Data Management:Data tracking

Terms

Checkpoint

Factors and actions

• Factor: A factor is a predefined variable provided by DMS. You can use factors to obtain the context to be validated by security rules, such as the categories of SQL statements and the number of data rows to be affected. A factor name consists of the prefix @fac. and the display name of the factor. Each module provides different factors for different checkpoints. The following table describes the factors supported in Data Tracking.

  Factor	Description
  @fac.log_size	The size of the logs to be queried in the data tracking task. Unit: MB. Warning If the size of the logs to be queried is too large, the tracking process consumes a large number of bandwidth resources of database servers. This affects online business.

• Action: An action is the operation that DMS performs after the conditions specified in the if statement are met. For example, DMS forbids the submission of a ticket, selects an approval process, approves a ticket, or rejects a ticket. Actions demonstrate the purposes of security rules. An action name consists of the prefix @act. and the display name of the action. Each module provides different actions for different checkpoints. The following table describes the actions supported in Data Tracking.

  Action	Description
  @act.forbid_submit_order	Forbids a ticket submission. The statement is in the following format: @act.forbid_submit_order 'Reasons for forbidding the ticket submission'.
  @act.do_not_approve	Specifies the ID of the approval template. For more information, see Configure approval processes.
  @act.choose_approve_template
  @act.choose_approve_template_with_reason

Templates of security rules

Modify the default approval template

1. Log on to the DMS console V5.0.
2. In the top navigation bar, choose Security and Specifications > Security Rules.
3. On the Security Rules tab, find the target rule set and click Edit in the Actions column.
4. In the left-side navigation pane of the Details page, choose Database Development > Data Tracking.
5. On the Data Tracking tab, click Basic Configuration Item.
6. Find Data Tracking Default Approval Template and click Edit in the Actions column.
7. In the Change Configuration Item dialog box that appears, click Switch Approval Template.
8. Find the target template and click Select in the Actions column.
   Note You can also click Reset to Free of Approval to skip the approval for tickets.
9. Click Submit.

Create a security rule

1. Log on to the DMS console V5.0.
2. In the top navigation bar, choose Security and Specifications > Security Rules.
3. On the Security Rules tab, find the target rule set and click Edit in the Actions column.
4. In the left-side navigation pane of the Details page, choose Database Development > Data Tracking.
5. On the Data Tracking tab, click Create Rule.
6. In the Create Rule - Data Tracking dialog box that appears, set the following parameters:

   Parameter	Description
   Checkpoints	Required. The checkpoint under which you want to create the security rule. The Approval Rule Validation checkpoint is provided in Data Tracking.
   Template Database	Optional. The template based on which you want to create the security rule. DMS provides various predefined templates of security rules. After you select a checkpoint from the Checkpoints drop-down list, you can click Load from Template Database to select a template. For more information about available templates, see Templates of security rules.
   Rule Name	Required. The name of the custom security rule. Note If you load a security rule from a template, the rule name is automatically entered.
   Rule DSL	Required. The DSL statement that you want to use to configure the security rule. For more information, see DSL syntax for security rules. Note If you load a security rule from a template, the DSL statement is automatically entered.

7. Click Submit.
8. By default, the security rule that you create is in the Disabled state. Click Enable in the Actions column.
9. In the dialog box that appears, click OK.