|
|
You're in the
sql server reporting services
group:Forms authentication and URL access
sql server reporting services:
Ive written a security extension based on microsoft samples, i can call the
SOAP API and get authenticated but i dont know what to do so i can use this authentication method using URL access, i need that since i want to be able to keep the toolbar.
thanks, ill review my implementation and get back to you with more detail if
needed "Teo Lachev" <teo.lachev@nospam.prologika.com> escribió en el mensaje news:%23rrIi15jEHA.592@TK2MSFTNGP11.phx.gbl... [quoted text, click to view] > Rodrigo, > > The typical integration scenario for Forms Autnentication and web-based URL > reporting is: > 1. You have a web app which authenticates the user on the server side. > 2. The web app calls LogonUser SOAP API. > 3. The web app utilizes the Report Viewer or another approach (static > hyperlinks, client-side javascript, etc) to submit URL-based report > requests. > > So, once the user is authenticated the we app just needs to submit report > requests on the client side of the application. As long as the > authentication ticket (cookie) is passed successfully, the reports should > render fine subject to aurhorization restrictions. > > > > -- > Hope this helps. > > ----------------------------------------------------- > Teo Lachev, MCSD, MCT > Author: "Microsoft Reporting Services in Action" > Publisher website: http://www.manning.com/lachev > Buy it from Amazon.com: http://shrinkster.com/eq > Home page and blog: http://www.prologika.com/ > ----------------------------------------------------- > > "Rodrigo Sánchez" <rodrigoss@netshoreprogramming.com> wrote in message > news:%23p%23QEV5jEHA.704@TK2MSFTNGP09.phx.gbl... > > Ive written a security extension based on microsoft samples, i can call > the > > SOAP API and get authenticated but i dont know what to do so i can use > this > > authentication method using URL access, i need that since i want to be > able > > to keep the toolbar. > > > > > >
Rodrigo,
The typical integration scenario for Forms Autnentication and web-based URL reporting is: 1. You have a web app which authenticates the user on the server side. 2. The web app calls LogonUser SOAP API. 3. The web app utilizes the Report Viewer or another approach (static hyperlinks, client-side javascript, etc) to submit URL-based report requests. So, once the user is authenticated the we app just needs to submit report requests on the client side of the application. As long as the authentication ticket (cookie) is passed successfully, the reports should render fine subject to aurhorization restrictions. -- Hope this helps. ----------------------------------------------------- Teo Lachev, MCSD, MCT Author: "Microsoft Reporting Services in Action" Publisher website: http://www.manning.com/lachev Buy it from Amazon.com: http://shrinkster.com/eq Home page and blog: http://www.prologika.com/ ----------------------------------------------------- [quoted text, click to view] "Rodrigo Sánchez" <rodrigoss@netshoreprogramming.com> wrote in message news:%23p%23QEV5jEHA.704@TK2MSFTNGP09.phx.gbl... > Ive written a security extension based on microsoft samples, i can call the > SOAP API and get authenticated but i dont know what to do so i can use this > authentication method using URL access, i need that since i want to be able > to keep the toolbar. > >
Teo - Is it a requirement of Forms Authentication that the users who are
authenticated to the ASP.NET web app have credentials defined in reporting services? If not, how can you manage that user's rights? thanks [quoted text, click to view] "Teo Lachev" wrote:
> Rodrigo, > > The typical integration scenario for Forms Autnentication and web-based URL > reporting is: > 1. You have a web app which authenticates the user on the server side. > 2. The web app calls LogonUser SOAP API. > 3. The web app utilizes the Report Viewer or another approach (static > hyperlinks, client-side javascript, etc) to submit URL-based report > requests. > > So, once the user is authenticated the we app just needs to submit report > requests on the client side of the application. As long as the > authentication ticket (cookie) is passed successfully, the reports should > render fine subject to aurhorization restrictions. > > > > -- > Hope