prerequisites - I have a "global" index which contains data from different sources. this is the baseline for my question.
I want to add shield security to this "global" index so different users will get the data they are allowed to.
if I create a role per permission as described bellow, will a user with both permission benefit from both roles.
meaning does shield know to merge all role based query permission so the user get all the valid data?
here's my example
a user with role "role1" & "role2" will get data with [department_id: 1 or department_id: 2] ?
updated: it seems that shield is doing an "and" operation between the roles, can it be the case?