BestPracticeRules icon indicating copy to clipboard operation
BestPracticeRules copied to clipboard
verified publisher icon TabularEditor

Detect conflict between RLS and OLS

Open otykier opened this issue 8 years ago • 0 comments

From @marcosqlbi on November 8, 2017 2:30

If a user belongs to two roles applying filters on the same table with row level security (RLS) in one role, and object level security in another role (OLS), the connection is not possible by design.

you can’t have RLS and OLS on the same table in different roles – that would prevent the connection from being opened

A Best Practices Analyzer rule could identify the presence or roles applying different filter types (RLS/OLS) over the same tables. If the developer knows that this will never happen (because a user cannot belong to two incompatible roles), there should be a way to disable the BPA (what could we use for that? Special annotations?).

Copied from original issue: otykier/TabularEditor#113

otykier avatar Nov 08 '17 07:11 otykier