Jump to content
Changes to the Jaspersoft community edition download ×

Secured authentication with visualize.js - SSO vs credentials encryption


jajab
Go to solution Solved by marianol,

Recommended Posts

Hi,

I've been testing the visualize.js successfully when passing plain text credentials via visualize.js.

We need now to add security on authentication : 

1. Solution N°1 : Using a CAS server. The problem I am encoutering here is : where do we get the SSO ServiceTicket we are supposed to provide to visualize.js ? (I've made it work by intercepting a ST request sent from another application to CAS and passing the ST to visualize.js and it worked fine.) And should we provide a new ST each time we call a report via visualize.js ? 

visualize({auth : { token : "ST-40-CZeUUnGPxEqgScNbxh9l-sso-cas.prod.jaspersoft.com"}[/code]

2.Solution N°2 : Can we use the plain text authentication method by passing encryted login and password to Jasper via Visualize.js ? The idea would be to synchronize the users between the 2 applications (in my case TYPO3 and Jasper) and let Jasper uncrypt the username and password sent via visualize.js. How can we tell to Jasper (or visualize) that we are sending encrypted credentials and that they should be decrypted ?

visualize({auth: {name: "12DCC34CC34CRC4CZZ4CZ",password: "12D756RYH7B5V34033Z",[/code]

 

Thank you for your help.

Jade

Link to comment
Share on other sites

  • Replies 1
  • Created
  • Last Reply

Top Posters In This Topic

Popular Days

Top Posters In This Topic

  • Solution

You can achieve solution #2 using the Jaspersoft Pre Authentication (or Token Based Authentication) this allows you to define a token passed to Jasper with the information needed to create the user object on the fly. The only thing you need to do is create your decription class that will handle the decryption of your token and give jasper what it needs to create the SSO.

The information about how to setup this is in the Jaspersodt Authentication Cookbook:

http://community.jaspersoft.com/documentation/tibco-jasperreports-server-authentication-cookbook/v610/token-based-authentication

Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now

×
×
  • Create New...