Preset Feature Feedback
What is the problem or goal the end user is trying to solve or accomplish?
The user needs to configure roles such that a Data Access Role (DAR) granting unfiltered access to a dataset or schema takes precedence over another DAR that enforces Row-Level Security (RLS) rules. This would allow users to have unrestricted access to a dataset while still granting filtered access to other users via RLS. Currently, RLS filters are always applied, even when the user belongs to a role with unfiltered access, leading to unintended restrictions.
How are they solving it currently?
The customer is unable to achieve this desired behavior directly within Superset. They would need to reconfigure roles to isolate users into distinct groups, ensuring no overlap of DARs with conflicting permissions. This is inefficient and introduces complexity into role management.
What is the recommended solution by the Customer?
The customer recommends introducing functionality to allow prioritization of DARs, such that roles granting unrestricted access can override roles applying RLS filters when there are conflicts. Alternatively, an option could be provided to set precedence between roles or explicitly define whether RLS should apply when conflicting roles are assigned.
