Permissions

There are 3 types of permissions in ODD Platform:

Data entity permissions are always related to particular data entity or list of data entities. Term permissions allow actions for one or several dictionary terms. Finally, management permissions are about general actions in platform (e.g. create new owner or tag etc.).

This is the full list of permissions divided by types:

Data entity permissions

DATA_ENTITY_INTERNAL_NAME_UPDATE. Allows to edit/delete data entity's business name
DATA_ENTITY_CUSTOM_METADATA_CREATE. Allows to create custom metadata for data entity
DATA_ENTITY_CUSTOM_METADATA_UPDATE. Allows to edit custom metadata for data entity
DATA_ENTITY_CUSTOM_METADATA_DELETE. Allows to delete custom metadata for data entity
DATA_ENTITY_DESCRIPTION_UPDATE. Allows to edit/delete data entity's custom description
DATA_ENTITY_OWNERSHIP_CREATE. Allows to create ownership for data entity
DATA_ENTITY_OWNERSHIP_UPDATE. Allows to edit title for data entity ownership
DATA_ENTITY_OWNERSHIP_DELETE. Allows to delete ownership for data entity
DATA_ENTITY_ADD_TO_GROUP. Allows to add data entity to manually created group
DATA_ENTITY_DELETE_FROM_GROUP. Allows to remove data entity from manually created group
DATA_ENTITY_TAGS_UPDATE. Allows to edit data entity's tags
DATA_ENTITY_ADD_TERM. Allows to add term for data entity
DATA_ENTITY_DELETE_TERM. Allows to remove term from data entity
DATA_ENTITY_ALERT_RESOLVE. Allows to resolve alerts for data entity
DATASET_TEST_RUN_SET_SEVERITY. Allows to set severity for dataset's quality tests
DATASET_FIELD_INFO_UPDATE. Allows to edit dataset's field information (description and labels)
DATASET_FIELD_ENUMS_UPDATE. Allows to edit dataset's enum values
DATA_ENTITY_GROUP_UPDATE. Allows to edit manually created data entity group
DATA_ENTITY_GROUP_DELETE. Allows to delete manually created data entity group
QUERY_EXAMPLE_DATASET_CREATE. Allows to create a link between dataset and query example
QUERY_EXAMPLE_DATASET_DELETE. Allows to unlink query example and dataset
ALL. Includes all permissions above

Term permissions

TERM_UPDATE. Allows to edit name/namespace and definition for term
TERM_DELETE. Allows to delete term
TERM_TAGS_UPDATE. Allows to edit tags for term
TERM_OWNERSHIP_CREATE. Allows to create ownerhip for term
TERM_OWNERSHIP_UPDATE. Allows to edit title for term ownership
TERM_OWNERSHIP_DELETE. Allows to delete ownership for term
QUERY_EXAMPLE_TERM_CREATE. Allows to create a link between query example and term
QUERY_EXAMPLE_TERM_DELETE. Allows to unlink query example and term
ALL. Includes all permissions above

Query Example permissions

QUERY_EXAMPLE_CREATE. Allows to create query example
QUERY_EXAMPLE_UPDATE. Allows to edit query example
QUERY_EXAMPLE_DELETE. Allows to delete the query example

