All Products
Search
Document Center

Quick BI:Approval Settings

Last Updated:Jun 23, 2026

Organization administrators can enable the approval flow to let users request permissions for data works, and configure approval channels and default approvers.

Limitations

This feature is available only in Quick BI Pro Edition.

Accessing the configuration page

Log on to the Quick BI console as a permission administrator and open the settings page as shown in the following figure.

image

Authorization settings

In the Approval Settings area on the Collaborative Authorization Settings tab, enable Enable Approval Flow and configure the following parameters.

Parameter

Description

Basic settings

Controls whether users can request permissions for data works across all workspaces in the organization.

  • Enable approval flow: Turn on or off the approval flow.

  • Request settings:

    • Data works page application: Allow users to request permissions from the data works page.

      Note

      Data works include data portals, dashboards, workbooks, self-service queries, ad hoc analysis, data screens, data entry, and exploratory analysis.

    • Column-level permission application: Display a permission request option on datasets for users who lack access.

      For more information, see Approval entry points.

  • Default approver: The default approvers for the approval flow. The available options are permission administrator, workspace administrator, data work owner, and enterprise security administrator.

    You can select multiple default approvers.

    • If you select permission administrator, requesters can choose a specific permission administrator to handle their request.

    • If you select workspace administrator, requesters can choose a specific workspace administrator to handle their request. A workspace administrator can approve requests for all data works in their assigned workspace, including data portals, dashboards, workbooks, self-service queries, ad hoc analysis, data screens, and data entry.

    • If you select data work owner, approval requests are routed to the data work owner by default.

    • If you select enterprise security administrator, requesters can choose a specific enterprise security administrator to handle their request. An enterprise security administrator is a role with permissions for the enterprise security module under system management.

      Note

      An enterprise security administrator is not a specific role name. It refers to any user who has permissions for the Organization Management - Enterprise Security module, which includes centralized authorization, collaborative authorization configuration, and data security. By default, this includes organization administrators and permission administrators, as well as users in custom roles that have been granted these permissions.image

Approval channel

The channel through which the approval flow is processed. Available channels include in-platform approval, custom approval channel, DingTalk approval channel, Feishu approval channel, and Lark approval channel.

  • In-platform approval: The approval flow is processed through the Quick BI platform, and approvers are notified via system messages.

    image

    You can select Allow in-platform approval or Notify only.

    • If you select Allow in-platform approval, requests can be processed within the platform.

    • If you select Notify only, the platform displays a notification for the approval request but does not allow users to approve or reject it directly. This option can be used with features like the DingTalk custom template to dynamically manage approvals in DingTalk, while the in-platform notification serves only as a record. For more information, see Approval permissions.

  • Custom approval channel: The approval flow is routed through your custom channel to notify approvers.

  • DingTalk approval channel: Approval requests are sent to DingTalk, and approvers are automatically notified through application messages. For more information, see DingTalk approval channel.

  • Feishu approval channel: Approval requests are sent to Feishu, and approvers are automatically notified through application messages. For more information, see Feishu approval channel.

  • Lark approval channel: Approval requests are sent to Lark, and approvers are automatically notified through application messages. For more information, see Lark approval channel.

    After you configure these approval channels, users can request permissions for Quick BI resources from the Quick BI interface, and the approval process is handled by the integrated external system.

Note
  • When multiple enterprises are authorized in Office Software Integration, you cannot enable the corresponding office software's approval channel. For example, if multiple DingTalk enterprises are integrated, you cannot enable the DingTalk approval channel.image

  • If a DingTalk, Feishu, or Lark channel is already enabled for approvals, you cannot add multiple enterprise authorizations for that channel.

Approval entry points

You can configure two types of approval entry points: Data works page application and Column-level permission application.

  • Data works page application: Controls whether a permission request entry point is available for data works in all workspaces within the organization.

    • If you select Data works page application, users see permission request entry points in the data works list within a workspace or when viewing a specific data work.

      Data works within a workspace include data portals, dashboards, workbooks, self-service queries, ad hoc analysis, data screens, and data entry. Organization-level data works include exploratory analysis. The following figures use a dashboard as an example.

      • Request edit permissions from the list page within a workspaceimage.png

      • Request view permissions from the list page within a workspaceimage.png

      • Request view permissions from outside the workspace

        image

    • If you do not select Data works page application, users can only see the list of data works but cannot request permissions for them.

  • Column-level permission application: Controls whether to display an entry point for requesting to view masked data.

    • If you select Column-level permission application, the result is shown in the following figure, which uses a line chart as an example.image.png

    • If you do not select Column-level permission application, the result is shown in the following figure, which uses a line chart as an example.image.png

Custom approval flow

After an organization administrator enables a custom approval flow, users can request permissions for Quick BI resources, and approval notifications are sent to the custom channel.

  1. On the configuration management page, create a custom channel as shown in the following figure.image

  2. On the Collaborative Authorization Settings page, enable the custom approval channel as shown in the following figure.

    image

    Now, when users request permissions for Quick BI resources, the custom channel also receives the request notification.

DingTalk approval channel

When the DingTalk approval channel is enabled, permission requests initiated in Quick BI are routed to DingTalk for processing.

  1. If your organization has not bound a DingTalk micro-application and authorized the necessary APIs, go to the configuration page and follow the instructions in the figure to bind a micro-application and authorize the necessary APIs. For detailed instructions, see DingTalk API Authorization.

    image

  2. If your organization has already bound a DingTalk micro-application, you can select the checkbox to enable the DingTalk approval channel and create an approval template.

    image

  3. After creating the template, test it by selecting a recipient and clicking Send Test.

    image

  4. Click Confirm to save the configuration, then test the setup.

    image

Feishu approval channel

When the Feishu approval channel is enabled, permission requests initiated in Quick BI are routed to Feishu for processing.

  1. If your organization has not bound a Feishu micro-application and authorized the necessary APIs, go to the configuration page and follow the instructions in the figure to bind and authorize it. For detailed instructions, see Feishu API Authorization.

    image

  2. If your organization has already bound a Feishu micro-application, you can select the checkbox to enable the Feishu approval channel and create an approval template.

  3. After creating the template, test it by selecting a recipient and clicking Send Test.

    image

  4. Click Confirm to complete the channel configuration.

Lark approval channel

When the Lark approval channel is enabled, permission requests initiated in Quick BI are routed to Lark for processing.

  1. If your organization has not bound a Lark micro-application and authorized the necessary APIs, go to the configuration page and follow the instructions in the figure to bind and authorize it. For detailed instructions, see (Public Cloud) Activate Lark Micro-application.

    image

  2. If your organization has already bound a Lark micro-application, you can select the checkbox to enable the Lark approval channel and create an approval template.

  3. After creating the template, test it by selecting a recipient and clicking Send Test.

    image

  4. Click Confirm to complete the channel configuration.