From a47332a6d44c6cc728bd951080def0323118ede4 Mon Sep 17 00:00:00 2001
From: Timna Brown <24630902+brown9804@users.noreply.github.com>
Date: Thu, 8 May 2025 08:56:31 -0600
Subject: [PATCH 1/9] Warehouse Permissions - Shared workspace

---
 Security/WarehousePermissions.md | 60 ++++++++++++++++++++++++++++++++
 1 file changed, 60 insertions(+)
 create mode 100644 Security/WarehousePermissions.md

diff --git a/Security/WarehousePermissions.md b/Security/WarehousePermissions.md
new file mode 100644
index 0000000..e46d54a
--- /dev/null
+++ b/Security/WarehousePermissions.md
@@ -0,0 +1,60 @@
+# Warehouse: Security \& Governance
+
+Costa Rica
+
+[![GitHub](https://img.shields.io/badge/--181717?logo=github&logoColor=ffffff)](https://github.com/)
+[brown9804](https://github.com/brown9804)
+
+Last updated: 2025-05-08
+
+------------------------------------------
+
+<details>
+<summary><b>List of References</b> (Click to expand)</summary>
+
+- [Security for data warehousing in Microsoft Fabric](https://learn.microsoft.com/en-us/fabric/data-warehouse/security)
+- [Permission model](https://learn.microsoft.com/en-us/fabric/security/permission-model)
+- [Share your data and manage permissions](https://learn.microsoft.com/en-us/fabric/data-warehouse/share-warehouse-manage-permissions)
+
+</details>
+
+<details>
+<summary><b>Table of Contents</b> (Click to expand)</summary>
+
+</details>
+
+> `Data Warehouse` is a centralized repository for `storing large volumes of structured data`. It is optimized for querying and analysis, providing high-performance SQL-based analytics.
+
+<div align="center">
+
+  <img width="700" alt="image" src="https://github.com/user-attachments/assets/0a204dbf-af7a-434a-8265-65cc40fa4dc8" style="border: 2px solid #4CAF50; border-radius: 5px; padding: 5px;"/>
+
+</div>
+
+| **Permission**                                 | **Definition**                                                                 | **Use Cases**                                                                                                                                                                                                 |
+|-----------------------------------------------|---------------------------------------------------------------------------------|--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
+| Read all data using SQL (`ReadData`)          | Allows querying all data in the warehouse using SQL.                           | - `Power BI` or `Excel`: Running SQL queries for reporting.<br/>- `Data Factory`: Using SQL queries in pipelines.<br/>- `Custom Apps`: Querying warehouse data for dashboards or APIs. |
+| Read all OneLake data and subscribe to events (`ReadAll`, `SubscribeOneLakeEvents`) | Grants access to all data stored in OneLake and allows subscribing to data change events. | - `Data Pipelines`: Reading raw or curated data from OneLake.<br/>- `Event-driven Workflows`: Triggering actions when data changes.<br/>- `Monitoring Tools`: Subscribing to data refresh or ingestion events. |
+| Build reports on the default semantic model (`Build`) | Allows building and publishing reports using the default semantic model.       | - `Power BI`: Creating dashboards and reports.<br/>- `Collaborative BI`: Sharing insights across teams.<br/>- `Embedded Analytics`: Integrating reports into apps or portals. |
+| Monitor queries (`Monitor`)                   | Enables visibility into query performance and execution.                       | - `Performance Tuning`: Identifying slow queries.<br/>- `Operational Monitoring`: Tracking query load and usage.<br/>- `Capacity Planning`: Understanding resource consumption. |
+| Audit queries (`Audit`) – PREVIEW             | Allows auditing of query activity for compliance and governance.               | - `Security Audits`: Reviewing who queried what and when.<br/>- `Compliance Reporting`: Ensuring data access policies are followed.<br/>- `Anomaly Detection`: Spotting unusual query patterns. |
+| Share granted permissions (`Reshare`)         | Allows users to share permissions they’ve been granted with others.            | - `Collaboration`: Delegating access to teammates.<br/>- `Data Stewardship`: Empowering trusted users to manage access.<br/>- `Self-service BI`: Enabling broader access without admin bottlenecks. |
+
+https://github.com/user-attachments/assets/ee3daf56-9aca-4321-b154-35cfbae05f65
+
+## Read all data using SQL 
+
+## Read all OneLake data and subscribe to events
+
+## Build reports on the default semantic models
+
+## Monitor queries
+
+## Audit queries
+
+## Share granted permissions
+
+<div align="center">
+  <h3 style="color: #4CAF50;">Total Visitors</h3>
+  <img src="https://profile-counter.glitch.me/brown9804/count.svg" alt="Visitor Count" style="border: 2px solid #4CAF50; border-radius: 5px; padding: 5px;"/>
+</div>

