Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

  • Congratulations strongm on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Pass credentials in URL for Infoview 2008

Status
Not open for further replies.

allyson1

Technical User
Apr 5, 2009
27
AU
I would like to pass username and password credentials in the url when starting Crystal Reports Server 2008 Infoview.
The URL to start Infoview is:

The working URL to start Infoview for Crystal Enterprise Version XI was:

This does not work:

Infoview comes up with the logon screen, but does not enter in the username or password as directed in the URL.
Does anyone have a suggestion as to what the URL needs to be to pass the username and password.
Thanks
 
I have resolved this issue by using the following URL:

BusinessObjects InfoView&prodName=BusinessObjects&sessionCookie=true&backUrl=/listing/main.do&backUrlParents=1&backContext=/InfoViewApp&persistCookies=true&useLogonToken=false&service=/InfoViewApp/common/appService.do&appKind=InfoView

So when user BCS with a password of abcd logs onto our portal, they click on a link to view their crystal reports, which takes them automatically to infoview, seeing the folders and reports based on the security settings for BCS.
 
The thing you need to be aware of when you use this technique is that you are passing the password through as plain text. Anyone can read it.

If your website for InfoView is only available on your network and not from outside of your company, this is only an issue if you're concerned that people might try to get into reports they don't have access to. However, if your site is available through the Internet, then it's fairly easy for hackers to parse out this URL and get access to your system.

-Dell

A computer only does what you actually told it to do - not what you thought you told it to do.
 
Hi hilfy,

Thanks for your post. Our environment is such that we have a portal where our customers log on. The username and password they use to logon to the portal is then updated into the URL, which is a 'tab' shown on the portal, and that is what connects then to Infoview. The URL is not seen or accessible to anyone. The URL with the username and password is shown in this thread purely to test out the connection with the credentials manually inserted.

And so it all works and is a very secure logon.
 
Status
Not open for further replies.

Part and Inventory Search

Sponsor

Back
Top