This section provides orientation on managing queries through the Administration module.
Queries are search mechanisms that allow detailed information on objects in the system to be grouped into one place. In the Administration module, queries are related to access control, with three types of queries available: those that display the people included in the audience of queries of various modules and solutions, the audience members of generic reports of the Organization module, as well as the audience members of SQL queries and dashboards of the Data Analytics module; those that list the people assigned to roles; and those that list the people included in profiles.
These queries provide a holistic view of access control. For example, while in the Risk module you can view the list of people included in the audience of a certain risk query, in the Administration module a query to view audience information displays all the queries to which a person is assigned as an audience member. Not only that, access control queries can compile all the roles and profiles a person is assigned to in the system.
A wizard divides the query creation process by steps. You can apply filters to limit the information shown in the results, define which columns will be displayed, include people and groups of people in the audience of the query so they can view it in the Home module and in this module, if they have permission to it, in addition to assign people and groups as editors. Note that attributes created for people and published in the Objects and Attributes section of this module will be available as column options.
You can create copies of the queries of which you are author, editor or an audience member, which can later be edited and run. This allows new queries to be created with the same settings as a previously registered one. However, in the results of the copy, you will only be able to view the data to which you have permission.
It is important to understand that the results of access control queries show the people included in a group, but not the group itself. In other words, if a group named "Product Managers" is included in the Administrators profile and a query is created to view who is in included in the profile, the query results will display the names of each group member. The group is available as a hidden column option that, when included in the results, displays a clickable link that directs users to the Manage Groups of People section of the Organization module.
Note that query results can be exported to SQL tables through an integration task. This allows them to be used to generate charts and tables for use in reports created in Report Designer. For details, see Chapter 17: Administration -> Integrations -> Integration Tasks -> Creating a Task to Export Queries to SQL Tables -> How to Create a Task to Export Queries to SQL Tables.
Keep in mind that only the author and editors of a query will be able to edit and delete it. If the author of a query is deleted from the system, the audience members will keep their permission to view the query, the editors will keep their permissions to copy, view, edit, and delete it, and the name of the author will be displayed with the suffix "(deleted)" in the Author column. However, if there are no audience members or editors assigned when the author is deleted, the query will no longer be available in the system, except for inclusion in integration tasks.