Example

This section will cover two configuration examples that will show use cases on implementing security policies.

Example 1: We have a view with the addresses of customers and we do not want users to see these columns.

Let's use the view address from the tutorial database.

  • Create tags location, zip_code, phone and map it accordingly as shown here:
  • Create a new Global Security Policy
  • Login into the Design Studio, with denodo_user credentials and execute the view address
  • Since now, when "denodo_user" access to views tagged with "locations" will see data masked for fields tagged with "location", "zip_code" or "phone_number". The same security policy can also be achieved by assigning the tags to particular role(when that role has many users).

Example 2: Create a Global Security Policy denying the execution for the user

Lets use the same view address from the tutorial database.

  • Create a new Global Security Policy
  • Login into the Design Studio, with denodo_user credentials and execute the view address
  • Since now, "denodo_user" do not have access to views tagged with "locations". The same security policy can also be achieved by assigning the tags to particular role(when that role has many users).

    With these examples, you have finished the Denodo Global Security Policies tutorial. Now it's time to continue exploring what the Denodo Platform can do for you, take a look at the official reference manuals and play with your own use cases.

Congratulations!