DataWorks provides seven roles: workspace owner, workspace administrator, developer, administration expert, deployment expert, visitor, and security expert. You cannot grant the role of the workspace owner to other users. This topic describes the permissions of these roles. In the following tables, Yes indicates that a role has the corresponding permission, and No indicates that a role does not have the corresponding permission.
Data management
| Permission | Workspace owner | Workspace administrator | Developer | Administration expert | Deployment expert | Visitor | Security expert |
|---|---|---|---|---|---|---|---|
| Delete self-created tables | Yes | Yes | Yes | No | No | No | No |
| Specify categories for self-created tables | Yes | Yes | Yes | No | No | No | No |
| View favorite tables | Yes | Yes | Yes | No | No | No | No |
| Create tables | Yes | Yes | Yes | No | No | No | No |
| Unhide self-created tables | Yes | Yes | Yes | No | No | No | No |
| Modify the schemas of self-created tables | Yes | Yes | Yes | No | No | No | No |
| View self-created tables | Yes | Yes | Yes | No | No | No | No |
| View the content of self-submitted permission requests | Yes | Yes | Yes | No | No | No | No |
| Hide self-created tables | Yes | Yes | Yes | No | No | No | No |
| Specify the time-to-live (TTL) for self-created tables | Yes | Yes | Yes | No | No | No | No |
| Request permissions on tables created by other users | Yes | Yes | Yes | No | No | No | No |
| Update tables in the production environment | Yes | Yes | Yes | Yes | Yes | No | No |
| Delete tables from the production environment | Yes | Yes | Yes | No | No | No | No |
| Preview data | Yes | Yes | Yes | Yes | Yes | Yes | Yes |
Deployment management
| Permission | Workspace owner | Workspace administrator | Developer | Administration expert | Deployment expert | Visitor | Security expert |
|---|---|---|---|---|---|---|---|
| Create deployment tasks | Yes | Yes | Yes | Yes | No | No | No |
| View the list of deployment tasks | Yes | Yes | Yes | Yes | Yes | Yes | No |
| Delete deployment tasks | Yes | Yes | Yes | Yes | No | No | No |
| Deploy | Yes | Yes | No | Yes | Yes | No | No |
| View the content of deployment tasks | Yes | Yes | Yes | Yes | Yes | Yes | No |
Buttons
| Permission | Workspace owner | Workspace administrator | Developer | Administration expert | Deployment expert | Visitor | Security expert |
|---|---|---|---|---|---|---|---|
| Button: Stop | Yes | Yes | Yes | No | No | No | No |
| Button: Format | Yes | Yes | Yes | No | No | No | No |
| Button: Edit | Yes | Yes | Yes | No | No | No | No |
| Button: Run | Yes | Yes | Yes | No | No | No | No |
| Button: Zoom In | Yes | Yes | Yes | No | No | No | No |
| Button: Save | Yes | Yes | Yes | No | No | No | No |
| Button: Show/Hide | Yes | Yes | Yes | No | No | No | No |
| Button: Delete | Yes | Yes | Yes | No | No | No | No |
Code development
| Permission | Workspace owner | Workspace administrator | Developer | Administration expert | Deployment expert | Visitor | Security expert |
|---|---|---|---|---|---|---|---|
| Save and commit nodes | Yes | Yes | Yes | No | No | No | No |
| View the code of nodes | Yes | Yes | Yes | Yes | Yes | Yes | No |
| Create nodes | Yes | Yes | Yes | No | No | No | No |
| Delete nodes | Yes | Yes | Yes | No | No | No | No |
| View the node list | Yes | Yes | Yes | Yes | Yes | Yes | No |
| Run nodes | Yes | Yes | Yes | No | No | No | No |
| Edit the code of nodes | Yes | Yes | Yes | No | No | No | No |
| Download files | Yes | Yes | No | No | No | No | No |
| Upload local files | Yes | Yes | Yes | No | No | No | No |
Function development
| Permission | Workspace owner | Workspace administrator | Developer | Administration expert | Deployment expert | Visitor | Security expert |
|---|---|---|---|---|---|---|---|
| View function details | Yes | Yes | Yes | Yes | Yes | Yes | No |
| Create functions | Yes | Yes | Yes | No | No | No | No |
| Query functions | Yes | Yes | Yes | Yes | Yes | Yes | No |
| Delete functions | Yes | Yes | Yes | No | No | No | No |
Node types
| Permission | Workspace owner | Workspace administrator | Developer | Administration expert | Deployment expert | Visitor | Security expert |
|---|---|---|---|---|---|---|---|
| Node type: Machine Learning | Yes | Yes | Yes | No | No | No | No |
| Node type: ODPS MR | Yes | Yes | Yes | No | No | No | No |
| Node type: Data Sync | Yes | Yes | Yes | No | No | No | No |
| Node type: ODPS SQL | Yes | Yes | Yes | No | No | No | No |
| Node type: XLIB | Yes | Yes | Yes | Yes | Yes | Yes | No |
| Node type: Shell | Yes | Yes | Yes | No | No | No | No |
| Node type: Zero-Load Node | Yes | Yes | Yes | Yes | Yes | Yes | No |
| Node type: script_seahawks | Yes | Yes | Yes | No | No | No | No |
| Node type: dtboost_analytic | Yes | Yes | Yes | No | No | No | No |
| Node type: dtboost_recommand | Yes | Yes | Yes | No | No | No | No |
| Node type: PyODPS | Yes | Yes | Yes | No | No | No | No |
Resource management
