Source-based Policies
Here's an explanation for each Source-base policy.
A Source-based Policy includes all resource-based type permissions, which user will need to assign to a selected data source that has been connected to decube. Before you can select permissions, you will need to first select a data source that has been already added to decube.
.png?alt=media&token=a97fad27-48fa-48d8-83e0-e9976524d902)
Example of the Source-based policies form.
- Modify: User able to enable/disable data source, modify credentials and add additional configuration. This applies only to the specific data source that was selected in the Source-based policy form.
- Delete: User able to delete the data source that was selected in the Source-based policy form.
- Read-only: User able to see Assets in the Catalog but unable to make changes.
- Edit: User able to create and submit change requests for asset such as description, tags and classifications.
- Allow run profiler: User able to run profiler to generate Table Overview and Field Statistics results.
- Approve or reject change requests: User can review change requests and be selected as an approver for change requests.
- Read-only: User able to see list of monitors in Asset Details but unable to edit, add or delete monitors.
- Create: User able to add monitors such as field monitors or custom monitors.
- Edit: User able to edit any existing monitors.
- Delete: User able to delete existing monitors.
- Read-only: User is able to see incidents, but unable to edit selection in Incident Details such as status.
- Edit: User is able to update selection in Incident Details such as close or mute incidents.
- Read-only: User able to view the list of table monitoring settings in the Config, but unable to edit.
- Edit: User able to edit table monitoring settings.
By Default, access to Data Recon is disabled for a user unless they possess a policy of
Enable Data Recon
. Enabling Data Recon for a source enables users to see the list of completed recons that has been completed with that data source.- Create: User can add a new recon configuration.
- Edit: User can edit schedule for recon configuration.
- Delete: User can delete any existing recon.
- Allow export: Allow user to export unmatched rows from Recon details.