This topic describes how to grant permissions to Alibaba Cloud accounts or Resource Access Management (RAM) users in the development console of fully managed Flink.

Background information

If your RAM user is not authorized by your Alibaba Cloud account, you can view the 403 error after you log on to the development console of fully managed Flink.

Procedure

  1. Log on to the Realtime Compute for Apache Flink console.
  2. On the Fully Managed Flink tab, click Development Console in the Actions column of the desired workspace.
  3. In the left-side navigation pane, choose Administration > Members.
  4. Click Add Member.
  5. Specify Role and enter Member information.Add a member
    • Role
      The following table describes the functional differences between different roles.
      Function owner editor viewer
      View a job list Y Y Y
      Start and terminate a job Y Y N
      Modify job configurations Y Y N
      Upload a JAR file Y Y N
      Compile SQL statements Y Y N
      Register a user-defined function (UDF) Y Y N
      Register metadata Y Y N
      View a job template Y Y Y
      Add, delete, or modify a job template Y Y N
      Manage members Y N N
    • Member: the user identifier (UID) or display name of a RAM user. You can obtain the UID and display name of a RAM user by performing the following steps:
      1. Log on to the RAM console by using an Alibaba Cloud account.
      2. In the left-side navigation pane, choose Identities > Users.
      3. Click the logon name of the desired RAM user.
      4. In the Basic Information section, view the UID and the display name.
  6. Click OK.