on 06-02-2013 5:45 PM
Hi,
I want to provide a report in a DHTML viewer. This report should filter the data to let the user see only the data he should see.
Therefore I use a record selection formula USER_ID = {?USER_ID}.
This parameter is hidden in the parameter panel and set by the servlet programatically.
However, I am not sure, if this is secure enough because I don't know if a user can manipulate the post-back of the report viewer to change the value of this parameter.
Is this possible, even if the parameter is hidden in the parameter panel?
Should I use a formula instead, which cannot be changed by a user for sure?
Thanks in advance,
rgrill
Hi Ruben,
This space is dedicated for CR Design issues.
You may try posting to the SAP Crystal Reports, version for Visual Studio space.
-Abhilash
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
85 | |
10 | |
10 | |
9 | |
6 | |
6 | |
6 | |
5 | |
4 | |
3 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.