Your SAS programs, embedded in web apps and elsewhere

Accessing SAS.IdentityGroups Information from SAS Stored Process

Reply
Contributor RSB
Contributor
Posts: 72

Accessing SAS.IdentityGroups Information from SAS Stored Process

Is there any Function that lists the IdentityGroups that the metadata user is a member. Something similar to

%let _metauser = %scan(%sysfunc(getoption(METAUSER)),1,'@');

SAS.IdentityGroups is available in Information maps, I want to know if a similar function is available in Stored process for applying Row level security?

Contributor RSB
Contributor
Posts: 72

Accessing SAS.IdentityGroups Information from SAS Stored Process

After Looking around, I could tell that there is no option available to access the SAS.IdentityGroups from the SAS Code. However as a work around for applying the Row level Security based on the groups we can apply the row-level security based on Groups at the information map level and access the information map from the SAS Stored Process.

RSB

Super Contributor
Posts: 356

Accessing SAS.IdentityGroups Information from SAS Stored Process

Couldn't you use the MDSec macros to determine the SAS groups the user is a member of?

Located in the Foundation Macros location.

Barry

Super Contributor
Posts: 326

Accessing SAS.IdentityGroups Information from SAS Stored Process

Hi,

I think it's possible if you know to how to use the SAS Open Metadata Interface.

Occasional Contributor
Posts: 14

Re: Accessing SAS.IdentityGroups Information from SAS Stored Process

Hello, I came across this thread trying to do something similar and, while I don't have a solution for my needs yet, I wanted to share this paper (http://support.sas.com/resources/papers/proceedings13/293-2013.pdf), which seems promising.

Trusted Advisor
Posts: 3,212

Re: Accessing SAS.IdentityGroups Information from SAS Stored Process

Check: SAS(R) 9.3 Guide to BI Row-Level Permissions (Level Permissions) It is the basics why and how to use.

SAS(R) 9.3 Guide to BI Row-Level Permissions (Secure Environment for BI Row-Level Permissions ) is about all te requirements.

This is only a functional approach when you think of your users being marionets and not for the more advanced miners and not for the real business analysts.

The mdsec macro usually is for platform admins the analyse and synchronise to AD/LDAP.

When you SP processes are isolatted for the marionets you can force the use of the information maps.

---->-- ja karman --<-----
Ask a Question
Discussion stats
  • 5 replies
  • 1164 views
  • 3 likes
  • 5 in conversation