Maximo

 View Only

 Help Needed: Forcing Authentication Before Downloading Maximo Attachments via BIRT Report URLs

Gagan Deep Bansal's profile image
Gagan Deep Bansal posted Thu May 15, 2025 02:40 PM

Hello Community,

We’re currently embedding attachment file URLs in our BIRT reports to allow users to directly download Maximo attachments from the generated PDF—without needing to navigate to the specific record in Maximo. For example, a URL embedded in the report might look like this:



arduino












https://maximo.xyz.com/attachments/filename.txt

This link works as expected—it directly downloads the file when clicked.

Our requirement:
We’d like to prompt the user to log in (if not already authenticated) before the file is downloaded. Basically, instead of the download happening immediately, we'd like the Maximo login page to appear first (if needed).

Questions:

  • Is there a way to force authentication for such direct download links?

  • Are we perhaps using the wrong type of URL in the report?

  • Any recommended configuration or custom setup to meet this requirement?

Relevant system property settings:



ini












mxe.doclink.doctypes.defpath = /apps/IBM/doclinks/default
mxe.doclink.doctypes.topLevelPaths = /apps/IBM/doclinks
mxe.doclink.path01 = /apps/IBM/doclinks=https://maximo.xyz.com
mxe.doclink.securedAttachment = true

Any guidance or suggestions would be greatly appreciated!

Thanks in advance,
Gagan

Kushal Desai's profile image
Kushal Desai posted Mon May 26, 2025 09:33 AM

Hi Gagan,

The issue you are encountering typically stems from how your web server or authentication middleware is handling unauthenticated requests.  Can you confirm what happens if the user isn't authenticated ? Does clicking the file give a 404 error or 401 ? This is one of the secured practice to prevent URL enumeration. Your best course of action is to intercept the server response for unauthenticated requests to redirect the user to login page. 

Related Content