Management permissions

DATA_ENTITY_GROUP_CREATE. Allows to create data entity group
TERM_CREATE. Allows to create dictionary term
DATA_SOURCE_CREATE. Allows to create data source
DATA_SOURCE_UPDATE. Allows to edit data source
DATA_SOURCE_DELETE. Allows to delete data source
DATA_SOURCE_TOKEN_REGENERATE. Allows to regenerate security token for data source
COLLECTOR_CREATE. Allows to create collector
COLLECTOR_UPDATE. Allows to edit collector
COLLECTOR_DELETE. Allows to delete collector
COLLECTOR_TOKEN_REGENERATE. Allows to regenerate security token for collector
NAMESPACE_CREATE. Allows to create namespace
NAMESPACE_UPDATE. Allows to edit namespace
NAMESPACE_DELETE. Allows to delete namespace
TAG_CREATE. Allows to create tag
TAG_UPDATE. Allows to edit tag
TAG_DELETE. Allows to delete tag
LABEL_CREATE. Allows to create label
LABEL_UPDATE. Allows to edit label
LABEL_DELETE. Allows to delete label
OWNER_CREATE. Allows to create owner
OWNER_UPDATE. Allows to edit owner
OWNER_DELETE. Allows to delete owner
OWNER_ASSOCIATION_MANAGE. Allows to approve/deny user-owner association requests. (for more details please check User-owner association section)
OWNER_RELATION_MANAGE. Allows to accept or decline ownership association requests and manually assign associations
DIRECT_OWNER_SYNC. Allows to associate user with owner wihout creating association request
POLICY_CREATE. Allows to create policy
POLICY_UPDATE. Allows to edit policy
POLICY_DELETE. Allows to delete policy
ROLE_CREATE. Allows to create role
ROLE_UPDATE. Allows to edit role
ROLE_DELETE. Allows to delete role
LOOKUP_TABLE_CREATE. Allows to create a lookup table
LOOKUP_TABLE_UPDATE. Allows to edit edit name and/or change description of the lookup table
LOOKUP_TABLE_DELETE. Allows to delete the lookup table
LOOKUP_TABLE_DEFINITION_CREATE. Allows to create a structure for lookup table, e. g. create columns
LOOKUP_TABLE_DEFINITION_UPDATE. Allows to edit the definition for lookup table, e. g. modify columns
LOOKUP_TABLE_DEFINITION_DELETE. Allows to delete the definition of lookup table, e. g. delete columns
LOOKUP_TABLE_DATA_CREATE. Allows to create data for lookup table
LOOKUP_TABLE_DATA_UPDATE. Allows to edit data for lookup table
LOOKUP_TABLE_DATA_DELETE. Allows to delete lookup table data
ALL. Includes all permissions above

PreviousPolicies NextRoles

Last updated 9 months ago

Permissions

There are 3 types of permissions in ODD Platform:

This is the full list of permissions divided by types:

Data entity permissions

DATA_ENTITY_INTERNAL_NAME_UPDATE. Allows to edit/delete data entity's business name
DATA_ENTITY_CUSTOM_METADATA_CREATE. Allows to create custom metadata for data entity
DATA_ENTITY_CUSTOM_METADATA_UPDATE. Allows to edit custom metadata for data entity
DATA_ENTITY_CUSTOM_METADATA_DELETE. Allows to delete custom metadata for data entity
DATA_ENTITY_DESCRIPTION_UPDATE. Allows to edit/delete data entity's custom description
DATA_ENTITY_OWNERSHIP_CREATE. Allows to create ownership for data entity
DATA_ENTITY_OWNERSHIP_UPDATE. Allows to edit title for data entity ownership
DATA_ENTITY_OWNERSHIP_DELETE. Allows to delete ownership for data entity
DATA_ENTITY_ADD_TO_GROUP. Allows to add data entity to manually created group
DATA_ENTITY_DELETE_FROM_GROUP. Allows to remove data entity from manually created group
DATA_ENTITY_TAGS_UPDATE. Allows to edit data entity's tags
DATA_ENTITY_ADD_TERM. Allows to add term for data entity
DATA_ENTITY_DELETE_TERM. Allows to remove term from data entity
DATA_ENTITY_ALERT_RESOLVE. Allows to resolve alerts for data entity
DATASET_TEST_RUN_SET_SEVERITY. Allows to set severity for dataset's quality tests
DATASET_FIELD_INFO_UPDATE. Allows to edit dataset's field information (description and labels)
DATASET_FIELD_ENUMS_UPDATE. Allows to edit dataset's enum values
DATA_ENTITY_GROUP_UPDATE. Allows to edit manually created data entity group
DATA_ENTITY_GROUP_DELETE. Allows to delete manually created data entity group
QUERY_EXAMPLE_DATASET_CREATE. Allows to create a link between dataset and query example
QUERY_EXAMPLE_DATASET_DELETE. Allows to unlink query example and dataset
ALL. Includes all permissions above