this helps. > > ----------------------------------------------------- > Teo Lachev, MCSD, MCT > Author: "Microsoft Reporting Services in Action" > Publisher website: http://www.manning.com/lachev > Buy it from Amazon.com: http://shrinkster.com/eq > Home page and blog: http://www.prologika.com/ > ----------------------------------------------------- > > "Rodrigo Sánchez" <rodrigoss@netshoreprogramming.com> wrote in message > news:%23p%23QEV5jEHA.704@TK2MSFTNGP09.phx.gbl... > > Ive written a security extension based on microsoft samples, i can call > the > > SOAP API and get authenticated but i dont know what to do so i can use > this > > authentication method using URL access, i need that since i want to be > able > > to keep the toolbar. > > > > > >
No credentials, just security policies in the report catalog. You would
typically use the Report Manager to set up your user security policy just like you would normally do with Windows authentication. Please note though that you don't have to register invividual users. Instead, if it makes sense, you can group users into application-defined roles outside of the Report Server. Then, in the Report Manager you will set up security policies based the roles not users for easier maintainance. Finally, in your CheckAccess overloads you need to take extra steps to find out which role the user belongs to and authorize the user based on the user role membership Does this confuse even more :-) --------------------------------------------- Teo Lachev, MVP [SQL Server], MCSD, MCT Author: "Microsoft Reporting Services in Action" Publisher website: http://www.manning.com/lachev Buy it from Amazon.com: http://shrinkster.com/eq Home page and blog: http://www.prologika.com/ --------------------------------------------- [quoted text, click to view] "ISGADMIN" <isgadmin@newsgroup.nospam> wrote in message news:9ABD45EE-390D-4272-A0AC-119114A0638E@microsoft.com... > Teo - Is it a requirement of Forms Authentication that the users who are > authenticated to the ASP.NET web app have credentials defined in reporting > services? If not, how can you manage that user's rights? > > thanks > > "Teo Lachev" wrote: > > > Rodrigo, > > > > The typical integration scenario for Forms Autnentication and web-based URL > > reporting is: > > 1. You have a web app which authenticates the user on the server side. > > 2. The web app calls LogonUser SOAP API. > > 3. The web app utilizes the Report Viewer or another approach (static > > hyperlinks, client-side javascript, etc) to submit URL-based report > > requests. > > > > So, once the user is authenticated the we app just needs to submit report > > requests on the client side of the application. As long as the > > authentication ticket (cookie) is passed successfully, the reports should > > render fine subject to aurhorization restrictions. > > > > > > > > -- > > Hope this helps. > > > > ----------------------------------------------------- > > Teo Lachev, MCSD, MCT > > Author: "Microsoft Reporting Services in Action" > > Publisher website: http://www.manning.com/lachev > > Buy it from Amazon.com: http://shrinkster.com/eq > > Home page and blog: http://www.prologika.com/ > > ----------------------------------------------------- > > > > "Rodrigo Sánchez" <rodrigoss@netshoreprogramming.com> wrote in message > > news:%23p%23QEV5jEHA.704@TK2MSFTNGP09.phx.gbl... > > > Ive written a security extension based on microsoft samples, i can call > > the > > > SOAP API and get authenticated but i dont know what to do so i can use > > this > > > authentication method using URL access, i need that since i want to be > > able > > > to keep the toolbar. > > > > > > > > > > > >
Don't see what you're looking for? Try a search.
|
June 2004
July 2004
August 2004
September 2004
October 2004
November 2004
December 2004
January 2005
February 2005
March 2005
April 2005
May 2005
June 2005
July 2005
August 2005
September 2005
October 2005
November 2005
December 2005
January 2006
February 2006
March 2006
April 2006
May 2006
June 2006
July 2006
August 2006
September 2006
October 2006
November 2006
December 2006
January 2007
February 2007
March 2007
April 2007
May 2007
June 2007
July 2007
August 2007
September 2007
October 2007
November 2007
| home · blog · groups | Questions? Comments? Contact the dn |