Skip to main content
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Register now to learn Fabric in free live sessions led by the best Microsoft experts. From Apr 16 to May 9, in English and Spanish.

Reply
Anonymous
Not applicable

Dynamic Row level security for multiple column values

‎05-13-2019 04:12 AM

Hi All,

 

Trying to create a scenario based on the issue i am facing.

 

I have a table with many columns. There are 2 column values based on which i would like to create dynamic RLS

1. Category , column values ( Fruit, Vegetable)

2. Name, column values ( Orange, Apple, Tomato)

 

If i need to create a static RLS for the above scenario, i will have to create 5 roles and add users to respective roles so that they could see only that data on login.

 

Assuming i had many more names it would be a task to create more roles. Is there a way i can apply Dynamic RLS to this situation?

 

Thanks in advance.

 

Regards,

Sandy

Labels:
Message 1 of 6
4,561 Views
0
5 REPLIES 5
v-shex-msft
Community Support
Community Support

‎05-13-2019 07:56 PM

HI @Anonymous ,

I think you need to grouping these table records and create a bridge table to link and mapping those tables. (category, name)
After these, you can create relationship from user table to bridge table and enable RLS based on username function.(notice: turn on 'apply security filter in both direction' option)

RLS with UserName()

Regards,

Xiaoxin Sheng

Community Support Team _ Xiaoxin
If this post helps, please consider accept as solution to help other members find it more quickly.
Message 2 of 6
4,544 Views
0
Anonymous
Not applicable
In response to v-shex-msft

‎05-13-2019 10:32 PM

So would the Bridge table be something like this. and to which column would i create a relationship to?

 

Column 1 Column 2

Fruit          User 1

Vegetable User 2

Apple        User 3

Orange     User 3

Message 3 of 6
4,532 Views
0
v-shex-msft
Community Support
Community Support
In response to Anonymous

‎05-21-2019 01:05 AM

HI @Anonymous ,

Can you please provide the some sample data for these two tables? 

Regards,

Xiaoxin Sheng

Community Support Team _ Xiaoxin
If this post helps, please consider accept as solution to help other members find it more quickly.
Message 4 of 6
4,516 Views
0
Anonymous
Not applicable
In response to v-shex-msft

‎05-21-2019 01:50 AM

Hi @v-shex-msft ,

 

Thanks for checking on this. Below is the scenario for dynamic RLS

 

Bill should have access to all Category that has Vegetable

Mark should have access to all Category that has Fruit

Tom must have access to all Name that has Cabbage

Steve must have access to all Name that has Tomato

 

I was unable to attach the sample file so pasting below

 

EIDCategoryName
1VegetableCabbage
2FruitApple
3VegetableBrinjal
4FruitOrange
5VegetableBeans
6FruitBanana
7VegetablePotato
8FruitKiwi
9VegetableCabbage
10FruitApple
11VegetableCabbage
12VegetableCabbage
13VegetableCabbage
14VegetableTomato
15VegetableTomato

 

Message 5 of 6
4,512 Views
0
v-shex-msft
Community Support
Community Support
In response to Anonymous

‎05-28-2019 12:17 AM

HI @Anonymous ,

You can refer to following step to mapping these tables.

Steps:

1. Create 'User Category' table with 'User id' and category(vegetable,fruit).
2. Create 'Category Name' table with category and names.
3. Extract category values from above two table and remove duplicate records to create 'Category' table with unique category values.
4. Use 'Category' field to link to 'User Category', 'Category Name' based on category field.
5. Use 'user id' field to link 'User' table and 'User Category' Table.
6. Setup RLS on category table and use current username to find out correspond 'user id', then use it to lookup category value from 'user category' table.

Regards,

Xiaoxin Sheng

Community Support Team _ Xiaoxin
If this post helps, please consider accept as solution to help other members find it more quickly.
Message 6 of 6
4,500 Views

Helpful resources

Announcements
Microsoft Fabric Learn Together

Microsoft Fabric Learn Together

Covering the world! 9:00-10:30 AM Sydney, 4:00-5:30 PM CET (Paris/Berlin), 7:00-8:30 PM Mexico City

PBI_APRIL_CAROUSEL1

Power BI Monthly Update - April 2024

Check out the April 2024 Power BI update to learn about new features.

April Fabric Community Update

Fabric Community Update - April 2024

Find out what's new and trending in the Fabric Community.

View All