Hi,
In what table does the data entered in dynamic list creation(Id, Name, description, query etc) stored?. I am new to reportserver and I couldn’t find out the correct table. Also, in rs_reports table, the descriptions entered are not saving. It always shows null.
And I aslo want to know whether we can add columns to the db without crashing the server?
Thank you.
Hi Asie123,
where exactly the data is being saved in the metadata db is not documented. If you are interested you may look at the hibernate entities (Report.java, etc), there you should see the tables. For example: https://github.com/infofabrik/reportserver/blob/main/src/net/datenwerke/rs/core/service/reportmanager/entities/reports/Report.java
“@Table(name = “REPORT”)”
But of course you have joins, etc, so this is not trivial to find out. Why do you need this information ? In most cases this is not needed.
“And I aslo want to know whether we can add columns to the db without crashing the server?” → what do you mean exactly ? You mean add columns to the reportserver-database? this is again not recommended, the reportserver db should be left as it is installed and managed by reportserver.
Regards,
Eduardo
Thank you. I also need to know if there is a way a user only can access executed report without login? Not the other services.
As an example
User should be able to access : http://SERVER:PORT/reportserver/ReportServer.html#inlinereport/id:1234&type:preview
But not : http://SERVER:PORT/reportserver/ReportServer.html after removing the report viewing part from the url.
Is there any chance to do that?
Thank you.
Hi Asie123,
pls open new threads for new topics.
You can find the URL documentation here: https://reportserver.net/en/guides/admin/chapters/Executing-Reports-via-the-URL/
You can try with report export with apikey: 7.11.3. Embedding Reports Without Login
Note that this would only work for export, but not for inline view. For inline view this is currently not possible with apikey.
Pls. note of course that you can just use permissions / rights for allowing the user to only access the reports you need and nothing more. So the user would only see and be able to use the elements/reports you allow. More information here: https://reportserver.net/en/guides/admin/chapters/User-and-Permission-Management/
Regards,
Eduardo
Hi eduardo,
I tried creating users like in the above tutorial. But it did not work. My passwords and usernames are not saving. If you can, please state the correct steps using an example ? Also want to know how to create those Organizational Units and ho to allow user groups to access only the permitted reports and nothing more. If you can guide, it will be a great help.
Thank you.
Hi Asie123,
what exactly is not working ? How are you saving the passwords and usernames that are not saving ? Can you pls post some screenshots e.g. via http://imgbb.com
Regards,
Eduardo
Hi eduardo,
I try creating users like in https://ibb.co/QYzXGPc ,
When going to save it, at first comes an error like in https://ibb.co/rmCZvT4
But when ok it and when trying again it shows changes applied. But when I refresh and goto the created user, it shows all default values again. (Like Firstname, Lastname, username like that). Like in: https://ibb.co/yVYytW3 only the expire date is saved. In the db also, it is saved as,
https://ibb.co/fMwSd7n
I gave reportserver access permissions to the created user, but when giving permission, it doesn’t show the given first, last names.
https://ibb.co/ZgmWCMb
My requirement is to allow different user groups only to execute only the reports they are permmitted. They should not be able to view other users reports or any other thing inside the reportserver. Like mentioned before.
Thank you.
Hi,
I could create the users when the email address field is kept empty.
Now I have the following questions.
Can I give users of report server only the report viewing(not downloading) permissions without login and without accessing other things and also without being able to view other not permitted reports - not using api key method is there any way without login?
When giving such permission, can you tell me the following steps are correct?. I am having a confusion here with these ACEs.
* [url]https://ibb.co/3rjNyKK[/url] - for the report
* [url]https://ibb.co/4fNzftW[/url] - for the permission
Also I would like to know where can I find/give the api key for the user, I couldn’t see a place where this api key is created.
Thank you,
Asie.
Hi Asie123,
yes, the problem above is due to the cause that your mail.cf is not configured correctly. You should configure it to receive emails as described here:
https://reportserver.net/en/guides/config/chapters/Setting-up-the-Scheduler/
4.3.1. Mail Server Configuration
or you can use an email datasink as also described there as well. When you change the user’s password, an email is being sent for security purposes, that’s why this is needed in this case.
currently, this is only available via api key, so it is for downloading reports mainly. For running reports currently there is no way without login, but we have a ticket for this. You can of course create a html export, which should work as well.
what exactly are you trying to set ? The “reportserver access” is explained here:
https://reportserver.net/en/guides/admin/chapters/User-and-Permission-Management/
and you set “execute”, which is correct and allows the user to log-in:
ReportServer access. The ReportServer Access right controls who has access to ReportServer, i.e., on login ReportServer checks if the user has the execute (x) right.
The report-permission should be read and execute, depends on what you are trying to do. But, again, this won’t work without login and without download (see above 2).
As explained here: https://reportserver.net/en/guides/admin/chapters/Executing-Reports-via-the-URL/
Define the API Key and Define Appropriate Permissions
To define an API key for a user go to the user management view and select the user in question. Then select the tab User Properties and add a new property called apikey. As value, you can use any string (preferably a random string that is on the longish side).
Regards,
Eduardo
Hi,
Thank you for the great explanation. One another thing I want to know is that when an unauthorized user tries to download a report in httpauthexport method, it shows a screen like below. Can’t we change this only to show the error?
And also, if we give download from a button click in an application, will this redirect to the url?
Thanks.
Hi Asie123,
currently, it is not possible to change the error, so the user will get the error stack as in your screenshot.
You can treat the URL as a file, so yes, the download button in an application would work analogously as if the URL contained a file.
Regards,
Eduardo
Hi eduardo,
When I use download=false in the httpauthexport method, it redirects to the url and shows the report. But it shows all usernames, api keys and report ids there in the url.
Another thing is that, when a user only has access to execute a report, but he tries to log in using the correct username and password, It first shows login attempt failed. But when that pop up is closed, the report server page is shown with a blank and also with the welcome content for that user with first and last names like in below pic.
https://ibb.co/CwcZL5z
Am I missing something when giving permission?, It should not show the user details if not permitted. Isn’t it?
Thank you.
Hi Asie123,
yes, currently, the username and api key is shown in the URL, as described in the documentation (report access per url).
Regarding the login attempt: you can try to remove the “ReportServer Access” permission for this user:
https://reportserver.net/en/guides/admin/chapters/User-and-Permission-Management/
ReportServer access. The ReportServer Access right controls who has access to ReportServer, i.e., on login ReportServer checks if the user has the execute (x) right.
Regards,
Eduardo
Hi,
Although I removed report server access to this user, this still happens.
Thanks.
Hi Asie123,
can you explicitely set “reporserver access” to deny for this user for testing ?
Which ReportServer version exactly do you have ?
Regards,
Eduardo
Hi Eduardo,
I tested by denying the access, but still happens.
The version is - RS3.7.1-6046 .
Thanks.
Hi Asie123,
can you pls try with RS3.7.1-6048 ? We have a bugfix which may solve the problem:
RS-5060 Bug Inhibited users can log in
https://reportserver.net/releasenotes/RS3.7.1.html
Regards,
Eduardo
Hi,
I will try the new version and update.
For this below scenario, can you do a suggestion not to show these credentials in the URL?
Thank you.