Data Management (DMS) allows you to customize approval processes for different permission applications. For example, the approval of a database administrator (DBA) is required for permissions on a database in a development environment. The approval of a database owner and a DBA is required for permissions on a database in a production environment to improve data security. You can also customize approval processes so that common users cannot apply for query permissions on a database in a production environment to prevent data breach in an online environment.

Procedure

This example demonstrates how to customize the approval process for permissions on the poc_prod database in a production environment.

  1. Configure security rules as a DMS administrator.
    1. Log on to the DMS console as a DMS administrator.
    2. In the top navigation bar, choose System > Security > Security Rules. The Security Rules tab appears.Path to go to the Security Rules tab
    3. Find the rule set named poc_prod_rule and click Edit in the Actions column.Modify the security rules for the poc_prod database in a production environment
    4. On the Details tab, click the Access apply tab.
    5. Find the [DB-permission application] default approval Template rule and click Edit on the right.
    6. Click Switch Approval Template.

      If you use the default approval template of the system, the approval of only a DBA is required.

    7. Find the template named Owner-->DBA and click Select on the right.
    8. Click Submit.
  2. Apply for permissions as a common user to verify the customized approval process.
    1. Log on to the DMS console as a common user.
    2. In the top navigation bar, choose Permission > Apply Permission > Database-Permission.
    3. On the Permission Application Ticket tab, enter poc_prod as the database name and click Search.
    4. Select the database that you want from the matched result and click Add. The database appears in the Selected Databases/Tables/Columns section.Search
    5. In the Select Permission section, set the parameters as required and click Submit. The following table describes the parameters.Submit
      Parameter Description
      Permission The type of permission for which you want to apply. Valid values: Query, Export, and Change.
      Note You can select one or more permission types.
      Duration The validity period of the selected one or more permissions.
      Reason The description of the business background and the reason for this application. This reduces unnecessary communication and facilitates the approval process.
      Note After a permission application ticket is submitted, wait until the ticket is approved. You can view the status of the ticket in the My Tickets section of the Workbench tab.
    6. Click View Approval Details. The approval process shows that a ticket needs to be approved by a database owner and a DBA.View Approval Details