Role-based Web UI Restrictions
By default, a user has access to all elements in the Web UI. In order to introduce UI restrictions for users, the administrator must assign the respective UI role to the user along with any other required role populated with the server resource permissions. If none of the roles is assigned, the UI remains unrestricted. This is important to maintain backward compatibility.
The available UI roles are as described in the table:
Role | Role name | Description |
---|---|---|
Business User | business-user-role | This role has access to the Data Shop, can download Excel files, can connect Tableau. This role is restricted from seeing the Dashboard, Data Warehouses, Sources, Jobs, Code Editor, and Materialisation tabs, as well as from seeing the “Show data in the Code Editor” button |
SQL User | sql-user-role | This role has all permissions of a Business User and is allowed to see and use the Code Editor, but only This role is restricted from seeing and using other SQL statements, Materializations, Jobs, etc. |
SQL Developer | sql-developer-role | This role has all permissions of an SQL User and has full access to the Dashboard, Code Editor, Materializations, and Jobs |
Data Source Administrator | data-source-admin-role | This role has all permissions of an SQL Developer, can view/add/edit Data Sources, and has access to the Data Warehouses and Sources tabs |
User roles are available since v4.7