Your query should not using authorization variables that are input-ready.
Authorization variables must be set under the global restrictions section in Query Designer. If you need to have input variables present for the same characteristic, you must have these as non-authorization variables - and these query variables must be set under the local restrictions section in Query Designer.
In addition, entries like "*" should be avoided in the input selection screen, since the analysis authorizations and authorization variables would already take care of populating the query with all authorized values.