The addition of Data Access Roles is awesome, but deeper integration would be great. A few places where I have noticed Data Access Roles do not apply:
- If a User is in a dashboard and then click on the email subscription option they see dashboards they do not have access to.
- If you have a page filter and data access role results in a selection in the page filter returning zero results, the nonzero option to hide the page filter does not work. The user will still see the option in the page filter but then get a blank report. Not only is that not user friendly, but those who see Data Access Roles as a security feature could perceive that as a serious hole in the security. Let’s say the data access role filters on column A. by filtering there are values in Column B that will never be in the users data set. It could be designed that the values filtered out are sensitive, but the user now sees them as the Data Role does not apply deeply enough to remove the options from the page filter.
- Add the ability to create a data access role that grants no access to data. This would be a very useful feature so you can start to stack roles. A role called client may grant access to some folders, but then client specific roles do the actual data limitations.
Thank you for taking the time to read feedback. The platform is really a wonderful tool and if these could be implemented it would greatly open up some use cases.