At present the Atlas documentation is omitting any details on how the access control should be configured for the users to succeed with Data Federation / SQL querying.

Users can face obscure "not authorized" errors when trying to use the SQL features and as of now there is no way to infer from the documentation what custom roles should be added for Data Federation to be used.