Session Property Management
Data Security is only available in Enterprise Plan and above
Session properties capture user context (e.g., user ID, organization, region, roles) and are referenced by policies during query evaluation. This page explains how to manage properties and assign them to users or groups within a project.
1) View and manage properties
Navigate to: Data Security → Session Property
Here you can:
- Create, edit, or delete properties
- Define type (string, number, boolean) and optional default value
- Review which policies reference each property
Tip: Keep property names stable and descriptive (e.g.,
user_org_id,region_ids).
2) Assign to users
Open the Assign to users tab to set property values for individual project members:
- The list only includes users in the current project
- Edit property values per user and save changes
Use this when a user needs a specific override (e.g., a custom region or temporary access window).
Go to Settings → Project → Access Control, then switch to Manage users to assign a user to the project first.
3) Assign to groups
Open the Assign to groups tab to set property values for groups:
- The list only includes groups associated with this project
- Assign groups to the project first if you don’t see them listed
- Set the property value once and it applies to all members of the group
Group assignments are ideal for role‑based or team‑based rules that apply to many users.
Go to Settings → Project → Access Control, then switch to Manage groups to assign a group to the project first.