We have a requirement to restrict a user to do data preview for all the views (attribute, analytic and calculation) within one specific package. He should be able to do that for all the views in that package and there is no associated attributes restriction (hence no value restriction). We do not want the user to see views in other packages. We created an analytic privilege and chose all the views in that package, saved, activated and assigned it to our test user. However we still get authorization errors:
SAP DBTech JDBC: : sql processing error: createMaterializedSearchResult failed error SQL: insufficient privilege: Not authorized
SAP DBTech JDBC: : insufficient privilege: Not authorized
The above errors are fixed if we provide the user SELECT privilege over schema _SYS_BIC and _SYS_BI. However we do not want to provide him with access to those schemas as he would be able to get access to all run-time objects out of his package.
We would appreciate a solution
I believe you can achieve this using Analytic Privilege. More info on how to secure your views can be found in the link http://www.saphana.com/docs/DOC-2291