Can not assign default role to a SSO user.

0

We are using jasperserver-pro, and have SSO integreted.

By default, all the SSO user login as ROLE_USER, and go to XXX orgranization.

<property name="defaultOrganization" value="XXX" />

 <property name="defaultInternalRoles">
                        <list>
                                <value>ROLE_USER</value>
                        </list>
 </property>

When a SSO user login named "Jack", he only has ROLE_USER, then we created another role under XXX organization called DEMO_USER.

Here is the problem, when we assgin ROLE_ADMINISTRATOR and DEMO_USER to him, at that point of time, he has both role and he is able to manage user.

But when he logout and login, the role ROLE_ADMINISTRATOR is gone, DEMO_USER is still there.

hxue's picture
24
Joined: May 14 2019 - 9:14am
Last seen: 1 week 1 day ago

2 Answers:

0

You cannot assign roles through the Jasper interface and have them stick for external users.  The only roles a user can keep are ones generated through the external authentication process.  You need to set up assignment of admin roles in your application context file.

elizam's picture
5461
Joined: Mar 5 2012 - 9:19am
Last seen: 5 months 2 weeks ago
0

Thanks, I figured out the problem.

The solution is:

Comment out this property "organizationRoleMap" in applicationContext-externalAuth-saml.xml

hxue's picture
24
Joined: May 14 2019 - 9:14am
Last seen: 1 week 1 day ago
Feedback
randomness