Comments (5)
I agree it would be a good idea but it is probably a complex topic. Authentication against different services is the easy part imho, but how to do authorization? At the moment every authorization request is done directly against the active directory. To change that SSRS will need own data tables for for groups and mappings.
from reporting-services.
From what I can see from Googling, some developers are implementing custom security for SSRS 2016 Web Portal. It is a rewrite that should support modern authentication methods.
If you build a web app that incorporates a report viewer, either the VS one or custom, RS web service authentication and authorization can occur on the back end, between the web server and the RS web service, using the web app identity, and user-level authentication/authorization can be performed by the web app (without involving RS) using methods of the developer's choice. That's the way I have always done it.
from reporting-services.
I am in the process of working out what i can modify and what i have to keep.
i have two main cases:
- i want to show a user a given report like the asp.net control.
- i want some group of users to get a report portal view and give them as many options as i can for things like setting up a recurring schedule.
i think i can see how to do a JWT token to an iidentity if the request has a token in the headers.
but if no token i am not sure if i want to just return a no-auth or redirect them to login via the sts.
i have an OIDC / OAuth token server, not login forms in my app.
the other half , the per object permissions is more of an issue.
the SSRS system should allow for options to no use windows auth but ....
if i must i can create some windows groups to map to my app roles
from reporting-services.
As a part of a project, I had to implement custom authentication and authorization for SSRS. As said, authentication was easy part, but for authorization, I had to call RS webservice on each item, such as folder or report, depending on case, and apply authorization over it by applying policies. Authentication is called on demand, but for authorization for items is not, it should already be available as item descriptor. The point I want to make is, the authorization related information is stored with Report Server itself and it does not depend on AD.
from reporting-services.
It is in our backlog support for new authentication mechainisms however I can't provide any date yet
from reporting-services.
Related Issues (20)
- Custom authentication extension with Windows authentication HOT 1
- Old Windows Authentication Pop-up Login Keeps Appearing After Time-out
- SSRS Security Extension - how to access HttpContext.Current from IAuthenticationExtension2.GetUserInfo(IRSRequestContext) HOT 1
- SSRS Security extension - how to redirect login from inside GetUserInfo API
- SSRS Security Extension - GetUserInfo API missing cookies in Report Portal requests HOT 1
- Add extra .aspx page HOT 2
- ReportViewer control for .Net core
- Custome auth code- not able to upload pbix file after adding custom auth code in PBI report server HOT 1
- After the CustomSecuritySample runs successfully, the mobile app cannot connect to the Powerbi report server HOT 3
- After using custom forms authentication, how to Embed report in a web application using iframe ?
- Using Report Viewer Controls with Anonymous - rsAuthorizationTokenInvalidOrExpired
- Globals.ReportServerUrl does not reflect which binding the client used
- SSRS no longer understands alternate subject names
- Reports fail to render with my Custom Security Extension applied - 404 error on network resources
- 'System.Data.SqlClient.SqlClientPermission, System.Data, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089' failed
- FormsAuthentication.RedirectFromLoginPage is Ok but need to refresh page
- Cannot Access Power BI Reports After Implementing CustomSecuritySample. HOT 1
- Reports Shared DataSets Endpoint does not work in the go client generated from swagger.
- Could not able to load the reports for https.
- Is there a way to check the filter parameters passed in the URL? HOT 2
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from reporting-services.