2.2.4.2.2.24 DimensionPermission

The DimensionPermission complex type represents permissions for a Dimension.

   <xsd:complexType name="DimensionPermission">
     <xsd:complexContent>
       <xsd:extension base="Permission">
         <xsd:sequence>
           <!--Extended elements for DimensionPermission object-->
           <xsd:element name="AttributePermissions" minOccurs="0">
             <xsd:complexType>
               <xsd:sequence>
                 <xsd:element name="AttributePermission"  type="AttributePermission"
                              minOccurs="0" maxOccurs="unbounded"/>
               </xsd:sequence>
             </xsd:complexType>
           </xsd:element>
           <xsd:element name="Write" minOccurs="0">
             <xsd:simpleType>
               <xsd:restriction base="xsd:string" >
                 <xsd:enumeration value="None" />
                 <xsd:enumeration value="Allowed" />
               </xsd:restriction>
             </xsd:simpleType>
           </xsd:element>
             <xsd:element ref="eng300_300:AllowedRowsExpression" minOccurs="0" />
         </xsd:sequence>
       </xsd:extension >
     </xsd:complexContent>
   </xsd:complexType>
            

In the namespace eng300_300:

   <xsd:element name="AllowedRowsExpression" type="xsd:string" />

The following table shows only the additional elements in DimensionPermission that are not contained in Permission.

Element

Read-Only

Default value

Description

AttributePermissions

Empty

A collection of AttributePermission objects.

AllowedRowsExpression

Empty

This string is to contain a DAX Boolean expression that evaluates to TRUE for the rows in the table that are allowed. This is equivalent to saying that the table expression that returns the allowed rows is FILTER (ALL (Table), AllowedRowsExpression).<113>

If the DAX Boolean expression is empty, it is treated as TRUE.

If the DAX Boolean expression evaluates to an error, it is treated as FALSE for those rows and permission is not allowed.

Write

"None"

A string that specifies whether the role has permission to write to the object or any of its contained objects. Write cannot be set to "Allowed" unless Read is also set to "Allowed".

"None" specifies no write access to object metadata or data.

"Allowed" specifies full write access to object metadata or data.

In DimensionPermission, the default for the Read element differs from the default for the Read element in the base Permission class. In DimensionPermission, the default for the Read element is "Allowed".