Skip to main content

Privacera Documentation

With default Value - GET_UG_ATTR_NAMES_Q(‘default_value’)

Description: returns the list of attributes mapped to the user groups (with each attribute name in single quotes) to which the querying user is a member. If the user is not a member of any group or if the group to which the user is a member does not have any attributes, ‘default_value’ will be returned. Can be used for comparison of character values.

Example:

  • The user joe is a member of the groupsadmin(attribute: access=auditor) andmanager (attribute: location=NY, access=admin). GET_UG_ATTR_NAMES_Q(‘none’) will return‘access’,‘location’.

  • The user is a member of groups admin and manager (both the groups don’t have any attributes),GET_UG_ATTR_NAMES_Q(‘none’) will return‘none’.

  • The user is not a member of any group,GET_UG_ATTR_NAMES_Q(‘none’) will return‘none’.

Usage: can be used in:

  • Row Level Filter Policies - row level filters expressions

  • Example:location in (${{GET_UG_ATTR_NAMES_Q(‘none’)}})

  • Masking policy - Custom masking condition

  • Example:CASE WHEN location in (${{GET_UG_ATTR_NAMES_Q(‘none’)}}) THEN {col} ELSE '0' END

  • Policy conditions:

  • Example: GET_UG_ATTR_NAMES_Q('dept')=='\’location\''