I am looking to embed the entire console, build a dataset that connects to a non relational database via Athena in Quicksight (via custom Lambda connector) and enforce RLS for the logged in user.
My question is - can I pass the user information to Athena, so that it can be passed to the data source at runtime? The data source / application has all the permissions defined, and ideally the application would handle the authorization or reject it if the user has no longer the required permissions.
The solution requires RLS to be defined in a separate dataset which I was hoping to avoid. I was thinking that the current APIs or other features might provide a simpler solution.
Hope everything is well with you! Just checking back in since this thread hasn’t received a response in a while. Was Brett’s reply helpful to you or were you able to find another solution yourself in the meantime? Please help the community by marking this answer as “Solution” or following up in general within the next 3 business days!
Since I haven’t received any further updates from you, I’ll treat this inquiry as complete for now. If you have any additional questions, feel free to create a new post in the community and link this discussion for context.