View the original community article here
Last tested: Nov 19, 2020
No, access grants do not have cascading restrictions. Therefore with the existing functionality, every object needs to be explicitly defined with an access grant.
If we have the below LookML and do a sum on a dimension that has an access grant, we'll see the same results when we delete the required access grant from the dimension. So we will need to define the required access grant for both fields to correctly restrict the information.
dimension: dim1 {required_access_grants: [sensitive_info]
type: number
sql: ${TABLE}.col1 ;;
}
measure: sum_of_dim1 {
type:sum
sql: ${dim1};;
}
This content is subject to limited support.