Skip to main content
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Register now to learn Fabric in free live sessions led by the best Microsoft experts. From Apr 16 to May 9, in English and Spanish.

Reply
sramsey
New Member

Implementing RLS for embedded analytics with an injected client ID

‎12-11-2017 07:51 AM

Hi,

 

We're trying to embed power BI into our core web app using azure, and had a previous incarnation in place using the old workspace collections (for demo purposes). We've now come back to this project with intentions to get it into production after developing a range of dashboards to find that way of embedding has been deprecated.

 

We've managed to get our reports exposed through the app using the azure Power BI Embedded resource, but we're now having issues with RLS.

 

Previously we had set a role to be [Client ID] = USERNAME(), and then set the username to be the ID of the client whose context the user is in. Now we're unable to do this because username is actually used in order to authenticate (so cannot be replaced by the client ID).

 

Is there any way to refine the dataset (securely) to a specific identity?

 

Thanks

Message 1 of 3
727 Views
0
1 ACCEPTED SOLUTION
Eric_Zhang
Employee
Employee

‎12-11-2017 10:56 PM
@sramsey wrote:

Hi,

 

We're trying to embed power BI into our core web app using azure, and had a previous incarnation in place using the old workspace collections (for demo purposes). We've now come back to this project with intentions to get it into production after developing a range of dashboards to find that way of embedding has been deprecated.

 

We've managed to get our reports exposed through the app using the azure Power BI Embedded resource, but we're now having issues with RLS.

 

Previously we had set a role to be [Client ID] = USERNAME(), and then set the username to be the ID of the client whose context the user is in. Now we're unable to do this because username is actually used in order to authenticate (so cannot be replaced by the client ID).

 

Is there any way to refine the dataset (securely) to a specific identity?

 

Thanks

@sramsey

I don't know where you get the idea the username is for authentication, in the case Embedding for your customers, you still assign username and role when generating the embedded token. See Use row-level security with Power BI embedded content.

The correlated REST API is GenerateToken.

View solution in original post

Message 2 of 3
818 Views
0
2 REPLIES 2
Eric_Zhang
Employee
Employee

‎12-11-2017 10:56 PM
@sramsey wrote:

Hi,

 

We're trying to embed power BI into our core web app using azure, and had a previous incarnation in place using the old workspace collections (for demo purposes). We've now come back to this project with intentions to get it into production after developing a range of dashboards to find that way of embedding has been deprecated.

 

We've managed to get our reports exposed through the app using the azure Power BI Embedded resource, but we're now having issues with RLS.

 

Previously we had set a role to be [Client ID] = USERNAME(), and then set the username to be the ID of the client whose context the user is in. Now we're unable to do this because username is actually used in order to authenticate (so cannot be replaced by the client ID).

 

Is there any way to refine the dataset (securely) to a specific identity?

 

Thanks

@sramsey

I don't know where you get the idea the username is for authentication, in the case Embedding for your customers, you still assign username and role when generating the embedded token. See Use row-level security with Power BI embedded content.

The correlated REST API is GenerateToken.

Message 2 of 3
819 Views
0
sramsey
New Member
In response to Eric_Zhang

‎12-12-2017 01:30 AM

Misunderstanding on our side, thanks for the help!

Message 3 of 3
698 Views
0

Helpful resources

Announcements
Microsoft Fabric Learn Together

Microsoft Fabric Learn Together

Covering the world! 9:00-10:30 AM Sydney, 4:00-5:30 PM CET (Paris/Berlin), 7:00-8:30 PM Mexico City

PBI_APRIL_CAROUSEL1

Power BI Monthly Update - April 2024

Check out the April 2024 Power BI update to learn about new features.

April Fabric Community Update

Fabric Community Update - April 2024

Find out what's new and trending in the Fabric Community.

View All