User password expiration
Hi, Many customers are asking about secutiry concerns. One of it is about the feature of set a time when the password expires. For example, if a viewer has set a password expirtation time to 60 days, he needs to change the password into these days. Days before the expiration he will be notified. Thanks
Ability to disable (but not delete) users
There needs to be a way to deactivate user accounts rather than completing removing. We have users that will no longer have access to the system, but could come back later (for example, trail users). The workarounds are currently: reassigning security groups (means those users are still taking up licenses) writing our own user admin functionality (only makes sense if we are integrating users to another platform) Adding a 'Status' or 'Disabled' flag to the user account would accomplish this.
Support API Key rotation (2+ keys per user)
We want to rotate the API key for our system user but need to make sure there's no downtime. This means we need to have 2 keys working in parallel for the same user for a period of time until we can cycle all of our services to pick up the latest api key. The problem is as soon as the API key is rotated, the old key immediately stopped working. Majority of systems out there support key rotation (like allowing a time delay before the old key expires like FB app, or ability to temporary create a second key and then we can promote it as primary once we are ready). Key rotation is a best practice for security principles.Detect I'm already logged in on "login" windows
I use Chrome browser. I keep multiple tabs of sisense opened. When the session expires, it expires on ALL the tabs (which makes total sense). The problem is that all those tabs get redirected to the login page and I need to login on each and every one of them. It does not detect I've logged in in another tab, neither if I hit the browser Refresh button it will detect the login and redirect me to the page I was in before I got logged out. This is annoying because I have to either login again, or open a new window and search for the dashboard I had open. Ideal expected behaviour (preferred, but probably harder): Once I'm logged out on several tabs, logging in one of them should make the others notice and log me in automatically. Good-enough behaviour ("easier"): Once I'm logged out on several tabs, logging in one of them should allow me to go to other opened tabs, which are showing the login windows, and refresh them (e.g using Ctrl+R) so that itwill automatically detect my session and redirect to the page I was before I was logged out. This will save me a lot of time and make sisense less annoying.
Data Security Bulk provisioning API
We would like to configure multiple data security rules on a live data source table. With the available APIs there is a constraint to set one rule at a time. Having an API that accepts a collection of multiple rules is desired for our use case since we have more that 18,000 rules to be set.
Add user or group params as Claim in Web Access Token
It would be very helpful to be able to pass User or Group parameters as Claims in a Web Access Token. This will allow customers to leverage the dynamic features related to User/Group Parameters (e.g. dynamic live query) when using Web Access Tokens.
WAT and ACL Security Model - Default to no access
We have found that if an ACL in a WAT does not match the Elasticube table/column security field, it defaults to providing 'all data'. To avoid a potential human error where a table/column has been renamed, we would like the default position to be 'nothing'.
