We have created a solution using Dataverse + Power Apps. We implemented all the security in the application (with Power Automate) since our use case had very complex requirements in terms of security and Business Units didnt adapt well to it.
I tested with a few users and the users are not able to see the tables directly in the enviornment since we have limited actions to the security role. However, when connecting from Power BI the user is able to easily read all the tables and all the data in them.
Is there any way to configure the security group or enviornment so quering the data from Power BI is not possible at all?
Thank you
Edit:
After reading the documentation I found an option to disable TDS endpoint by default unless granted in the security role.