| Permission | Workspace owner | Workspace administrator | Developer | Administration expert | Deployment expert | Visitor | Security expert |
|---|---|---|---|---|---|---|---|
| View the resource list | Yes | Yes | Yes | Yes | Yes | Yes | No |
| Delete resources | Yes | Yes | Yes | No | No | No | No |
| Create resources | Yes | Yes | Yes | No | No | No | No |
| Upload JAR files | Yes | Yes | Yes | No | No | No | No |
| Upload TXT files | Yes | Yes | Yes | No | No | No | No |
| Upload files as archive-type resources | Yes | Yes | Yes | No | No | No | No |
Workflow development
| Permission | Workspace owner | Workspace administrator | Developer | Administration expert | Deployment expert | Visitor | Security expert |
|---|---|---|---|---|---|---|---|
| Run or stop workflows | Yes | Yes | Yes | No | No | No | No |
| Save workflows | Yes | Yes | Yes | No | No | No | No |
| View workflows | Yes | Yes | Yes | Yes | Yes | Yes | No |
| Commit the code of nodes | Yes | Yes | Yes | No | No | No | No |
| Modify workflows | Yes | Yes | Yes | No | No | No | No |
| View the workflow list | Yes | Yes | Yes | Yes | Yes | Yes | No |
| Change the workflow owner | Yes | Yes | No | No | No | No | No |
| Open the code of nodes | Yes | Yes | Yes | No | No | No | No |
| Delete workflows | Yes | Yes | Yes | No | No | No | No |
| Create workflows | Yes | Yes | Yes | No | No | No | No |
| Create folders | Yes | Yes | Yes | No | No | No | No |
| Delete folders | Yes | Yes | Yes | No | No | No | No |
| Modify folders | Yes | Yes | Yes | No | No | No | No |
Data Integration
| Permission | Workspace owner | Workspace administrator | Developer | Administration expert | Deployment expert | Visitor | Security expert |
|---|---|---|---|---|---|---|---|
| Data Integration: edit nodes | Yes | Yes | Yes | No | No | No | No |
| Data Integration: view nodes | Yes | Yes | Yes | No | No | No | No |
| Data Integration: delete nodes | Yes | Yes | Yes | No | No | No | No |
| Access the menu for managing data synchronization resources | Yes | Yes | Yes | Yes | Yes | No | No |
| View the list of resource groups for data synchronization | Yes | Yes | Yes | Yes | Yes | Yes | No |
| Create resource groups for data synchronization | Yes | Yes | Yes | Yes | Yes | No | No |
| View the list of Elastic Compute Service (ECS) instances in resource groups for data synchronization | Yes | Yes | Yes | Yes | Yes | No | No |
| Add ECS instances to resource groups for data synchronization | Yes | Yes | Yes | Yes | Yes | No | No |
| Delete ECS instances from resource groups for data synchronization | Yes | Yes | Yes | Yes | Yes | No | No |
| Modify ECS instances in resource groups for data synchronization | Yes | Yes | Yes | Yes | Yes | No | No |
| Obtain the AccessKey for accessing resource groups for data synchronization | Yes | Yes | Yes | Yes | Yes | No | No |
| Delete resource groups for data synchronization | Yes | Yes | Yes | Yes | Yes | No | No |
| Monitor resource consumption | Yes | Yes | No | No | No | No | No |
| Change the resource group for nodes in Operation Center | Yes | Yes | Yes | Yes | Yes | No | No |
| Access the menu for managing the synchronization node list | Yes | Yes | Yes | Yes | Yes | No | No |
| Convert nodes to scripts | Yes | Yes | Yes | Yes | Yes | No | No |
| Obtain the list of members in a project | Yes | Yes | Yes | Yes | Yes | No | No |
| Call the API operation for creating a node | Yes | Yes | Yes | Yes | Yes | No | No |
| Call the API operation for saving or updating a node | Yes | Yes | Yes | Yes | Yes | No | No |
| Call the API operation for obtaining code based on the file ID | Yes | Yes | Yes | Yes | Yes | Yes | No |
| Obtain the list of Data Integration nodes | Yes | Yes | Yes | Yes | Yes | No | No |
| Call the API operation for searching for tables | Yes | Yes | Yes | Yes | Yes | No | No |
| Call the API operation for searching for fields | Yes | Yes | Yes | Yes | Yes | No | No |
| Call the API operation for querying connections | Yes | Yes | Yes | Yes | Yes | Yes | No |
| Call the API operation for creating a connection | Yes | Yes | No | No | No | No | No |
| Call the API operation for querying the details of a connection | Yes | Yes | Yes | Yes | Yes | No | No |
| Call the API operation for updating a connection | Yes | Yes | No | No | No | No | No |
| Call the API operation for deleting a connection | Yes | Yes | No | No | No | No | No |
| Test connectivity | Yes | Yes | Yes | Yes | Yes | No | No |
| Preview data | Yes | Yes | Yes | Yes | Yes | No | No |
| Check whether Table Store Stream is activated | Yes | Yes | Yes | Yes | Yes | No | No |
| Activate Table Store | Yes | Yes | Yes | Yes | Yes | No | No |
| Query the statements used to create MaxCompute tables | Yes | Yes | Yes | Yes | Yes | No | No |
| Create MaxCompute tables | Yes | Yes | Yes | Yes | Yes | No | No |
| Query the creation status of MaxCompute tables | Yes | Yes | Yes | Yes | Yes | No | No |
| Migrate database tables | Yes | Yes | No | No | No | No | No |