Progress
Report Builder
User’s Guide


Table and Field-level Security

Because Report Builder queries are compiled by the database engine at the time a report is run, security is checked at that time, even though Progress’ security features are compile-time only. This means that the user must have read access to the tables and fields a report uses in order to run the report using Report Builder or Report Engine.

When Report Builder displays a list of tables in a database, it displays all tables, even if a user does not have read access to all of them. If the user makes an unauthorized choice, Report Builder displays an error. However, when Report Builder displays a list of fields in a table, it displays only those fields that the user has permission to access.

If the report is being run by a user who has different access privileges than the user who created the report, either of the following might occur:

If the user. . .
Then. . .
Does not have access to a table used by the report
Report Builder reports that it cannot access the table and lets the user specify different login information or select a different table.

Report Engine does the same, unless you set the RB-DISPLAY-ERRORS parameter to false.
Does not have access to one or more fields required by the report
Report Builder acts as if the field has been removed from the table. Using Report Builder, the user can still open the report and all inaccessible fields are removed from the report.

Report Engine does not process the report, regardless of the RB-DISPLAY-ERRORS setting.


Copyright © 2004 Progress Software Corporation
www.progress.com
Voice: (781) 280-4000
Fax: (781) 280-4095