保护BIRT的报告 [英] Protect BIRT's report

问题描述

我可以阻止用户从我建立的网站打开BIRT报告.但是考虑到报表的链接仍在浏览器的历史记录中，例如，该计算机上的任何用户仍然可以通过从历史记录中调用链接来打开报表.

I can prevent users opening BIRT report from website that I built. But considering the report's link still in browser's history, any user from this computer still able to open the report by calling the link from history, for instance.

在用户关闭报表后，如何防止BIRT报表的链接留在浏览器中?因此，打开报告的唯一方法是从网站上.

How to prevent the link of BIRT's report stays in the browser, after user close the report? So the only way to open the report is from the website.

或者有人可以通过其他更好的方法来实现相同的目标?就像在BIRT中显示用户名和密码一样，在用户可以使用报表参数之前?

Or maybe someone has other better method to achieve the same goal? Like showing a user name and password in BIRT, before user can use the report parameter?

推荐答案

使用密码参数的最简单方法.

The easiest way to use a password parameter.

select <feilds>


Where 'password' = ?

使用文本框参数，当用户运行报表时，他们在文本框中输入密码"，否则SQL不会返回结果.

Use a text box parameter, and when the user runs the report they enter "password" in the text box or the SQL does not return results.

SQL不区分大小写，因此您的密码不区分大小写.同样，这是一个非常低的安全措施.仅适合防止随意进入.

SQL is not case sensitive so, your password would not be case sensitive. Also this is a very low security measure. It is only appropriate to prevent casual access.

JavaScript区分大小写，因此您可以编写一些内容(例如查询中的过滤器)，其中Pa $$ worD位于JavaScrip变量中，并与之进行区分大小写.

JavaScript is case sensitive, so you could write something (like a filter on the query) where your Pa$$worD is in a JavaScrip variable and compare to that for case sensitivity.

开源 BIRT 并非旨在提供对数据的安全"访问.如果必须提供真正的数据安全性，则需要在客户端可以访问BIRT之前进行此操作.

Open source BIRT is not intended to provide "Secure" access to data. If you must provide real security of the data, you need to do it before the client has access to BIRT.

这篇关于保护BIRT的报告的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！