago

2 Answers:

You cannot assign roles through the Jasper interface and have them stick for external users.  The only roles a user can keep are ones generated through the external authentication process.  You need to set up assignment of admin roles in your application context file.

elizam's picture
10875
Joined: Mar 5 2012 - 9:19am
Last seen: 1 year 11 months ago

Thanks, I figured out the problem.

The solution is:

Comment out this property "organizationRoleMap" in applicationContext-externalAuth-saml.xml

hxue's picture
30
Joined: May 14 2019 - 9:14am
Last seen: 1 year 5 months ago
Feedback