LDAP organizationRoleMap not working in 6.01

1

Hi all,

I recently upgraded from 5.5 to 6.0.1 (Community Edition), and now my role mappings don't work for externally authenticated users :-(.

The problem is not with the LDAP search - I can see the external roles in the user infromation pane - they are simply not mapping to the system roles.  In particular I have an external role - ROLE_REPORTING_ADMIN that I want to map to the ROLE_ADMINISTRATOR role in Jasper.  This worked fine under 5.5, but now in 6.0.1 it's broken.  If anyone has any ideas what's wrong with this config I'd be delighted to hear :-):

    <bean id="externalUserSetupProcessor" class="com.jaspersoft.jasperserver.api.security.externalAuth.processors.ExternalUserSetupProcessor" parent="abstractExternalProcessor">
 
        <property name="userAuthorityService">
            <ref bean="${bean.internalUserAuthorityService}"/>
        </property>
        <property name="defaultInternalRoles">
            <list>
                <value>ROLE_USER</value>
            </list>
        </property>
 
        <property name="organizationRoleMap">
            <map>
                <entry>
                    <key>
                        <value>ROLE_REPORTING_ADMIN</value>
                    </key>
                    <value>ROLE_ADMINISTRATOR</value>
                </entry>
            </map>
        </property>
    </bean>

As a temporary workaround I've had to comment out the organizationRoleMap property entirely; this at least lets me set the ROLE_ADMINISTRATOR on the relevant user's statically from within JR. (If I leave the organizationRoleMap config in place, every time the user logs in they lose ROLE_ADMINISTRATOR.)

tim_12's picture
9
Joined: Sep 30 2013 - 3:57am
Last seen: 4 years 10 months ago

2 Answers:

1

I see a different class for the bean in the multi-tenant LDAP config sample file.  It looks like you may be using the single tenant config. This difference has been there for a while as far as I know, so I don't know if it will help.

 <bean id="mtExternalUserSetupProcessor" class="com.jaspersoft.jasperserver.multipleTenancy.security.externalAuth.processors.MTExternalUserSetupProcessor" parent="abstractExternalProcessor">
 
 
       
elizam's picture
4426
Joined: Mar 5 2012 - 9:19am
Last seen: 1 week 1 day ago

Yep, I am using the single-tenant configuration because I'm using the Community Edition. Multi-tenant is only available in the commercial editions (and is not what I want anyway :-).)

tim_12 - 4 years 10 months ago

(As an aside, this community board really is bloody awful; I appear to have inadvertently made this a 'best answer' even though it doesn't help. Oh well ;-). Thanks for trying anyway, by the way!)

tim_12 - 4 years 10 months ago
0

I have created a Bug for the same and also mentioned the workaround till the fix is in place. Please refer below link.

 

https://community.jaspersoft.com/jasperreports-server/issues/4365

yokulkarni's picture
Joined: Mar 20 2015 - 4:11pm
Last seen: 4 years 7 months ago
Feedback
randomness