Login
      Contents x
      Managing Data Flow permissions
        • Print
        • PDF
        Contents

        Managing Data Flow permissions

          • Print
          • PDF
          Article Summary

          Available in VPC

          You can use Sub Account, the account management service of NAVER Cloud Platform, to set various access permissions for Data Flow. Sub Account provides System Managed policies and User Created policies for setting management and administration permissions.

          Note

          Sub Account is a service provided free of charge upon subscription. For more information on Sub Account, see Service > Management & Governance > Sub Account on the NAVER Cloud Platform console or see Sub Account user guide.

          System-managed policies

          System-managed policies are role-based policies defined by NAVER Cloud Platform for user convenience. Once system managed policies are granted to a sub account created in Sub Account, that sub account can use Data Flow. The following is a brief description about system managed policies of Data Flow.

          Policy namePolicy description
          NCP_ADMINISTRATORPermission to access the portal and console in NAVER Cloud Platform in the same manner as main accounts
          NCP_INFRA_MANAGERPermission to use all services in NAVER Cloud Platform except some of the options in My Page (Manage usage, manage payments, solution usages)
          NCP_DATA_FLOW_MANAGERPermission to use all features within VPC-based Data Flow
          NCP_DATA_FLOW_VIEWERPermission to only use the view feature of the VPC-based Data Flow
          NCP_DATA_FLOW_SERVICE_ROLEPermission given for the service role of the Data Flow service

          User-created policies

          User-created policies are policies created by users. User-created policies can be assigned to sub accounts created on Sub Account to allow the sub account to use combinations of actions assigned by the user. The following is a brief description about user-created policies of Data Flow.

          ClassificationAction nameRelated action(s)Resource typeGroup by resource typeAction description
          ViewView/getWorkflowList--WorkflowView workflow list
          ViewView/getWorkflowDetailView/getWorkflowListWorkflowWorkflowView workflow details
          ViewView/getJobList--JobView job list
          ViewView/getJobDetailView/getJobListJobJobView job details
          ViewView/getBucketList--JobView the list of bucket currently in use in Object Storage
          ViewView/getObjectListView/getBucketListObject Storage:BucketJobGet the list of files in the Object Storage bucket and view bucket details
          ViewView/getDatacatalogDBList--JobView the Data Catalog database list
          ViewView/getDatacatalogDBDetailView/getDatacatalogDBListData Catalog:DatabaseJobView the Data Catalog database details
          ViewView/getDatacatalogTableList--JobView the Data Catalog table list
          ViewView/getDatacatalogTableDetailView/getDatacatalogTableListData Catalog:DatabaseJobView the Data Catalog table details
          ViewView/getDatacatalogSchemaVersionList--JobView the Data Catalog schema version list
          ViewView/getDatacatalogSchemaVersionDetailView/getDatacatalogSchemaVersionListData Catalog:DatabaseJobView the Data Catalog schema version details
          ViewView/getDatacatalogConnectionList--JobView the Data Catalog connection list
          ViewView/getDatacatalogConnectionDetailView/getDatacatalogConnectionListData Catalog:ConnectionJobView the Data Catalog connection details
          ViewView/getTriggerList--TriggerView the Data Flow trigger list
          ViewView/getTriggerDetailView/getTriggerListTriggerTriggerView the Data Flow trigger details
          ViewView/getServiceRoleList--JobView Service Role list
          ViewView/getServiceRoleDetailView/getServiceRoleListSubaccount:RoleJobView ServiceRole details
          ChangeChange/SubscribeProduct---Subscribe or unsubscribe of Data Flow service
          ChangeChange/createWorkflowView/getWorkflowList
          View/getWorkflowDetail
          View/getJobList
          View/getJobDetail
          View/getTriggerList
          View/getTriggerDetail
          Change/createTrigger          		WorkflowWorkflowCreate Data Flow workflow
          ChangeChange/deleteWorkflowView/getWorkflowList
          View/getWorkflowDetail          		WorkflowWorkflowDelete Data Flow workflow
          ChangeChange/updateWorkflowView/getWorkflowList
          View/getWorkflowDetail          		WorkflowWorkflowTemporarily save or set information save with Data Flow workflow
          ChangeChange/createJobChange/createBucket
          View/getJobList
          View/getJobDetail
          View/getBucketList 
          View/getObjectList
          View/getDatacatalogDBList
          View/getDatacatalogDBDetail
          View/getDatacatalogTableList
          View/getDatacatalogTableDetail
          View/getDatacatalogSchemaVersionList
          View/getDatacatalogSchemaVersionDetail
          View/getDatacatalogConnectionList
          View/getDatacatalogConnectionDetail          		-JobCreate Data Flow job
          ChangeChange/deleteJobView/getJobList
          View/getJobDetail          		JobJobDelete Data Flow job
          ChangeChange/executeJobChange/writeObject
          View/getWorkflowList
          View/getWorkflowDetail
          View/getJobList
          View/getJobDetail
          View/getTriggerList
          View/getTriggerDetail          		JobJobExecute Data Flow job
          ChangeChange/updateJobExecutionView/getWorkflowList
          View/getWorkflowDetail
          View/getJobList
          View/getJobDetail
          View/getTriggerList
          View/getTriggerDetail          		JobJobEdit Data Flow job execution option
          ChangeChange/writeObjectView/getBucketList
          View/getObjectList          		Object Storage:BucketJobCreate or change object of Object Storage bucket
          ChangeChange/createBucketView/getBucketList-JobCreate Data Flow bucket in Object Storage
          ChangeChange/updateJobView/getWorkflowList
          View/getWorkflowDetail
          View/getJobList
          View/getJobDetail
          View/getTriggerList
          View/getTriggerDetail          		JobJobEdit Data Flow job details
          ChangeChange/createTrigger--TriggerCreate Data Flow trigger
          ChangeChange/deleteTriggerView/getTriggerList
          View/getTriggerDetail          		TriggerTriggerDelete Data Flow trigger
          ChangeChange/createServiceRoleView/getServiceRoleListSubaccount:RoleJobCreate Service Role for executing Data Flow job
          Caution

          If you are granted permission for a certain action but not for the required actions that are related, you cannot run the job properly. To prevent such issues, Sub Account provides a feature that automatically grants permissions for related actions when granting action permissions. However, if you deselect the related actions that are automatically assigned, the system considers it as having been done intentionally and does not forcibly include them. Thus, take caution when setting permissions.

          Was this article helpful?
          What's Next
          Change password!
          Changing your password will log you out immediately. Use the new password to log back in.
          Change profile
          Success!
          First name must have atleast 2 characters. Numbers and special characters are not allowed.
          Last name must have atleast 1 characters. Numbers and special characters are not allowed.
          Enter a valid email
          Enter a valid password
          Your profile has been successfully updated.
          Logout