But what you should do depends of what the users should see. Should User1 see the intersection between SALESMAN='user1' and MANAGER='user1' and EMPLOYEE='user1'? Or should he see the union between the three?
My guess is that it is the union. If so, then it is a complex problem for which you need Generic Keys. Start by reading the blog post about complex authorization. Then the Technical Brief about Generic Keys.