Bypass RLS for Few application Roles

Question

On OAC we have 10 application Roles,

RLS data filters are implemented based on Initialization block fetches BU and Org details of user (:USER variable)

out of 10 application roles we want RLS bypassed for 5 application roles, all the data should be visible for the users of those 5 app roles.

Please help on how to achieve this, let me know if require any other information.

I have around 1000 data filters for all the application roles.

is it true —> If we dont apply Data filters they are unrestricted  —

If an application role is not assigned any data filter in the RPD, then users with only that role will not be restricted — they will see all data.

GayathriAnand-Oracle · Accepted Answer

You can setup filters at multiple levels - if you only have data filters set at application role level, then yes all data is visible to the user unless there is vpd set at db level. Authors could setup data filters at dataset level or even for individual workbooks. In your case , probably it makes sense to define a new app role which does not have bu and org data security, but has other data filters as needed and assign this new app role to the user?