How to view and manage Approval Owner anomalies for tables in Data Map - DataWorks

DataWorks supports permission request and approval workflows for tables and columns, where Approval Owners hold the corresponding approval permissions. If an Approval Owner's Alibaba Cloud account becomes invalid, you must address the issue promptly to prevent blocked approvals and ensure smooth operations. This topic describes how to view and manage Approval Owner anomalies for tables in Data Map.

Limitations

Approval Owner Governance is currently in Beta. We encourage you to try it out and provide feedback.
Approval Owner Governance is currently supported only for MaxCompute tables.

Access Approval Owner Governance

Log on to the DataWorks console. In the top navigation bar, select the desired region. In the left-side navigation pane, choose Data Governance > Data Map. On the page that appears, click Go to Data Map.
In the left-side navigation pane, click My Data. The My Data > Owned by Me page appears by default.
In the left-side navigation pane, click My Tools > Approver Governance. The Approver Governance page appears.

View abnormal Approval Owners

View the list of Approval Owner anomalies on the Approver Governance page.

Note

The list displays anomalies only for workspaces where you have administrator permissions.

Name	Description
Table Name	The table name. Click the name to navigate to the Details page.
Project	The name of the associated MaxCompute project. A suffix indicates the environment (e.g., _dev for the development environment).
Environment	The DataWorks workspace environment. A workspace includes Development and Production environments.
Abnormal Approver	Approver: The permission approver. This role represents the business-level table owner. View the Approval Owner in Data Map > Table Details Page > Basic Information. Note The default Approval Owner is the creator of the table. Table Owner: The technical table owner. You can run the `desc` command to query information about a MaxCompute table or view. The result includes the Table Owner information.
Exception Cause	The system identifies anomalies based on these criteria (in descending priority): The production environment Approval Owner differs from the development environment owner. The Approval Owner's Alibaba Cloud account (in development or production) no longer exists. The Approval Owner (in development or production) is not a member of the current tenant.
Recommended Owner	The system recommends a new owner based on the cause of the anomaly and the recommendation strategy.
Recommendation Reason	The system uses the following strategies to recommend an Approval Owner (in descending order of priority): For a production table, the Approval Owner of the valid development table is used. The owner of the task that produces the current table is recommended. The Approval Owner of the corresponding development table, derived from the task owner generating the production table, is recommended. The Approval Owner is recommended based on the default security policy configured in Security Center. The entity recipient defined in Security Center workspace-level transfer rules is recommended. The workspace administrator is used as the Approval Owner. This strategy applies if Security Center is not deployed or activated, or if transfer rules are not configured for the target workspace in Security Center.
Storage	The volume of data stored in the table.
Created At	The time when the table was created.
Updated At	The time when the table was last updated.
Actions	Includes Transfer and Add to Whitelist. See Transfer abnormal Approval Owners and Manage whitelist.
Batch Operation	Includes Transfer and Add to Whitelist. See Transfer abnormal Approval Owners and Manage whitelist.

Transfer abnormal Approval Owners

On the Approval Owner Governance page, select one or more tables and click Transfer.
In the Transfer dialog box, select a transfer type:
1. Recommended: Transfer permissions to the recommended owner. You can preview the recommended owner in the list on the Approval Owner Governance page.
2. Custom: Transfer permissions to a specific owner. The target owner must be a member of the table's workspace, or the transfer will fail.
Click Confirm.
To view the transfer status and details, go to the My Tools > Transfer Logs page.

Manage whitelist

Add to whitelist
To exempt specific tables from anomaly detection, click Add to Whitelist to add them to the whitelist.
View whitelist
On the Approval Owner Governance page, click Manage Whitelist to view the details of the tables in the whitelist.
Remove from whitelist
On the Approval Owner Governance page, click Manage Whitelist. In the Manage Whitelist dialog box, click Remove from Whitelist to restore tables to the pending list.

View transfer logs

Go to the My Data page and click My Tools > Transfer Logs to navigate to the transfer log page.

View the details of each transfer operation on the page:

Name	Description
Transfer Task ID	Each transfer operation (involving one or more tables) generates a unique transfer task ID.
Operator	The person who performed the transfer.
Status	The status of the transfer task. Valid values: Success, Failed, and Transferring.
Start Time	The time when the transfer task started.
End Time	The time when the transfer task ended.
Actions	Includes View Details.

Click View Details in the Operation column corresponding to the target transfer task ID. In the Transfer Log Details dialog box, you can view information about the transferred tables.

FAQ

Error: The message "Execution timed out. Please try again." appears during a transfer operation.

Solution: For a large number of tables, transfer them in batches or use Entity ownership transfer.