Skip to main content
cancel
Showing results for 
Search instead for 
Did you mean: 

Find everything you need to get certified on Fabric—skills challenges, live sessions, exam prep, role guidance, and more. Get started

Reply
santiagomur
Resolver II
Resolver II

RLS LIVE CONNECTION

Hi, 

 

i have a problem with the config  of the rls, i already use rls and it works fine, but now the plan is to make 1 dataset and many reports, i try to use the same config that i use when is 1 report per dataset and doesnt works, i ont know if i need to make some changes on the config.

 

the config

#r "System.Web.Extensions"  
    using System.Configuration;  
    using System.Net;  
    using System.Text;  
    using System.Web.Script.Serialization;  
    using Microsoft.IdentityModel.Clients.ActiveDirectory;  
    using Microsoft.PowerBI.Api.V2;  
    using Microsoft.PowerBI.Api.V2.Models;  
    using Microsoft.Rest;  
      
    // Static Values      
    static string authorityUrl = ConfigurationManager.AppSettings["AUTHORITY_URL"];    
    static string resourceUrl = ConfigurationManager.AppSettings["RESOURCE_URL"];      
    static string apiUrl = ConfigurationManager.AppSettings["POWERBI_API_URL"];  
    static string clientId = ConfigurationManager.AppSettings["PBIE_CLIENT_ID"];
    static string username = ConfigurationManager.AppSettings["PBIE_USERNAME"];
    static string password = ConfigurationManager.AppSettings["PBIE_PASSWORD"];      
    static string defaultUser = "";
    static string defaultRol = "USUARIO";
    static string defaultReport = "";
    static string defaultGroup = "";
    static string defaultDashboard = "";
    static string defaultDataset = "";
      
    public static async Task<HttpResponseMessage> Run(HttpRequestMessage req, TraceWriter log)  
    {  
		log.Info( string.Format("Dump request:\n {0}",req.ToString()));
        
        PostData userData = new PostData();

        //Recover req PostData
        PostData jsonData = await req.Content.ReadAsAsync<PostData>();
        if (jsonData != null){
           log.Info ("JsonReq: "+ jsonData.ToString());
           userData = prepareUserData(jsonData);
        } else {
            //Default values
            userData = prepareUserData(new PostData());
        }
        log.Info("userData: " + userData.ToString());


        // Authenticate with Azure Ad > Get Access Token > Get Token Credentials  
        var credential = new UserPasswordCredential(username, password);  

        var authenticationContext = new AuthenticationContext(authorityUrl);  
        var authenticationResult = await authenticationContext.AcquireTokenAsync(resourceUrl, clientId, credential);  
        string accessToken = authenticationResult.AccessToken;  
        var tokenCredentials = new TokenCredentials(accessToken, "Bearer"); 
        log.Info ("Llega");
        // PowerBI method  
        using (var client = new PowerBIClient(new Uri(apiUrl), tokenCredentials))  
        {  
            // Embed URL
            GenerateTokenRequest generateTokenRequestParameters;
            generateTokenRequestParameters = new GenerateTokenRequest(accessLevel: "view");  
            string embedUrl;


            /////////////////////////////// DASHBOARD ///////////////////////////////
            if (!string.IsNullOrWhiteSpace(userData.dashboardId)) 
            {
                embedUrl = "https://app.powerbi.com/dashboardEmbed";
                log.Info ("Llega1");
                var tokenResponse = await client.Dashboards.GenerateTokenInGroupAsync(userData.groupId, userData.dashboardId, generateTokenRequestParameters);
                
                // JSON Response  
                EmbedContent data = new EmbedContent();  
                data.EmbedToken = tokenResponse.Token;  
                data.EmbedUrl = embedUrl;  
                data.ReportId = userData.dashboardId;
                data.DashboardId = userData.dashboardId;

                JavaScriptSerializer js = new JavaScriptSerializer();  
                string jsonp = "callback(" +  js.Serialize(data) + ");";
                log.Info(jsonp);

                // Return Response  
                return new HttpResponseMessage(HttpStatusCode.OK)   
                {  
                    Content = new StringContent(jsonp, Encoding.UTF8, "application/json")  
                }; 
            }

            else
            /////////////////////////////// REPORT ///////////////////////////////
            {
                embedUrl = "https://app.powerbi.com/reportEmbed";
                log.Info ("Llega2");
                Report report = client.Reports.GetReportInGroup(userData.groupId, userData.reportId);  
                var result = new EmbedConfig();
                log.Info(embedUrl);
                
                string allParameter = String.Concat(userData.userID,";",userData.companyY2MX,";",userData.environment,";",userData.mediatorCode,";",userData.commercialCode); 
                log.Info("allParameter: " + allParameter);
                
                result = new EmbedConfig { Username = allParameter, Roles = userData.roles};
            
                var datasets = await client.Datasets.GetDatasetByIdInGroupAsync(userData.groupId, report.DatasetId);
                log.Info("DataSet: " + report.DatasetId);
                result.IsEffectiveIdentityRequired = datasets.IsEffectiveIdentityRequired;
                result.IsEffectiveIdentityRolesRequired = datasets.IsEffectiveIdentityRolesRequired;
                log.Info("Dataset IsEffectiveIdentityRequired: " + result.IsEffectiveIdentityRequired);
                log.Info("Dataset IsEffectiveIdentityRolesRequired: " + result.IsEffectiveIdentityRolesRequired);