From 2339ab123c49e7ff0fe0f32ebd222523e400ae58 Mon Sep 17 00:00:00 2001
From: Timna Brown <24630902+brown9804@users.noreply.github.com>
Date: Thu, 8 May 2025 08:57:39 -0600
Subject: [PATCH 2/9] added

---
 Security/README.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/Security/README.md b/Security/README.md
index 4187475..c3d5173 100644
--- a/Security/README.md
+++ b/Security/README.md
@@ -10,6 +10,7 @@ Last updated: 2025-05-08
 ------------------------------------------
 
 - [Lakehouse Permissions](./LakehousePermissions.md): Lakehouse, Semantic Model, SQL Endpoint 
+- [Warehouse Permissions](./WarehousePermissions.md): Warehouse, Semantic Model
 
 <div align="center">
   <h3 style="color: #4CAF50;">Total Visitors</h3>

From 9eb7907458a40127f484633dc67a3c94c100e12c Mon Sep 17 00:00:00 2001
From: "github-actions[bot]" <github-actions[bot]@users.noreply.github.com>
Date: Thu, 8 May 2025 14:59:51 +0000
Subject: [PATCH 3/9] Fix Markdown syntax issues

---
 Security/WarehousePermissions.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/Security/WarehousePermissions.md b/Security/WarehousePermissions.md
index e46d54a..eb6525b 100644
--- a/Security/WarehousePermissions.md
+++ b/Security/WarehousePermissions.md
@@ -40,7 +40,7 @@ Last updated: 2025-05-08
 | Audit queries (`Audit`) – PREVIEW             | Allows auditing of query activity for compliance and governance.               | - `Security Audits`: Reviewing who queried what and when.<br/>- `Compliance Reporting`: Ensuring data access policies are followed.<br/>- `Anomaly Detection`: Spotting unusual query patterns. |
 | Share granted permissions (`Reshare`)         | Allows users to share permissions they’ve been granted with others.            | - `Collaboration`: Delegating access to teammates.<br/>- `Data Stewardship`: Empowering trusted users to manage access.<br/>- `Self-service BI`: Enabling broader access without admin bottlenecks. |
 
-https://github.com/user-attachments/assets/ee3daf56-9aca-4321-b154-35cfbae05f65
+<https://github.com/user-attachments/assets/ee3daf56-9aca-4321-b154-35cfbae05f65>
 
 ## Read all data using SQL 
 

From 2ade53d7b882d686e282c8f92927fb166ddf60dc Mon Sep 17 00:00:00 2001
From: Timna Brown <24630902+brown9804@users.noreply.github.com>
Date: Thu, 8 May 2025 09:12:24 -0600
Subject: [PATCH 4/9] visual guidance

---
 Security/WarehousePermissions.md | 55 ++++++++++++++++++++++++++++++++
 1 file changed, 55 insertions(+)

diff --git a/Security/WarehousePermissions.md b/Security/WarehousePermissions.md
index eb6525b..6d8b821 100644
--- a/Security/WarehousePermissions.md
+++ b/Security/WarehousePermissions.md
@@ -21,6 +21,13 @@ Last updated: 2025-05-08
 <details>
 <summary><b>Table of Contents</b> (Click to expand)</summary>
 
+- [Read all data using SQL](#read-all-data-using-sql)
+- [Read all OneLake data and subscribe to events](#read-all-onelake-data-and-subscribe-to-events)
+- [Build reports on the default semantic models](#build-reports-on-the-default-semantic-models)
+- [Monitor queries](#monitor-queries)
+- [Audit queries](#audit-queries)
+- [Share granted permissions](#share-granted-permissions)
+
 </details>
 
