Skip to main content
Solved

Usage of MSSQL Row level security


Forum|alt.badge.img+5

Is it possible to make use of the MSSQL Row level security functionality in Thinkwise? If so, where can I configure this?

https://learn.microsoft.com/en-us/sql/relational-databases/security/row-level-security?view=sql-server-ver16

Best answer by Anne Buit

Hi Peter,

The Thinkwise Platform does not support security predicates as this functionality is pretty much covered by locked prefilters and data authorization prefilters that you can configure in the Software Factory.

Keep in mind that in many situations, the database is not accessed directly by the user via a login present on the database. Instead, the database is accessed via a database pool service account.

View original
Did this topic help you find an answer to your question?
This topic has been closed for comments

4 replies

Anne Buit
Community Manager
Forum|alt.badge.img+5
  • Community Manager
  • 637 replies
  • Answer
  • March 1, 2023

Hi Peter,

The Thinkwise Platform does not support security predicates as this functionality is pretty much covered by locked prefilters and data authorization prefilters that you can configure in the Software Factory.

Keep in mind that in many situations, the database is not accessed directly by the user via a login present on the database. Instead, the database is accessed via a database pool service account.


Forum|alt.badge.img+5
  • Author
  • Captain
  • 47 replies
  • March 1, 2023

Hi Anne,

Thanks for the reply. I understand that when a user opens it via Thinkwise, it will filter it through the filters.However, when, for example, I have a report in SSRS, it still will show the data, right?


Anne Buit
Community Manager
Forum|alt.badge.img+5
  • Community Manager
  • 637 replies
  • March 1, 2023

Yes, this is correct.

When developing the reports, you should take into account that the report is prepared under the database pool service account and that user-specific row-level authorization should be applied.

This also the case for object authorization - a report may use a table as data source that is not granted to the user requesting the report.


Forum|alt.badge.img+5
  • Author
  • Captain
  • 47 replies
  • March 1, 2023

Thanks Anne!

I might can do it in the Dynamic model, I'll give it a try :)


Cookie policy

We use cookies to enhance and personalize your experience. If you accept you agree to our full cookie policy. Learn more about our cookies.

 
Cookie settings