search cancel

LDAP users in Jasperserver always default to ROLE_USER

book

Article ID: 213186

calendar_today

Updated On:

Products

CA Service Operations Insight (SOI)

Issue/Introduction

After integrating Jaspersoft with LDAP, all LDAP users in Jasperserver have default ROLE_USER.

After changing the role for the LDAP user, once you login with that user, it will revert back to ROLE_USER.

Environment

Release : 4.2

Component : SOI ALERT MANAGEMENT

Resolution

The default role for LDAP users are set in the applicationContext-externalAuth-LDAP-mt.xml file.

 

The setting is in this section

    <bean id="mtExternalUserSetupProcessor" class="com.jaspersoft.jasperserver.multipleTenancy.security.externalAuth.processors.MTExternalUserSetupProcessor" parent="abstractExternalProcessor">
        <!--Default permitted role characters; others are removed. Change regular expression to allow other chars.
                    <property name="permittedExternalRoleNameRegex" value="[A-Za-z0-9_]+"/>-->

        <property name="userAuthorityService">
            <ref bean="${bean.internalUserAuthorityService}"/>
        </property>
        <property name="defaultInternalRoles">
            <list>
                <value>ROLE_USER</value>
            </list>
        </property>

 

After making changes to this, you need to delete the current LDAP users and restart CA Business Intelligence Tomcat service.