 > `Data Warehouse` is a centralized repository for `storing large volumes of structured data`. It is optimized for querying and analysis, providing high-performance SQL-based analytics.
@@ -44,16 +51,64 @@ Last updated: 2025-05-08
 
 ## Read all data using SQL 
 
+> Permissions:
+> - Read <br/>
+> - Read Data
+
+<img width="700" alt="image" src="https://github.com/user-attachments/assets/a7e4b48d-cefb-447f-8f50-e4f1499444e3">
+
+<img width="700" alt="image" src="https://github.com/user-attachments/assets/6fc51fef-8fd9-4f5c-9b2d-2944e02a21de" />
+
 ## Read all OneLake data and subscribe to events
 
+> Permissions:
+> - Read <br/>
+> - Read All <br/>
+> - Subscribe OneLake Events 
+
+<img width="700" alt="image" src="https://github.com/user-attachments/assets/8f16dce7-aaf6-46c4-b5c6-b4f14bf88353">
+
+<img width="700" alt="image" src="https://github.com/user-attachments/assets/a368c386-4ada-411a-b83d-54222139e603" />
+
 ## Build reports on the default semantic models
 
+> Permissions:
+> - Read <br/>
+
+<img width="700" alt="image" src="https://github.com/user-attachments/assets/43d1685f-94ca-42fb-a1e3-29e49db63e75">
+
+<img width="700" alt="image" src="https://github.com/user-attachments/assets/fd9a4469-2447-44b0-a50b-c7e9d956770f" />
+
 ## Monitor queries
 
+> Permissions:
+> - Read <br/>
+> - Monitor 
+
+<img width="700" alt="image" src="https://github.com/user-attachments/assets/06f59fbc-d595-4265-824b-469ca35fabea">
+
+<img width="700" alt="image" src="https://github.com/user-attachments/assets/50b22d07-9fcd-46d4-a1d3-d35061b74960">
+
 ## Audit queries
 
+> Permissions:
+> - Read <br/>
+> - Audit
+
+<img width="700" alt="image" src="https://github.com/user-attachments/assets/24aa044c-9afa-4748-8b43-141fde0d1a1a">
+
+<img width="700" alt="image" src="https://github.com/user-attachments/assets/e40c788b-8d0e-4a9e-9fbe-2afa87214a20">
+
 ## Share granted permissions
 
+> Permissions:
+> - Read <br/>
+> - Reshare 
+
+<img width="700" alt="image" src="https://github.com/user-attachments/assets/2e526411-c109-440d-834d-cb9c3c81a31b">
+
+<img width="700" alt="image" src="https://github.com/user-attachments/assets/72e6c5b5-7946-436c-857a-88b69a074cfd">
+
 <div align="center">
   <h3 style="color: #4CAF50;">Total Visitors</h3>
   <img src="https://profile-counter.glitch.me/brown9804/count.svg" alt="Visitor Count" style="border: 2px solid #4CAF50; border-radius: 5px; padding: 5px;"/>

From 337bd616dcb9e77ab4047211ba32ccb74eff5630 Mon Sep 17 00:00:00 2001
From: Timna Brown <24630902+brown9804@users.noreply.github.com>
Date: Thu, 8 May 2025 09:15:59 -0600
Subject: [PATCH 5/9] addional guidance on smeantic model default one

---
 Security/WarehousePermissions.md | 10 ++++++++++
 1 file changed, 10 insertions(+)

diff --git a/Security/WarehousePermissions.md b/Security/WarehousePermissions.md
index 6d8b821..ee55057 100644
--- a/Security/WarehousePermissions.md
+++ b/Security/WarehousePermissions.md
@@ -59,6 +59,16 @@ Last updated: 2025-05-08
 
 <img width="700" alt="image" src="https://github.com/user-attachments/assets/6fc51fef-8fd9-4f5c-9b2d-2944e02a21de" />
 
+
+> Here you can grant: <br/>
+> - Reshare <br/>
+> - Build <br/>
+> - Write 
+
+<img width="700" alt="image" src="https://github.com/user-attachments/assets/b4330145-f98e-40e0-b10b-441597749d45" />
+
+<img width="700" alt="image" src="https://github.com/user-attachments/assets/92283e55-0260-46b7-b683-12f50eb84e46" />
+
 ## Read all OneLake data and subscribe to events
 
