This content has been marked as final. Show 2 replies
Basic idea is:
You'll have to create group filters using session variables on those facts ... . Of course, you need to be ready with your variables (row-wise) of session initialization block to get restrict values..
see these to get an idea on this:
i'm not specific to your requirement.. but this is the way to implement data level security in obiee
Its better to apply security user level and group level.
For example this is your case....
Shouldnt place officers in a single group-
If you place all officers in single group say officersgroup,you cannot apply data level security to consultant individualy because if an officer in officersgroup logs in he can view data of consultants who is not under him because officers group contains all officers who will have acces to that consultant.
So should spilt officers.
Here we can apply datalevel security to consultant1 data assignign officer1,in the same way consultant2 data assigning officer 1.
Shouldnt place all consultants in a single group,should make multiple consultantgroups based on officers.
For example officer1-consultant1,consultant2,consultant3,consultant4,so here we make a group for consultants who are under a single officer say consultantgroupoff1
officer2-consultant5,consultant6,consultant7,consultant8,so here make another group for consultant who are under a single officer say consultantgroupoff2
So here we can apply datalevel security to officer1 data by assigning whole group ie,consultantgroupoff1 to his data and in the same way assign consultantgroupoff2 to officer2 data.
Check this for datalvel security... http://varanasisaichand.blogspot.com/2010/08/dataobjectcolumn-level-security-in.html