The Table Sync module in Data Management (DMS) lets you define security rules that control four table-related operations: Schema Synchronization, Shadow Table Synchronization, Empty Database Initialization, and Table Consistency Repair. Security rules determine whether SQL statements can run, which approval process applies, and how long the analysis phase script remains valid.
How it works
When a user submits a ticket for a table sync operation, DMS evaluates security rules in this order:
A user submits a ticket — for example, a Schema Synchronization ticket.
DMS evaluates the Basic Configuration Item settings. If execution capability is disabled, no SQL statements run and all other rules in the Table Sync module become invalid.
DMS evaluates the checkpoint that matches the ticket type — in this case, Schema Synchronization Validation.
Based on the matching rules, DMS either blocks the ticket, routes it through an approval process, or auto-approves it.
Each checkpoint is independent. Only the rules configured for the matching checkpoint apply to a given ticket type:
| Checkpoint | Applies to |
|---|---|
| Schema Synchronization Validation | Schema Synchronization tickets |
| Shadow Table Synchronization Validation | Shadow Table Synchronization tickets |
| Empty Database Initialization Validation | Empty Database Initialization tickets |
| Table Consistency Repair Validation | Table Consistency Repair tickets |
Basic configuration items
Three basic configuration items apply globally across all four operation types in the Table Sync module:
| Configuration item | Description |
|---|---|
| Enable execution capability | Controls whether SQL-based synchronization is active. When set to OFF, DMS can compare table schemas but does not run SQL statements, and all other rules in the Table Sync module become invalid. |
| Database table synchronization default approval Template | The default approval template for table synchronization tickets. Switch to a different template as needed. |
| Analysis phase script Expiration Time | The validity period of the analysis phase script. If the destination database schema changes during this period, you can cancel the synchronization before execution. |
Factors and actions
Security rules within each checkpoint use factors (condition variables) and actions (operations DMS performs when a condition is met), written in domain-specific language (DSL) syntax.
Factors
Factors are predefined variables that provide context — such as environment type or schema name — for rule evaluation. Use them in the IF condition of a rule.
| Factor | Description |
|---|---|
@fac.env_type | The environment type of the instance. The value is the display name of the environment type, such as DEV or PRODUCT. See Change the environment type of an instance. |
@fac.schema_name | The name of the schema. |
Factor names use the format @fac.<display-name>.
Actions
Actions define what DMS does when a rule's IF condition is met.
| Action | Description |
|---|---|
@act.forbid_submit_order | Blocks the ticket from being submitted. Format: @act.forbid_submit_order 'Reason for blocking'. |
@act.do_not_approve | Specifies the ID of an approval template to use. See Configure approval processes. |
@act.choose_approve_template | |
@act.choose_approve_template_with_reason |
Action names use the format @act.<display-name>.
For DSL syntax details, see DSL syntax for security rules.
Security rule templates
DMS provides predefined templates for each checkpoint. Select a template that matches your environment and compliance requirements.
| Checkpoint | Template |
|---|---|
| Schema Synchronization Validation | Free of Approval for schema synchronization in a test environment |
| Disable SQL execution for schema synchronization | |
| Disable SQL execution for schema synchronization in an online environment | |
| Approval process for schema synchronization in an online environment | |
| Shadow Table Synchronization Validation | Free of Approval for shadow table synchronization in a test environment |
| Disable SQL execution for shadow table synchronization | |
| Disable SQL execution for shadow table synchronization in an online environment | |
| Approval process for shadow table synchronization in an online environment | |
| Empty Database Initialization Validation | Free of Approval for empty database initialization in a test environment |
| Disable SQL execution for empty database initialization | |
| Disable SQL execution for empty database initialization in an online environment | |
| Approval process for empty database initialization in an online environment | |
| Table Consistency Repair Validation | Free of Approval for table consistency repair in a test environment |
| Disable SQL execution for table consistency repair | |
| Disable SQL execution for table consistency repair in an online environment | |
| Approval process for table consistency repair in an online environment |
Enable execution capability
To enable SQL-based synchronization, set the Enable execution capability (if closed, other rules are invalid) configuration item to ON.
Log on to the DMS console V5.0.
Move the pointer over the
icon in the upper-left corner and choose All functions > Security and Specifications > Security Rules.In normal mode, choose Security and Specifications > Security Rules in the top navigation bar.
On the Security Rules tab, find the security rule set to modify and click Edit in the Actions column.
On the Details page, choose Database Development > Table Sync in the left-side navigation pane.
On the Table Sync tab, click Basic Configuration Item.
Find Enable execution capability (if closed, other rules are invalid) and click Edit in the Actions column.
In the Change Configuration Item dialog box, turn on Configuration Value.
Click Submit.
Change the default approval template
Log on to the DMS console V5.0.
Move the pointer over the
icon in the upper-left corner and choose All functions > Security and Specifications > Security Rules.In normal mode, choose Security and Specifications > Security Rules in the top navigation bar.
On the Security Rules tab, find the security rule set to modify and click Edit in the Actions column.
On the Details page, choose Database Development > Table Sync in the left-side navigation pane.
On the Table Sync tab, click Basic Configuration Item.
Find Database table synchronization default approval Template and click Edit in the Actions column.
In the Change Configuration Item dialog box, click Switch Approval Template.
Find the template to apply and click Select in the Actions column.
To skip the approval process entirely, click Reset to Free of Approval.
Click Submit.
Create a rule
Log on to the DMS console V5.0.
Move the pointer over the
icon in the upper-left corner and choose All functions > Security and Specifications > Security Rules.In normal mode, choose Security and Specifications > Security Rules in the top navigation bar.
On the Security Rules tab, find the security rule set to modify and click Edit in the Actions column.
On the Details page, choose Database Development > Table Sync in the left-side navigation pane.
On the Table Sync tab, click Create Rule next to Actions.
In the Create Rule - Table Sync dialog box, set the following parameters.
Parameter Description Checkpoints Required. The checkpoint for this rule: Schema Synchronization Validation, Shadow Table Synchronization Validation, Empty Database Initialization Validation, or Table Consistency Repair Validation. Template Database Optional. A predefined template to use as a starting point. After selecting a checkpoint, click Load from Template Database to browse available templates. See Security rule templates. Rule Name Required. A name for the rule. Auto-populated when loading from a template. Rule DSL Required. The DSL statement that defines the rule condition and action. Auto-populated when loading from a template. See DSL syntax for security rules. Click Submit.
The new rule is in the Disabled state by default. Click Enable in the Actions column.
Click OK to confirm.