By: David Lafay - davidlafay
HELP about Permission/Role and Report Â
2006-04-13 10:14
I have created a new unit report with a JRXML report.Â
I have set that the report is only for a specific role but all my users can play the report.Â
Â
Do you have an idea...Â
Â
Well, I think, I have a problem with role because if I create a new Role and affect a new user to this new role then the user can't connect !
By: Sherman Wood - sgwood
RE: HELP about Permission/Role and Report Â
2006-04-13 12:40
Â
1. In the release notes, we note that the object level security is not fully implemented. You can define the security, but the machinery underneath is not fully configured right now.Â
Â
2. The default security model requires that a user have the ROLE_USER or ROLE_ADMINSTRSTOR role in order to log in. This is set in the Acegi security /WEB-INF/applicationContext-security.xml - see the filterInvocationInterceptor bean showing the page level security. You can change this as needed. Â
Â
Â
Sherman
By: David Lafay - davidlafay
RE: HELP about Permission/Role and Report Â
2006-04-13 14:48
Thanks for your response.Â
Â
Do you think that the object security will be implemented in the next (1.0?) release.Â
Â
Â
DavidÂ
By: Sherman Wood - sgwood
RE: HELP about Permission/Role and Report Â
2006-04-13 14:59
Â
I am working on it now - I intend it to be there by the end of April.Â
Â
Â
ShermanÂ
JasperSoft
By: David Lafay - davidlafay
RE: HELP about Permission/Role and Report Â
2006-04-19 12:15
Thanks. With security, JasperServer will be usable for productionÂ
Â
Â
HELP about Permission/Role and Report Â
2006-04-13 10:14
I have created a new unit report with a JRXML report.Â
I have set that the report is only for a specific role but all my users can play the report.Â
Â
Do you have an idea...Â
Â
Well, I think, I have a problem with role because if I create a new Role and affect a new user to this new role then the user can't connect !
By: Sherman Wood - sgwood
RE: HELP about Permission/Role and Report Â
2006-04-13 12:40
Â
1. In the release notes, we note that the object level security is not fully implemented. You can define the security, but the machinery underneath is not fully configured right now.Â
Â
2. The default security model requires that a user have the ROLE_USER or ROLE_ADMINSTRSTOR role in order to log in. This is set in the Acegi security /WEB-INF/applicationContext-security.xml - see the filterInvocationInterceptor bean showing the page level security. You can change this as needed. Â
Â
Â
Sherman
By: David Lafay - davidlafay
RE: HELP about Permission/Role and Report Â
2006-04-13 14:48
Thanks for your response.Â
Â
Do you think that the object security will be implemented in the next (1.0?) release.Â
Â
Â
DavidÂ
By: Sherman Wood - sgwood
RE: HELP about Permission/Role and Report Â
2006-04-13 14:59
Â
I am working on it now - I intend it to be there by the end of April.Â
Â
Â
ShermanÂ
JasperSoft
By: David Lafay - davidlafay
RE: HELP about Permission/Role and Report Â
2006-04-19 12:15
Thanks. With security, JasperServer will be usable for productionÂ
Â
Â
5 Answers:
Posted on October 31, 2006 at 2:19pm
By default, you cannot login and see screen without having the ROLE_USER set. This is determined by the Acegi Security configuration in /WEB-INF/applicationContext-security.xml.
An administrator can deny access to roles and users by assigning "No access" to folders and repository objects.
What are you trying to do?
Sherman
JasperSoft
An administrator can deny access to roles and users by assigning "No access" to folders and repository objects.
What are you trying to do?
Sherman
JasperSoft
Posted on November 1, 2006 at 12:24am
Well.I've created a role named TestRole2 and a user named test_admin with roles "ROLE_USER" and "TestRole2",and I set the permission of "root/reports/sample" to "no access" for both roles.When I login with test_admin, I find myself can access this folder and all resources under it.
What'sthe problem?
What'sthe problem?
