We're implementing DBA security here. I have some tables where user A can have full access, but user B has no access. If user B starts InfoAssist, in the list of available tables that pops up, the restricted table appears in the list. However, when he tries to open it he gets the security error, which is correct. I would prefer that the restricted table not even show up on his list. Is there a way to do that? Thanks.This message has been edited. Last edited by: Kerry,
Webfocus 8 Windows, Linux
August 16, 2010, 02:08 PM
Håkan
Mike
I don't think it's possible, because I assume WF is only looking for the .mas files, never at the data itself. I suppose you could separate the .mas files into different dirs and set the APP PATH differently for different users.
You can control which master files are displayed for a user in InfoAssist using the following technique: TM4550 Customizing the Display of Applications, Files, Fields, and Field Descriptions in WebFOCUS Development Tools
using a built-in global variable &&IBI_IF_FILE which will eventually refer to filtering statement on the list of master files rendered for a user in infoassist I checked it in 7611 and it works
Thanks for the idea, but it sounds like that would be a maintenance nightmare. I was hoping that the tools would respect the DBA security when they display the list of available files.
Webfocus 8 Windows, Linux
August 17, 2010, 04:54 PM
FrankDutch
interesting solution we where looking at this too
Frank
prod: WF 7.6.10 platform Windows, databases: msSQL2000, msSQL2005, RMS, Oracle, Sybase,IE7 test: WF 7.6.10 on the same platform and databases,IE7
August 18, 2010, 04:13 AM
WF_IL
Hi Regarding Maintenance: if you create "dynamic" dba files, meaning that you manage all security settings in an external relational table , for example, then you could also parameterize and create "on the fly" the excluded master files list from the same source or just manage it in a seperate relational table.