Please provide some suggestions on how to secure birt. THe problem I have is that I thought that jira would proxy the birt request and report thru it, but it does not. It performs a redirect to the birt server with the parameters in the URL. So you need to have direct access to birt to use power report.
my jira instance is externally available on the internet, however, I do not want to put the birt tomcat instance on the internet since it does is not secured by user name and password. I would need to put birt on the internet so that my external users could run reports. I do not want to do that unless I can do it in a secure manner.