Rest Api v2 report execution access control


I want to create a user for the rest api v2 report executions (or a role group with the user). I need that, this user/role only access 1 report execution (which has about 20 input parameters, but not mandatories), but can't access any other item in the repository (the best would be that, if he can't login to web user interface (so can't see anything)).

What's the best way to achieve it?



vbence's picture
Joined: Jan 21 2015 - 12:53am
Last seen: 8 years 2 months ago

I try to create a Custom Role and add a User, and Delete the ROLE_USER role from the User's roles .

After I set on the report my Custom Role to Execute only. The user can't login to web interface, but can't access for the given report execution.

Any idea?

vbence - 8 years 4 months ago

1 Answer:

ROLE_USER is required 

ernestoo's picture
Joined: Nov 29 2010 - 11:59am
Last seen: 5 years 8 months ago

I changed, i put the user to ROLE_USER and set no access for ROLE_USER for everything, and control the accesses with the Custom Role in the following way: No access for everything except 1 report (execute only)(of course execute only the connected hierarchy tree) and input controls(execute only)(of course execute only the connected hierarchy tree). I try to execute over rest api call, but says:Access is denied.

What's wrong?

vbence - 8 years 4 months ago

Ohh, i got the solution: I had to set the folder's Custom_role role to read which contains the report (but the upper folder stay execute only), so the hierarchy stay invisible! :)

vbence - 8 years 4 months ago

But I can't imagine that, what can support help, if they can't answer this (not too difficult) question...

vbence - 8 years 3 months ago