Can not assign default role to a SSO user.

Posted on December 10, 2019 at 11:16am

We are using jasperserver-pro, and have SSO integreted.

By default, all the SSO user login as ROLE_USER, and go to XXX orgranization.

<property name="defaultOrganization" value="XXX" />

 <property name="defaultInternalRoles">
                        <list>
                                <value>ROLE_USER</value>
                        </list>
 </property>

When a SSO user login named "Jack", he only has ROLE_USER, then we created another role under XXX organization called DEMO_USER.

Here is the problem, when we assgin ROLE_ADMINISTRATOR and DEMO_USER to him, at that point of time, he has both role and he is able to manage user.

But when he logout and login, the role ROLE_ADMINISTRATOR is gone, DEMO_USER is still there.

JasperReports® Server
hxue's picture
hxue
38
Joined: May 14 2019 - 9:14am
Last seen: 2 years 2 months ago

2 Answers:

Posted on December 10, 2019 at 3:42pm

You cannot assign roles through the Jasper interface and have them stick for external users.  The only roles a user can keep are ones generated through the external authentication process.  You need to set up assignment of admin roles in your application context file.

elizam's picture
elizam
13970
Joined: Mar 5 2012 - 9:19am
Last seen: 2 years 7 months ago
Posted on December 13, 2019 at 7:05am

Thanks, I figured out the problem.

The solution is:

Comment out this property "organizationRoleMap" in applicationContext-externalAuth-saml.xml

hxue's picture
hxue
38
Joined: May 14 2019 - 9:14am
Last seen: 2 years 2 months ago
Feedback