                //GenerateTokenRequest generateTokenRequestParameters;
                log.Info ("Llega3");
                if (!string.IsNullOrWhiteSpace(userData.userID))
                {
                    if (result.IsEffectiveIdentityRolesRequired==true)
                    {   
                        var rls = new EffectiveIdentity(allParameter, new List<string> {  report.DatasetId });
                        if (!string.IsNullOrWhiteSpace(userData.roles))
                        {
                            var rolesList = new List<string>();
                            rolesList.AddRange(userData.roles.Split(','));
                                            
                            rls.Roles = rolesList;                        
                        }
                        // Generate Embed Token with effective identities.
                        generateTokenRequestParameters = new GenerateTokenRequest(accessLevel: "view", identities: new List<EffectiveIdentity> { rls });
                        log.Info("Token Request with EffectiveIdentity");
                        }
                    else
                    {
                        // Generate Embed Token for reports without effective identities.
                        generateTokenRequestParameters = new GenerateTokenRequest(accessLevel: "view");
                        log.Info("Token Request without EffectiveIdentity");
                    }
                }
                else
                {
                    // Generate Embed Token for reports without effective identities.
                    generateTokenRequestParameters = new GenerateTokenRequest(accessLevel: "view");
                    log.Info("Token Request without EffectiveIdentity");
                }
                log.Info("Token Request " + userData);
                log.Info("generateTokenRequestParameters " + generateTokenRequestParameters);



                var tokenResponse = await client.Reports.GenerateTokenInGroupAsync(userData.groupId, userData.reportId, generateTokenRequestParameters);
2 REPLIES 2
nickyvv
Community Champion
Community Champion

Hi @santiagomur.

 

I see a lot of code, but I'm not sure where to look at? What exactly is the issue? Is there an error, or is RLS not working?

Please be as specific as you can when describing the problem, that helps us to understand it better.



Did I answer your question? Mark my post as a solution!

Blog: nickyvv.com | @NickyvV


Hi, 
when i use this config on a normal 1 to 1 report dataset is fine, but now i try many report to one dataset and the rls dont works. 

 

 

string allParameter = String.Concat(userData.userID,";",userData.companyY2MX,";",userData.environment,";",userData.mediatorCode,";",userData.commercialCode); 
                log.Info("allParameter: " + allParameter);
                
                result = new EmbedConfig { Username = allParameter, Roles = userData.roles};
            
                var datasets = await client.Datasets.GetDatasetByIdInGroupAsync(userData.groupId, report.DatasetId);
                log.Info("DataSet: " + report.DatasetId);
                result.IsEffectiveIdentityRequired = datasets.IsEffectiveIdentityRequired;
                result.IsEffectiveIdentityRolesRequired = datasets.IsEffectiveIdentityRolesRequired;
                log.Info("Dataset IsEffectiveIdentityRequired: " + result.IsEffectiveIdentityRequired);
                log.Info("Dataset IsEffectiveIdentityRolesRequired: " + result.IsEffectiveIdentityRolesRequired);

                //GenerateTokenRequest generateTokenRequestParameters;
                log.Info ("Llega3");
                if (!string.IsNullOrWhiteSpace(userData.userID))
                {
                    if (result.IsEffectiveIdentityRolesRequired==true)
                    {   
                        var rls = new EffectiveIdentity(allParameter, new List<string> {  report.DatasetId });
                        if (!string.IsNullOrWhiteSpace(userData.roles))
                        {
                            var rolesList = new List<string>();
                            rolesList.AddRange(userData.roles.Split(','));
                                            
                            rls.Roles = rolesList;                        
                        }
                        // Generate Embed Token with effective identities.
                        generateTokenRequestParameters = new GenerateTokenRequest(accessLevel: "view", identities: new List<EffectiveIdentity> { rls });
                        log.Info("Token Request with EffectiveIdentity");
                        }

 

 





 

Helpful resources

Announcements
Sept PBI Carousel

Power BI Monthly Update - September 2024

Check out the September 2024 Power BI update to learn about new features.

September Hackathon Carousel

Microsoft Fabric & AI Learning Hackathon

Learn from experts, get hands-on experience, and win awesome prizes.

Sept NL Carousel

Fabric Community Update - September 2024

Find out what's new and trending in the Fabric Community.

Top Solution Authors