/
Login Based Access

Below is the over view of the Login Based Access to Reports process

  • Data Storage: Store the data in a PostgreSQL database with appropriate tables (datasets).

  • Authentication: Use Keycloak to authenticate users and obtain their roles. Create a separate Keycloak realm and define appropriate roles for each type of user (state officer, district office, block officer, etc.).

  • Visualization Layer: Build an Angular-based visualization layer that queries the PostgreSQL database based on the user's role and displays the appropriate charts and data.

  • Authorization: Implement authorization logic in the visualization layer to ensure that users can only see data at or below their level of responsibility. For example, a state officer should not be able to see data at the block level.

  • Query Generation: Write code to generate the appropriate SQL queries based on the user's role and the data they are authorized to see. These queries should join multiple tables and apply filters as needed to retrieve the correct data.

  • Chart Generation: Use a charting library (such as Chart.js or D3.js) to generate the charts based on the data returned from the database.

  • Caching: Consider implementing caching to improve performance and reduce load on the database. You could cache the SQL queries themselves, the results of the queries, or the charts generated from the data.

  • Testing: Develop a testing strategy that covers all possible user roles and scenarios. This should include unit tests for individual components as well as integration tests for the entire system.