Optimizing database performance by enabling row-level security algorithms

Implementing row-level security (RLS) to filter BMC Helix Innovation Suite database content based on user-specific roles and might affect the database performance.

To optimize database performance, enable the RLS algorithms by using the HELIX_RLS_IMPLEMENTATION pipeline.

To enable RLS algorithms

1. Log in to your Jenkins server by using the following URL:
   http://<Jenkins server host name>:8080
2. Select the HELIX_RLS_IMPLEMENTATION pipeline, select the latest build, and then click Build with Parameters.

3. Specify the values for the following parameters:
   

   Parameter	Description
   AUTODISCOVERY	Do not select this check box.
   AUTOROLLBACK	Do not select this check box.
   AR_ENV_TYPE	Specify the value as Helix.
   LOCATION	Specify the HELIX_RLS_IMPLEMENTATION pipeline location. Example: /home/git/ANSIBLE_PLAYBOOKS/HELIX_RLS_IMPLEMENTATION
   PLAYBOOKS_REPO	Specify the Playbooks repository location. Example: ssh://<Jenkins server host name>/home/git/PLAYBOOKS_REPO/helix-deploy-playbooks.git
   CUSTOMER_NAME	Specify the name of your BMC Helix Innovation Suite namespace.
   JAVA_HOME	Specify the Java directory location. Example: /usr/bin/java
   CLUSTER	Specify the value of the Kubernetes cluster context. Find the cluster from the kubeconfig file. The current-context value in the kubeconfig file is the cluster name. Example: dev-k8s-cluster apiVersion: v1 clusters: - cluster: server: https://<local host>/k8s/clusters/c-rxcc6   current-context:    dev-k8s-cluster Use the CLUSTER value from the HELIX_ONPREM_DEPLOYMENT pipeline.
   HELM_NODE	Specify the host name of the Jenkins server where you have installed HELM. Use the HELM_NODE value from the HELIX_ONPREM_DEPLOYMENT pipeline.
   IS_HELM_NODE_MASTERNODE	Do not select this check box.
   SRC_AR_USER	Leave this field blank.
   SRC_AR_PASSWORD	Leave this field blank.
   SRC_AR_HOST	Leave this field blank.
   SRC_AR_PORT	Leave this field blank.
   DEST_AR_USER	Specify the BMC Helix Innovation Suite administrator user.
   DEST_AR_PASSWORD	Specify the password for the BMC Helix Innovation Suite user.
   DEST_AR_HOST	Specify the external IP for the platform-admin-ext service.
   DEST_AR_PORT	Specify the value as 46262.
   DEST_AR_JETTY_PORT	Specify the value as 8008.
   S_TABLE_INCONSISTENCY	Do not select this check box.
   RLS_FORM_LIST	Specify the list of forms on which you want to implement RLS.
   ALGORITHM	Specify the algorithm option that you want to use: Default RLS Split Combined likes Subquery For more information, see Improving performance by using RLS algorithms in BMC Helix Innovation Suite documentation.
   REPEAT_COUNT	Specify the repeat count. For more information, see Improving performance by using RLS algorithms in BMC Helix Innovation Suite documentation.
   MIGRATION_TIMEOUT	Specify the migration time out period in minutes.

   You can skip specifying values for the other pipeline parameters.

4. Click Rebuild.

To verify that all records with RLS were migrated to the algorithms

1. Log in to the AR System Administration Console by using the administrator credentials.
2. Go to the RLS Migration Pending form.
3. To verify the records, search with the percent sign (%).
   Example:
   
4. Confirm that the RLS records are removed in the form.

To roll back RLS algorithms

1. Log in to your Jenkins server by using the following URL:
   http://<Jenkins server host name>:8080
2. Select the HELIX_RLS_IMPLEMENTATION pipeline, select the latest build, and then click Rebuild.
3. Select the AUTOROLLBACK check box, and click Rebuild.

Where to go from here

Improving performance by using RLS algorithms in BMC Helix Innovation Suite documentation