Documentation

Security Rights

In this section you can configure which data sources the user can access. Additionally, you can hide some tables for the editors in the analyzer and even apply mandatory filters for the analyzer or dashboards. These settings should only be used if all your users (clients) access the same data source, via column / row level security.

 

"securityRights": {
    "includeAllDatasources": false,
    "datasources": [
      {
        "name": "sales",
        "hiddenTables": [
          "access_rights"
        ],
        "mandatoryFilters": [
          {
            "tableName": "Projects",
            "columnName": "ID",
            "values": [
              "ididid1",
              "ididid2"
            ]
          },
        ]
      },
      {
        "name": "marketing",
        "hiddenTables": [],
        "mandatoryFilters": [
          {
            "tableName": "User",
            "columnName": "id",
            "values": [
              7777
            ]
          }
        ]
      }
    ]
  }

 

This section is mostly for editors to allow some restrictions on the admin UI.

 

includeAllDatasources: If this flag is set to false, it means the user only can only access the data sources provided in the token. If the flag is true, he can use the other data sources without any restrictions.

 

datasources: A List of the data sources that the user can use. If the data source is not in this list and the previous flag is false, all charts from that data source will stop working. Moreover, the data source will not be shown in the connection screen.

 

hiddenTables: The tables listed here will disappear for the user in the analyzer.

 

mandatoryFilters: This feature should be used really carefully. It means each time the editor drags and drops a field in the analyzer to display values, creates a filter, or executes a chart in the analyzer or on a dashboard, the software will join to the table to apply the mandatory filter. In case it is not possible to join we don’t display any data. This means that queries can be slower because they must always join and apply these values. This config should only be present for Usertype=Editor, as admins have access to everything, and viewers are limited to dashboards and cannot create new charts at all.