View Full Version : Role Definition in Pentaho

01-19-2007, 11:54 PM
Do we have a document which defines each Role in Pentaho > Admin and the level of privileges assigned to the respective role?

01-20-2007, 11:25 AM
Note that security is only a feature of Pentaho Professional BI Platform.

First, I would suggest taking a look at the current Security documentation (http://jira.pentaho.org:8080/confluence/display/PentahoDoc/Security+1.2+%28Professional+Feature%29).

There are only 3 roles that have special meaning in the platform. Note that the actual role names are configurable.

ROLE_ADMIN: The role for superusers of the platform.
ROLE_AUTHENTICATED: Granted to users that have logged in.
ROLE_ANONYMOUS: Granted to users who have not logged in.

The admin and anonymous roles (first and last above) are configured in pentaho.xml (http://jira.pentaho.org:8080/confluence/display/PentahoDoc/ACL+Voter+Details).The remaining roles that come defined in Pentaho Professional BI Platform are just examples.

Web resource (URL) authorization in Pentaho Professional 1.2 is controlled by ForceLoginFilter and ProPentahoSystem.isAdministrator() calls within JSPs. (In 1.2 web resource authorization, there are (1) admins and (2) everyone else.) In 1.2, it is the responsibility of each page to protect itself--ForceLoginFilter only requires login--it doesn't check roles. Because the platform still needs to check your role before displaying a page, ProPentahoSystem.isAdministrator() is used.

You have much finer control over who can access your solution repository objects (i.e. action sequences). Repository objects have associated access control lists (ACLs). These are set initially by the IAclPublisher (http://jira.pentaho.org:8080/confluence/display/PentahoDoc/ACL+Publisher+Details) and later can be managed by the Admin > Permissions interface.

02-09-2007, 06:03 AM
Thanks a lot...the information did help////

09-23-2008, 06:05 AM
Hi mlowery (http://forums.pentaho.org/member.php?u=20756),

sorry the links are no longer valid. Possible to update them? :o

09-23-2008, 06:08 AM
Thats old 1.2 stuff check out the wiki for updated 1.6 security information