借助 Dataplex 权限,用户可以对 Dataplex 服务、资源和操作执行特定操作。例如,拥有 dataplex.lake.create 权限的用户可以在您的项目中创建 Dataplex 数据湖。您不直接授予用户权限,而是向其授予角色,角色本身会具有一项或多项权限。
本文档重点介绍与 Dataplex 相关的 IAM 权限。如需详细了解预定义的 Dataplex 角色及其所含权限,请参阅 Dataplex IAM 角色。
准备工作
阅读 IAM 文档。
Dataplex 权限
下表列出了调用 Dataplex API 方法所需的权限。
IAM Set 和 Get Policy 权限
| API 方法 |
IAM 权限 |
| GetIamPolicy |
dataplex.lakes.getIamPolicy |
| SetIamPolicy |
dataplex.lakes.setIamPolicy |
数据湖、区域和资产权限
| API 方法 |
IAM 权限 |
| CreateLake |
dataplex.lakes.create |
| UpdateLake |
dataplex.lakes.update |
| DeleteLake |
dataplex.lakes.delete |
| ListLakes |
dataplex.lakes.list |
| GetLake |
dataplex.lakes.get |
| ListLakeActions |
dataplex.lakeActions.list |
| CreateZone |
dataplex.zones.create |
| UpdateZone |
dataplex.zones.update |
| DeleteZone |
dataplex.zones.delete |
| ListZones |
dataplex.zones.list |
| GetZone |
dataplex.zones.get |
| ListZoneActions |
dataplex.zoneActions.list |
| CreateAsset |
dataplex.assets.create |
| UpdateAsset |
dataplex.assets.update |
| DeleteAsset |
dataplex.assets.delete |
| ListAssets |
dataplex.assets.list |
| GetAsset |
dataplex.assets.get |
| ListAssetActions |
dataplex.assetActions.list |
任务权限
| API 方法 |
IAM 权限 |
| CreateTask |
dataplex.tasks.create |
| UpdateTask |
dataplex.tasks.update |
| DeleteTask |
dataplex.tasks.delete |
| ListTasks |
dataplex.tasks.list |
| GetTask |
dataplex.tasks.get |
| ListJobs |
dataplex.tasks.get |
| GetJob |
dataplex.tasks.get |
| CancelJob |
dataplex.tasks.cancel |
环境权限
| API 方法 |
IAM 权限 |
| CreateEnvironment |
dataplex.environments.create |
| UpdateEnvironment |
dataplex.environments.update |
| DeleteEnvironment |
dataplex.environments.delete |
| ListEnvironments |
dataplex.environments.list |
| GetEnvironment |
dataplex.environments.get |
| CreateContent |
dataplex.content.create |
| UpdateContent |
dataplex.content.update |
| DeleteContent |
dataplex.content.delete |
| ListContent |
dataplex.content.list |
| GetContent |
dataplex.content.get |
| ListSessions |
dataplex.environments.get |
| API 方法 |
IAM 权限 |
| CreateEntity |
dataplex.entities.create |
| UpdateEntity |
dataplex.entities.update |
| DeleteEntity |
dataplex.entities.delete |
| GetEntity |
dataplex.entities.get |
| ListEntities |
dataplex.entities.list |
| CreatePartition |
dataplex.partitions.create |
| UpdatePartition |
dataplex.partitions.update |
| DeletePartition |
dataplex.partitions.delete |
| GetPartition |
dataplex.partitions.get |
| ListPartitions |
dataplex.partitions.list |
DataScan 权限
| API 方法 |
IAM 权限 |
| CreateDataScan |
dataplex.datascans.create |
| UpdateDataScan |
dataplex.datascans.update |
| DeleteDataScan |
dataplex.datascans.delete |
| ListDataScans |
dataplex.datascans.list |
| GetDataScan(基本视图) |
dataplex.datascans.get |
| GetDataScan(全视图) |
dataplex.datascans.getData |
| ListDataScanJobs |
dataplex.datascans.get |
| GetDataScanJob(基本视图) |
dataplex.datascans.get |
| GetDataScanJob(完整视图) |
dataplex.datascans.getData |
| RunDataScan |
dataplex.datascans.run |
