cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
BookmarkSubscribeRSS Feed
🔒 This topic is solved and locked. Need further help from the community? Please sign in and ask a new question.
harrison_david
Calcite | Level 5 harrison_david
Calcite | Level 5
Go to Solution

Row Level Security Filter

Posted 06-04-2020 06:36 PM (632 views)

I am trying to create a row-level security filter on a table that will look at who is logged in and find them in one of three columns (i.e. Director, Principal, Teacher). I can get a filter to work when looking at just one column but can't get it to work when looking across multiple columns.

 

Here's what works: upcase(Teacher)=upcase('SUB::SAS.Userid'). This will return only rows for the teacher who is logged in. 

 

Here's what doesn't work:

1. upcase('Director', 'Principal', 'Teacher') IN upcase('SUB::SAS.Userid')

2. upcase(Director, Principal, Teacher) IN upcase('SUB::SAS.Userid')

3. upcase(Director)=upcase('SUB::SAS.Userid') OR upcase(Principal)=upcase('SUB::SAS.Userid') OR upcase(Teacher)=upcase('SUB::SAS.Userid')

 

I need the filter to look at three columns for the SAS Userid of the person logged in. BTW, the SAS Userid will only be in one of the three columns. The same userid will not be found in multiple columns. 

 

I'm sure my issue has to do with my syntax. Any help would be greatly appreciated.

 

I am working in SAS Viya V.03.04 and in Environment Manager 3.3. 

0 Likes
1 ACCEPTED SOLUTION

Accepted Solutions
BrunoMueller
SAS Super FREQ BrunoMueller
SAS Super FREQ

Re: Row Level Security Filter

Posted 06-05-2020 06:43 AM (600 views)  |   In reply to harrison_david

The condition "upcase(director) = upcase('SUB::SAS.Userid') or upcase(principal) = upcase('SUB::SAS.Userid') or upcase(teacher) = upcase('SUB::SAS.Userid')" should work.

 

You can use the following code to see the actual values substituted  for SUB::SAS.Userid

/*
 * using accessControl.isAuthorizedTables
 * it will show the actual values substituted for
 * 'SUB::SAS.Userid'
 * 'SUB::SAS.IdentityGroups'
 */
proc cas;
  action accessControl.isAuthorizedTables /
    caslib="&caslib"
    permission="Select"
    tables={"&casTable."}
  ;
run;
quit;

View solution in original post

0 Likes
1 REPLY 1
BrunoMueller
SAS Super FREQ BrunoMueller
SAS Super FREQ

Re: Row Level Security Filter

Posted 06-05-2020 06:43 AM (601 views)  |   In reply to harrison_david

The condition "upcase(director) = upcase('SUB::SAS.Userid') or upcase(principal) = upcase('SUB::SAS.Userid') or upcase(teacher) = upcase('SUB::SAS.Userid')" should work.

 

You can use the following code to see the actual values substituted  for SUB::SAS.Userid

/*
 * using accessControl.isAuthorizedTables
 * it will show the actual values substituted for
 * 'SUB::SAS.Userid'
 * 'SUB::SAS.IdentityGroups'
 */
proc cas;
  action accessControl.isAuthorizedTables /
    caslib="&caslib"
    permission="Select"
    tables={"&casTable."}
  ;
run;
quit;
0 Likes

Ready to join fellow brilliant minds for the SAS Hackathon?

Build your skills. Make connections. Enjoy creative freedom. Maybe change the world. Registration is now open through August 30th. Visit the SAS Hackathon homepage.

Register today!
Discussion stats
  • 1 reply
  • ‎06-04-2020 06:36 PM
  • 633 views
  • 0 likes
  • 2 in conversation