Securing data in a BIRT iHub volume

All files stored in a BIRT iHub volume are subject to a standard security procedure, which restricts file access to authorized users. The iHub security model is based on user groups and privileges. The iHub administrator creates groups for various job functions in an organization, such as finance, marketing, and sales. The privileges, or permissions, to perform certain operations, such as read, write, and execute, are assigned to individual users and to user groups. Administrators assign users to groups. Through these groups, users acquire the privileges to perform particular operations on folders and files.

With this level of security, each user has access to files and folders on a need‑to‑know basis. For security at a more detailed level, BIRT iHub provides the following types of security:

Page-level security, which controls user access to particular sections or pages in a report. This security feature requires the Page Level Security option on iHub. To access pages of the published report, a user requires the Secure Read privilege. Read privilege on the report provides access to the entire document.

Data security, which controls user access to a particular set of data provided by a BIRT data object. This security feature is part of the core iHub functionality. To access data in the published data object, a user requires the Secure Read privilege. Read privilege on the data object provides access to the entire data object.

The security procedure that manages users and their access to files and folders in an iHub volume is implemented using one of BIRT iHub’s user management solutions. Page-level security and data security, however, require implementation in BIRT Designer Professional in addition to the licensed options for BIRT iHub.