Term permissions

TERM_UPDATE. Allows to edit name/namespace and definition for term
TERM_DELETE. Allows to delete term
TERM_TAGS_UPDATE. Allows to edit tags for term
TERM_OWNERSHIP_CREATE. Allows to create ownerhip for term
TERM_OWNERSHIP_UPDATE. Allows to edit title for term ownership
TERM_OWNERSHIP_DELETE. Allows to delete ownership for term
QUERY_EXAMPLE_TERM_CREATE. Allows to create a link between query example and term
QUERY_EXAMPLE_TERM_DELETE. Allows to unlink query example and term
ALL. Includes all permissions above

Query Example permissions

QUERY_EXAMPLE_CREATE. Allows to create query example
QUERY_EXAMPLE_UPDATE. Allows to edit query example
QUERY_EXAMPLE_DELETE. Allows to delete the query example

Management permissions

DATA_ENTITY_GROUP_CREATE. Allows to create data entity group
TERM_CREATE. Allows to create dictionary term
DATA_SOURCE_CREATE. Allows to create data source
DATA_SOURCE_UPDATE. Allows to edit data source
DATA_SOURCE_DELETE. Allows to delete data source
DATA_SOURCE_TOKEN_REGENERATE. Allows to regenerate security token for data source
COLLECTOR_CREATE. Allows to create collector
COLLECTOR_UPDATE. Allows to edit collector
COLLECTOR_DELETE. Allows to delete collector
COLLECTOR_TOKEN_REGENERATE. Allows to regenerate security token for collector
NAMESPACE_CREATE. Allows to create namespace
NAMESPACE_UPDATE. Allows to edit namespace
NAMESPACE_DELETE. Allows to delete namespace
TAG_CREATE. Allows to create tag
TAG_UPDATE. Allows to edit tag
TAG_DELETE. Allows to delete tag
LABEL_CREATE. Allows to create label
LABEL_UPDATE. Allows to edit label
LABEL_DELETE. Allows to delete label
OWNER_CREATE. Allows to create owner
OWNER_UPDATE. Allows to edit owner
OWNER_DELETE. Allows to delete owner
OWNER_ASSOCIATION_MANAGE. Allows to approve/deny user-owner association requests. (for more details please check User-owner association section)
OWNER_RELATION_MANAGE. Allows to accept or decline ownership association requests and manually assign associations
DIRECT_OWNER_SYNC. Allows to associate user with owner wihout creating association request
POLICY_CREATE. Allows to create policy
POLICY_UPDATE. Allows to edit policy
POLICY_DELETE. Allows to delete policy
ROLE_CREATE. Allows to create role
ROLE_UPDATE. Allows to edit role
ROLE_DELETE. Allows to delete role
LOOKUP_TABLE_CREATE. Allows to create a lookup table
LOOKUP_TABLE_UPDATE. Allows to edit edit name and/or change description of the lookup table
LOOKUP_TABLE_DELETE. Allows to delete the lookup table
LOOKUP_TABLE_DEFINITION_CREATE. Allows to create a structure for lookup table, e. g. create columns
LOOKUP_TABLE_DEFINITION_UPDATE. Allows to edit the definition for lookup table, e. g. modify columns
LOOKUP_TABLE_DEFINITION_DELETE. Allows to delete the definition of lookup table, e. g. delete columns
LOOKUP_TABLE_DATA_CREATE. Allows to create data for lookup table
LOOKUP_TABLE_DATA_UPDATE. Allows to edit data for lookup table
LOOKUP_TABLE_DATA_DELETE. Allows to delete lookup table data
ALL. Includes all permissions above

PreviousPolicies NextRoles

Last updated 9 months ago