All Products
Search

This Product

    Quick BI:Approval Settings

    Document Center

    Quick BI:Approval Settings

    Last Updated:Nov 13, 2025

    After you enable the approval workflow, an organization administrator can configure an entry point for users to request permissions on data works. The administrator can also configure the approval workflow channel and default approvers.

    Limits

    Only the Professional Edition of Quick BI supports configuring approval permissions.

    Accessing the Feature

    A permission administrator logs on to the Quick BI console and grants data permissions using the organization-level switch, as shown in the following figure.

    image

    Authorization Settings

    On the Collaborative Authorization Settings tab, in the Approval Settings area, enable Enable Approval Flow and configure the following parameters.

    Configuration item

    Description

    Basic Settings

    Specifies whether to provide an entry point to request permissions on data works in all workspaces within the organization.

    • Enable Approval Flow: Specifies whether to enable the approval workflow.

    • Application Settings:

      • Data Work Page Application: If selected, unauthorized users can see the request entry point on the data work page.

        Note

        Data works include BI portals, dashboards, workbooks, ad hoc analysis, data dashboards, and data entry forms.

      • Column-level Permission Application: If selected, unauthorized users can see the request entry point on datasets.

        For more information, see Set an Approval Entry Point.

    • Default Approver: Sets the default approver for the approval workflow. Default approvers include Permission Administrator, Workspace Administrator, Data Work Owner, and Enterprise Security Administrator.

      You can select multiple default approvers.

      • If you select Permission Administrator, you can select a permission administrator when you submit a permission request.

      • If you select Workspace Administrator, you can select a workspace administrator when you submit a permission request. Workspace administrators can approve all work objects in their workspaces. These objects include BI portals, dashboards, workbooks, self-service retrieval, ad hoc analysis, data dashboards, and data entry forms.

      • If you select Data Work Owner, submitted approval requests are sent to the data work owner for approval by default.

      • If you select Enterprise Security Administrator, you can select an enterprise security administrator when you submit a permission request. An enterprise security administrator is a role that has permissions for the Enterprise Security module in System Administration.

        Note

        The Enterprise Security Administrator is not a specific role. It refers to a user with permissions for the Enterprise Security module under Organization Management. This module includes centralized authorization, collaborative authorization configuration, and data security. By default, organization administrators and permission administrators have these permissions. Users in custom organization roles can also be granted these permissions.image

    Approval Channel

    Sets the approval channel for permission requests. Approval channels include in-platform approval, a custom approval channel, DingTalk channel, Feishu channel, and Lark channel.

    • In-platform Approval: If selected, the approval workflow notifies the approver through system messages on the Quick BI platform.

      image

      You can select Allow In-platform Approval or Notification Only.

      • If you select Allow In-platform Approval, you can process approvals on the platform.

      • If you select Notification Only, the platform only lets you view approval notifications. You cannot perform approval operations directly. You can use this with the custom DingTalk template feature to implement dynamic countersigning in DingTalk. The in-platform approval record serves only as an identifier. For more information, see Approve permissions.

    • Custom approval channel: If selected, the approval workflow uses your custom approval channel to notify the approver.

    • DingTalk channel approval: If selected, approval workflows are pushed to DingTalk users, and application message notifications are automatically sent to the approver. For more information, see DingTalk channel approval.

    • Feishu channel approval: If selected, approval workflows are pushed to Feishu users, and application message notifications are automatically sent to the approver. For more information, see Feishu channel approval.

    • Lark channel approval: If selected, approval workflows are pushed to Lark users, and application message notifications are automatically sent to the approver. For more information, see Lark channel approval.

      After you configure the approval workflow API, users with Quick BI accounts and external system accounts can directly initiate permission requests for external systems in Quick BI.

    Note

    • If multiple enterprises are authorized in Office Software Integration, you cannot enable the approval channel for the corresponding office software. For example, if multiple DingTalk enterprises are connected, you cannot enable DingTalk channel approval.image

    • If approval is enabled for the DingTalk, Feishu, or Lark channel, you cannot add multiple enterprise authorizations for that channel.

    Set an Approval Entry Point

    The approval entry point settings include Data Work Page Application and Column-level Permission Application.

    • Data Work Page Application: Specifies whether to display an entry point for requesting permissions on data works in all workspaces of the organization.

      • If you select Data Work Page Application, users can see the entry point to request permissions in the data work list.

        Data works include BI portals, dashboards, workbooks, ad hoc analysis, data dashboards, and data entry forms. The following example uses a dashboard.

        Entry point to request edit permissionsimage.png Entry point to request access permissionsimage.png

      • If you do not select Data Work Page Application, users can only view the data work list and cannot request permissions for them.

    • Column-level Permission Application: Specifies whether to display an entry point to request to view masked fields when a user views masked data.

      • If you select Column-level Permission Application, the result is shown in the following figure, which uses a line chart as an example.image.png

      • If you do not select Column-level Permission Application, the result is shown in the following figure, which uses a line chart as an example.image.png

    Enable a Custom Approval Workflow

    After an organization administrator enables and configures the approval workflow, you can initiate permission requests for external systems directly in Quick BI.

    1. On the Configuration Management page, you can create a custom channel as shown in the following figure.image

    2. On the Collaborative Configuration page, enable the custom approval channel as shown in the following figure.

      image

      When users request resource permissions in Quick BI, the custom channel also receives the request notifications.

    DingTalk channel approval

    When an organization administrator enables the approval workflow and selects the DingTalk channel, you can initiate permission requests in Quick BI and push the requests to DingTalk for approval.

    1. If the current organization has not been attached to a DingTalk mini app or granted DingTalk API permissions, you can attach the mini app and grant the permissions on the configuration page as shown in the following figure. For more information, see Grant permissions to DingTalk APIs.

      image

    2. If the current organization is already attached to a DingTalk mini app, select the checkbox to enable DingTalk channel approval and create an approval template.

      image

    3. After you create the template, test the template content. Select a recipient and click Send Test.

      image

    4. Click Confirm to complete the channel configuration. Then, you can perform tests.

      image

    Lark channel approval

    When an organization administrator enables the approval workflow and selects the Lark channel, you can initiate permission requests in Quick BI and push the requests to Lark for approval.

    1. If the current organization has not been attached to a Lark mini app or granted Lark API permissions, you can attach the mini app and grant the permissions on the configuration page as shown in the following figure. For more information, see Grant permissions to Lark APIs.

      image

    2. If the current organization is already attached to a Lark mini app, select the checkbox to enable Lark channel approval and create an approval template.

    3. After you create the template, test the template content. Select a recipient and click Send Test.

      image

    4. Click Confirm to complete the channel configuration.

    Lark channel approval

    When an organization administrator enables the approval workflow and selects the Lark channel, you can initiate permission requests in Quick BI and push the requests to Lark for approval.

    1. If the current organization has not been attached to a Lark mini app or granted Lark API permissions, you can attach the mini app and grant the permissions on the configuration page as shown in the following figure. For more information, see (Public Cloud) Activate Lark Mini App.

      image

    2. If the current organization is already attached to a Lark mini app, you can select the checkbox to enable Lark channel approval and create an approval template.

    3. After you create the template, you can test the template content. Select a recipient and click Send Test.

      image

    4. Click Confirm to complete the channel configuration.