nithyanand11 Posted November 28, 2013 Share Posted November 28, 2013 i have report url like below:http://localhost:8090/jasperserver-pro/flow.html?_flowId=viewReportFlow&standAlone=true&parentFolderUri=%2Freports%2FTest_Reports&reportUnit=%2Freports%2FTest_Reports%2FReport_V1&j_username=jasperadmin&j_password=jasperadmin&userid=nithibut the parameter userid is used inside the report as a input control which is not visible..we need the paramerter value nithi as secured one.. . where user cannot predict the userid.the value of the parameter userid will be changed dynamicallyIs there any encoding or encryting that jasper supports for url parameter or to handle encryted valued in ireport >Please help. Link to comment Share on other sites More sharing options...
paris11 Posted December 17, 2013 Share Posted December 17, 2013 Have you found a solution? I am facing to the same problem regards Link to comment Share on other sites More sharing options...
ftama7 Posted January 17, 2014 Share Posted January 17, 2014 You should make the application that embeds the report generate a temporary token in your database, and then pass it in the url. Afterwards, the report could check that the security token exists in your database. After some time or when the user session ends, the token would be deleted.Another easier but less secure option would be having your application "encrypt" the parameter using some algorithm, and then have your reports decode those encrypted parameters. The issue with this is that the encrypted parameter would always be the same, which is another potential security risk if the users learn how to exploit it. Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now