Securize JNDI database connections

Question

We have almost 15 diferent datasources, related to diferent services. Acord to development/requirements convenience, all of them are standard JNDI connections.

E.g. Three of them: News, projects and accounting.

We also have several user roles, with diferent access rights. E.g. everyone can see News data, but only project managers can see projects data, and so on.

Everyone can upload it`s own reports or create custom dashboards, so just knowing JNDI names, you can access whole server data with no restriction... We can't find how to restrict datasource acces by role, how do you think it can be done?

#Ctools
#Pentaho

Answer

Have you had a look at the multi tenancy stuff?

This is the right area to look into though. maybe you can find some associated procedures/calls in this area to overwrite with classes that return only the datasources that user should be able to see.

https://help.pentaho.com/Documentation/7.1/0R0/070/Multi-Tenancy

Pentaho

Securize JNDI database connections

Related Content

JNDI connection

CTool Heat Map colour

JNDI Connections in PDI 8.2 CE

RE: JNDI Connections in PDI 8.2 CE

How create a datasource dynamic in CDE from javascript?