Can I grant read access to Data Connection without granting write access?
I am trying to edit the security rules of a Data Connection of the type Folder in such a manner that only certain users get write access to the Data Connection where as a wide range of users get read access to the Data Connection. How can this be done and can it be done?
What I'm trying to achieve is a ETL structure where certain users are allowed create and update QVDs in my data connections and the end users should be able to read from these without any risk of writing to the QVD data connections.
It is sad that the security levels cannot be applied to qvd files since this prevents me from deploying a self-service environment where IT provides the QVD files and end users can read them (without risk of overwriting them).
I intend to implement a solution where IT will create a datawerehouse consisting of QVD files. DWH will be updated daily using task sheduler. BI developers will be granted access to a DWH folder connection. Once an app desinged by developer is published the app will be refreshed daily using task scheduler. End users will be allowed to read the apps, but will not be allowed to reload them.
In some environments we want to enable the end users to build their own applications (especially in the case where the end users are highly data literate. In a normal (default settings) environment, all users have the ability to create new applications (the feature is not disabled) - why not provide them with their own internal data market that has prebuilt data from the customer's own internal information systems? Of course, one can always argue that highly data literate (=educated) people can be trusted to not overwrite/add extra data to the data market but still, it feels a bit odd that I can not build a _governed_ self-service environment that allows self-service even on the application building level.
Now I'm not saying that all end users should build all applications them selves, this applies more to specific environment cases where a certain sub group of users needs to build their own apps as IT or some other centralised development team can not be responsible of building highly customised data models for specific one time analytic tasks.