user, role and permission

[Justin_6]

JasperReport Server 5.5 Pro

I created a new role and named it role_specific. Then I created a new user and assigned this role_specific to him. (By default, this user got ROLE_USER role as well.)

At this point, this user can see and run a report stored in ROOT/reports/dev/ folder.

Then I removed his ROLE_USER role. (only role_specific is left) I went to repository -> root and gave Read Only access to role_specific. 

Then I tried to run the report 

a.) switched my super user account to this user, I can see NOTHING.

b.) tried to run the report from my php application (embedded in iframe), I got permission denied error.

What else do I need to do to manage users with roles ?

My report is created in this way:   DataSource (mysql) -> Domain -> Ad Hoc View -> Report.  Is there anything generated and stored outside of Repository->root ?

Thanks

[mgeise]

Make sure that the role has execute permissions on all of the resources used by the report.  For visibility to the report, make sure that they have read access to all of the subdirectories too.  See if that works.

[Justin_6]

Since the Read Only access is given to Repository->Root, all sub-directories are given Read Only access as inherited permission. (It shows like 'Read Only*' in the dropdown.)

 

I found another thread posted earlier, and looks like we can't remove ROLE_USER for any newly created user. It's a MUST HAVE role.