This example is a variation
on the preceding example. Instead of using a general prefilter, which
applies universally to all requesting users, this example implements
the SAS.IdentityGroups filter as an authorization-based prefilter.
With this approach, you can establish different logic for different
groups of users. In this example, we introduce a group of executives
who should not be subject to the SAS.IdentityGroups filtering. Instead,
members of the Executives group should see all of the data.
The following table
summarizes the strategy:
Example: Two Classes of Access
Access Class (User Group)
|
|
|
|
|
|
The first steps, mapping
users to data and creating the information map and filter are identical
to the preceding example. However, instead of editing the information
map’s properties to assign the filter as a general prefilter,
complete the steps in the following topics.