Post reply

Row-level security

  • December 26, 2014 at 10:27 am

    #314160

    We have a multi-tenant database with unique integer values (e.g. TenantID=4) assigned to each tenant. Data for all tenants is co-mingled in various tables, but can be logically segregated by this value.

    We'd like to allow tenant admins to create ad-hoc reports via the SSRS web interface, but only allow them to view data associated with their TenantID.

    Should we extract data for each tenant into their own database files and assign access to their unique files via security privileges, or is there a safe way to let them design reports against co-mingled tables, but have a top-level filter on their TenantID?

    Thanks for any insights you can provide!

  • December 26, 2014 at 11:03 am

    #1766494

    Could you create filtered views and give permissions over those views?

    I'm not sure how you're handling your security.

    Luis C.
    General Disclaimer:
    Are you seriously taking the advice and code from someone from the internet without testing it? Do you at least understand it? Or can it easily kill your server?

    How to post data/code on a forum to get the best help: Option 1 / Option 2

Viewing 2 posts - 1 through 1 (of 1 total)

You must be logged in to reply to this topic. Login to reply