circle-info
Watch Kaiya's Agent Mode auto plan multi-step, multi-join analysis.
Take me to the videoarrow-up-right
search

Row-level policy filters

Implement row-level security in embedded Tellius Vizpads using userId tokens and postMessage to enforce data access policies per user.

hashtag
Steps to apply row-level policy

The URL needs to be obtained from the Tellius app. To know how to get the URL, please refer this section.

Here's a sample URL:

http://domain/dashboard/Vizpad-ID?utm_source=ID

If row-level policy filters need to be applied, the connecting process is different from the process outlined in this section. In this case, userID needs to be included in the URL. The presence of userID in the URL indicates that the embedding app needs to send INITIALIZE_ROW_LEVEL_POLICY postMessage along with the required row-level filters to Tellius. Tellius will apply these filters to the Vizpad.

triangle-exclamation

If userID is present in the URL and the embedding app fails to send row-level filters, an error message "We did not get row-level policy" will be sent, and the Vizpad will not be rendered. If userID is not present in the URL, the required Vizpad will be rendered without applying any row-level policy filters.

hashtag
Connect with Tellius

  1. To connect with Tellius, the embedding app needs to send a message called INITIALIZE .

  2. Immediately after sending this, the embedding app sends a message INITIALIZE_ROW_LEVEL_POLICY with row-level policy filters.

  3. Tellius validates and responds with the message TELLIUS_INITIALIZED .

The structure of INITIALIZE and INITIALIZE_ROW_LEVEL_POLICY is given below:

 var telliusFrame ;
   document.querySelector("iframe").addEventListener("load", function() {
       telliusFrame = document.getElementsByTagName("iframe")[0].contentWindow;
       telliusFrame.postMessage('INITIALIZE', "*"); 
       telliusFrame.postMessage({
               actionType: "INITIALIZE_ROW_LEVEL_POLICY",
               rowLevelPolicies: [{
                       "rowLevelPolicy": {
                           "operator": "and",
                           "args": [
                               {
                                   "value": "Second Class",
                                   "field": "Ship_Mode",
                                   "condition": "="
                               }
                           ]
                       },
               },
               {
                       "rowLevelPolicy": {
                           "operator": "and",
                           "args": [
                               {
                                   "value": [
                                       "Wuhan"
                                   ],
                                   "field": "City",
                                   "condition": "in"
                               }
                           ]
                       },
               }],
           }, "*")   
   })

hashtag
Supported filters

Please refer to the Operators and Timeline filters.

hashtag
Sample code for timeline filter

hashtag
Sample code for custom range filter

If any Viz fails to be rendered, Tellius sends the following message to the embedding app.

PreviousAdding a Viz to a VizpadNextEmbedding Insights

Last updated

Was this helpful?