PDA

View Full Version : Role Definition in Pentaho



jthomas
01-19-2007, 11:54 PM
Do we have a document which defines each Role in Pentaho > Admin and the level of privileges assigned to the respective role?

mlowery
01-20-2007, 11:25 AM
Note that security is only a feature of Pentaho Professional BI Platform.

First, I would suggest taking a look at the current Security documentation (http://jira.pentaho.org:8080/confluence/display/PentahoDoc/Security+1.2+%28Professional+Feature%29).

There are only 3 roles that have special meaning in the platform. Note that the actual role names are configurable.

ROLE_ADMIN: The role for superusers of the platform.
ROLE_AUTHENTICATED: Granted to users that have logged in.
ROLE_ANONYMOUS: Granted to users who have not logged in.


The admin and anonymous roles (first and last above) are configured in pentaho.xml (http://jira.pentaho.org:8080/confluence/display/PentahoDoc/ACL+Voter+Details).The remaining roles that come defined in Pentaho Professional BI Platform are just examples.

Web resource (URL) authorization in Pentaho Professional 1.2 is controlled by ForceLoginFilter and ProPentahoSystem.isAdministrator() calls within JSPs. (In 1.2 web resource authorization, there are (1) admins and (2) everyone else.) In 1.2, it is the responsibility of each page to protect itself--ForceLoginFilter only requires login--it doesn't check roles. Because the platform still needs to check your role before displaying a page, ProPentahoSystem.isAdministrator() is used.

You have much finer control over who can access your solution repository objects (i.e. action sequences). Repository objects have associated access control lists (ACLs). These are set initially by the IAclPublisher (http://jira.pentaho.org:8080/confluence/display/PentahoDoc/ACL+Publisher+Details) and later can be managed by the Admin > Permissions interface.

jthomas
02-09-2007, 06:03 AM
Thanks a lot...the information did help////

beeai
09-23-2008, 06:05 AM
Hi mlowery (http://forums.pentaho.org/member.php?u=20756),

sorry the links are no longer valid. Possible to update them? :o

bugg_tb
09-23-2008, 06:08 AM
Thats old 1.2 stuff check out the wiki for updated 1.6 security information

http://wiki.pentaho.com/display/PentahoDoc/Security