 > Permissions:

From a2ff46b878351376d452639d0ad9c6159c4133c8 Mon Sep 17 00:00:00 2001
From: "github-actions[bot]" <github-actions[bot]@users.noreply.github.com>
Date: Thu, 8 May 2025 15:18:12 +0000
Subject: [PATCH 6/9] Fix Markdown syntax issues

---
 Security/WarehousePermissions.md | 8 +++++++-
 1 file changed, 7 insertions(+), 1 deletion(-)

diff --git a/Security/WarehousePermissions.md b/Security/WarehousePermissions.md
index ee55057..db33ceb 100644
--- a/Security/WarehousePermissions.md
+++ b/Security/WarehousePermissions.md
@@ -52,6 +52,7 @@ Last updated: 2025-05-08
 ## Read all data using SQL 
 
 > Permissions:
+>
 > - Read <br/>
 > - Read Data
 
@@ -59,8 +60,8 @@ Last updated: 2025-05-08
 
 <img width="700" alt="image" src="https://github.com/user-attachments/assets/6fc51fef-8fd9-4f5c-9b2d-2944e02a21de" />
 
-
 > Here you can grant: <br/>
+>
 > - Reshare <br/>
 > - Build <br/>
 > - Write 
@@ -72,6 +73,7 @@ Last updated: 2025-05-08
 ## Read all OneLake data and subscribe to events
 
 > Permissions:
+>
 > - Read <br/>
 > - Read All <br/>
 > - Subscribe OneLake Events 
@@ -83,6 +85,7 @@ Last updated: 2025-05-08
 ## Build reports on the default semantic models
 
 > Permissions:
+>
 > - Read <br/>
 
 <img width="700" alt="image" src="https://github.com/user-attachments/assets/43d1685f-94ca-42fb-a1e3-29e49db63e75">
@@ -92,6 +95,7 @@ Last updated: 2025-05-08
 ## Monitor queries
 
 > Permissions:
+>
 > - Read <br/>
 > - Monitor 
 
@@ -102,6 +106,7 @@ Last updated: 2025-05-08
 ## Audit queries
 
 > Permissions:
+>
 > - Read <br/>
 > - Audit
 
@@ -112,6 +117,7 @@ Last updated: 2025-05-08
 ## Share granted permissions
 
 > Permissions:
+>
 > - Read <br/>
 > - Reshare 
 

From ba003120fe9a0bf0074d1b54067a377152527129 Mon Sep 17 00:00:00 2001
From: Timna Brown <24630902+brown9804@users.noreply.github.com>
Date: Thu, 8 May 2025 09:20:31 -0600
Subject: [PATCH 7/9] semantic models also

---
 Security/README.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/Security/README.md b/Security/README.md
index c3d5173..f58672d 100644
--- a/Security/README.md
+++ b/Security/README.md
@@ -11,6 +11,7 @@ Last updated: 2025-05-08
 
 - [Lakehouse Permissions](./LakehousePermissions.md): Lakehouse, Semantic Model, SQL Endpoint 
 - [Warehouse Permissions](./WarehousePermissions.md): Warehouse, Semantic Model
+- [Semantic Models Permissions](./SemanticModelsPermissions.md): Semantic Models
 
 <div align="center">
   <h3 style="color: #4CAF50;">Total Visitors</h3>

From 87f2905fa5c732aed5d466ed84a2fd8bc2ff6cee Mon Sep 17 00:00:00 2001
From: Timna Brown <24630902+brown9804@users.noreply.github.com>
Date: Thu, 8 May 2025 09:28:10 -0600
Subject: [PATCH 8/9] semantic models also

