TEIID31129 Invalid row based security permission filter

Solution Verified - Updated -

Issue

  • Created a role with column masking and receive below error:
{
    "error": {
        "code": "TEIID31129",
        "message": "TEIID31129 Invalid row based security permission filter on role Role2 for resource Providers.info."
    }
}

Environment

  • Red Hat JBoss Data Virtualization (DV) 6.4
  • Column masking in DV Data Role with Condition Column1="SSN"
  • Error in server.log:
09:19:24,520 ERROR [org.teiid.PROCESSOR] (Worker0_QueryProcessorQueue0) TEIID30019 Unexpected exception for request cc0CCNXQ0K1a.0: org.teiid.api.exception.query.QueryMetadataException: TEIID31129 Invalid row based security permission filter on role Role2 for resource Providers.info.
    at org.teiid.query.optimizer.relational.RowBasedSecurityHelper.resolveCondition(RowBasedSecurityHelper.java:204) [teiid-engine-8.12.16.6_4-redhat-64-2.jar:8.12.16.6_4-redhat-64-2]
    at org.teiid.query.optimizer.relational.ColumnMaskingHelper.maskColumn(ColumnMaskingHelper.java:106) [teiid-engine-8.12.16.6_4-redhat-64-2.jar:8.12.16.6_4-redhat-64-2]
    ......
Caused by: org.teiid.api.exception.query.QueryResolverException: TEIID31118 Element "SSN" is not defined by any relevant group.

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.

Current Customers and Partners

Log in for full access

Log In