Focal Point
[CLOSED] Restricting WebApplications from being modifiable in DS

This topic can be found at:
https://forums.informationbuilders.com/eve/forums/a/tpc/f/7971057331/m/1241069552

November 06, 2007, 08:03 AM
hammo1j
[CLOSED] Restricting WebApplications from being modifiable in DS
Folks

Under each environment in ds there are 3 areas displayed

1. Data servers (apps on wf server)
2. Managed Reporting (basedir on wf client)
3. Web Applications (apps on wf client)

We can restrict

1. Using APPLOCK
2. Using the MRE permissions this is not openable for anyone with less privilege than DEVELOPER.

However I dont see a way of restricting access to the Web Applications and currently ds gives them unrestricted access regardless of the settings for 1. and 2.

Does anyone know of a way of restricting or stopping access to web applications?

The only thing I could find in help was that APPROOT in CGIVARS.WFS needs to point to the application directory so would it be possible to disable ds access that way? I would think this a risky strategy since it might affect those users when doing non ds stuff.

Any suggestions gratefully accepted.

This message has been edited. Last edited by: Kerry,


Server: WF 7.6.2 ( BID/Rcaster) Platform: W2003Server/IIS6/Tomcat/SQL Server repository Adapters: SQL Server 2000/Oracle 9.2
Desktop: Dev Studio 765/XP/Office 2003 Applications: IFS/Jobscope/Maximo
November 06, 2007, 08:19 AM
Tom Flynn
Hey John,

From a DS standpoint, USER PROFILES on the reporting server , overriding EDASPRF with
APP PATH restricting DOMAINS is the only way I know.
So at 1 site, I only had access to FINANCIAL Domain, another only had HUMAN RESOURCES, etc.

Maybe others have another route/process/idea, look forward to their contribution...


EDIT: I put this here, don't know WHY???, but was referring to John's earlier post on DS...OOOPPPSSS!!!

This message has been edited. Last edited by: Tom Flynn,


Tom Flynn
WebFOCUS 8.1.05 - PROD/QA
DB2 - AS400 - Mainframe
November 06, 2007, 08:43 AM
Tony A
John,

Purely off the top of the head - the Web Applications is the ibi/app folder on the Client Server, so what about looking at restricting access to user groups via group policy on Win 2003? Might not be workable but it's a thought....

T


In FOCUS
since 1986		WebFOCUS Server 8.2.01M, thru 8.2.07 on Windows Svr 2008 R2  
WebFOCUS App Studio 8.2.06 standalone on Windows 10 
August 12, 2010, 04:51 AM
Castillo Pierre
Hello hammo1j,

- Have you been able to figure out a way of restricting access to the Web Applications ?

This message has been edited. Last edited by: Castillo Pierre,


Pierre CASTILLO
----------------
Prod: WebFOCUS v81.05 on Linux
Dev : WebFOCUS v82.06 on Linux
August 12, 2010, 09:44 AM
Francis Mariani
Pierre,

Bonjour de Toronto!

We have a three-tier environment and I have found that with using APPLOCK, the Web Applications folders do get restricted if the folder names ARE THE SAME as the App folders on the reporting server.

We use MRE authentication in Dev Studio with User Profiles on the WebFOCUS (reporting) server. This scheme barely hold together.


Francis


Give me code, or give me retirement. In FOCUS since 1991

Production: WF 7.7.05M, Dev Studio, BID, MRE, WebSphere, DB2 / Test: WF 8.1.05M, App Studio, BI Portal, Report Caster, jQuery, HighCharts, Apache Tomcat, MS SQL Server