---
 Security/SemanticModelsPermissions.md | 46 +++++++++++++++++++++++++++
 1 file changed, 46 insertions(+)
 create mode 100644 Security/SemanticModelsPermissions.md

diff --git a/Security/SemanticModelsPermissions.md b/Security/SemanticModelsPermissions.md
new file mode 100644
index 0000000..bb3d414
--- /dev/null
+++ b/Security/SemanticModelsPermissions.md
@@ -0,0 +1,46 @@
+# Semantic Models: Security \& Governance
+
+Costa Rica
+
+[![GitHub](https://img.shields.io/badge/--181717?logo=github&logoColor=ffffff)](https://github.com/)
+[brown9804](https://github.com/brown9804)
+
+Last updated: 2025-05-08
+
+------------------------------------------
+
+<details>
+<summary><b>List of References</b> (Click to expand)</summary>
+
+- [OneLake data access control model (preview)](https://learn.microsoft.com/en-us/fabric/onelake/security/data-access-control-model)
+- [Permission model](https://learn.microsoft.com/en-us/fabric/security/permission-model)
+- [Manage Direct Lake semantic models](https://learn.microsoft.com/en-us/fabric/fundamentals/direct-lake-manage)
+
+</details>
+
+
+> Semantic Model is a `curated layer` that provides a `business-friendly view of data`. It abstracts complex data structures into understandable entities, measures, and relationships, enabling users to create reports and perform analysis without needing to write complex queries. E.g `custom data view`.
+
+<div align="center">
+
+  <img width="700" alt="image" src="https://github.com/user-attachments/assets/c46b93b5-4a64-4066-8c30-19a0dbe77c84" style="border: 2px solid #4CAF50; border-radius: 5px; padding: 5px;"/>
+
+</div>
+
+<div align="center">
+
+  <img width="700" alt="image" src="https://github.com/user-attachments/assets/76b8801d-9b32-4e98-9301-0d85ef607346" style="border: 2px solid #4CAF50; border-radius: 5px; padding: 5px;"/>
+
+</div>
+
+| **Permission**                                                        | **Definition**                                                                                      | **Use Cases**                                                                                                                                         |
+|----------------------------------------------------------------------|------------------------------------------------------------------------------------------------------|--------------------------------------------------------------------------------------------------------------------------------------------------------|
+| Allow recipients to modify this dataset                              | Grants users the ability to make changes to the semantic model, including schema and data updates.  | - `Data Modeling`: Adjusting measures, columns, or relationships.<br/>- `Collaboration`: Co-authoring datasets with team members.                     |
+| Allow recipients to share this semantic model                        | Lets users share the semantic model with others.                                                    | - `Team Access`: Granting access to additional users.<br/>- `Self-service BI`: Empowering users to manage access without admin intervention.          |
+| Allow recipients to build content with the data associated with this semantic model | Enables users to create reports, dashboards, and other content using the semantic model.            | - `Power BI Reports`: Building visuals and dashboards.<br/>- `Embedded Analytics`: Using the model in apps or portals.<br/>- `Ad hoc Analysis`: Exploring data. |
+| Send an email notification                                           | Sends an email to notify the recipient about the access granted.                                    | - `Communication`: Ensuring users are informed of their new access.<br/>- `Onboarding`: Helping users get started with the semantic model.            |
+
+<div align="center">
+  <h3 style="color: #4CAF50;">Total Visitors</h3>
+  <img src="https://profile-counter.glitch.me/brown9804/count.svg" alt="Visitor Count" style="border: 2px solid #4CAF50; border-radius: 5px; padding: 5px;"/>
+</div>

From 412c2ce8c886c47c82a8469d63f05e8c407e4ba4 Mon Sep 17 00:00:00 2001
From: "github-actions[bot]" <github-actions[bot]@users.noreply.github.com>
Date: Thu, 8 May 2025 15:28:30 +0000
Subject: [PATCH 9/9] Fix Markdown syntax issues

---
 Security/SemanticModelsPermissions.md | 1 -
 1 file changed, 1 deletion(-)

diff --git a/Security/SemanticModelsPermissions.md b/Security/SemanticModelsPermissions.md
index bb3d414..ffa72bf 100644
--- a/Security/SemanticModelsPermissions.md
+++ b/Security/SemanticModelsPermissions.md
@@ -18,7 +18,6 @@ Last updated: 2025-05-08
 
 </details>
 
-
 > Semantic Model is a `curated layer` that provides a `business-friendly view of data`. It abstracts complex data structures into understandable entities, measures, and relationships, enabling users to create reports and perform analysis without needing to write complex queries. E.g `custom data view`.
 
 <div align="center">