Creates a permission request order.
Debugging
Authorization information
Request parameters
| Parameter | Type | Required | Description | Example |
|---|---|---|---|---|
| ApplyUserIds | string | Yes | The ID of the Alibaba Cloud account for which you want to request permissions. If you want to request permissions for multiple Alibaba Cloud accounts, separate the IDs of the accounts with commas (,). | 267842600408993176,267842600408993177 |
| Deadline | long | No | The expiration time of the permissions that you request. This value is a UNIX timestamp. The default value is January 1, 2065. If LabelSecurity is disabled for the MaxCompute project in which you want to request permissions on the fields of a table, or the security level of the fields is 0 or is lower than or equal to the security level of the Alibaba Cloud account for which you want to request permissions, you can request only permanent permissions. You can go to the Workspace Management page in the DataWorks console, click MaxCompute Management in the left-side navigation pane, and then check whether column-level access control is enabled. You can go to your DataWorks workspace, view the security level of the fields in Data Map, and then view the security level of the Alibaba Cloud account on the User Management page. | 1617115071885 |
| ApplyReason | string | Yes | The reason for your request. The administrator determines whether to approve the request based on the reason. | I need to use this table |
| MaxComputeProjectName | string | Yes | The name of the MaxCompute project in which you request permissions on the fields of a table. | aMaxcomputeProjectName |
| WorkspaceId | integer | Yes | The ID of the DataWorks workspace that is associated with the MaxCompute project in which you want to request permissions on the fields of a table. You can go to the SettingCenter page in the DataWorks console to view the workspace ID. | 12345 |
| OrderType | integer | No | The type of the permission request order. The parameter value is 1 and cannot be changed. This value indicates ACL-based authorization. | 1 |
| EngineType | string | No | The type of the compute engine in which you want to request permissions on the fields of a table. The parameter value is odps and cannot be changed. This value indicates that you can request permissions only on fields of tables in the MaxCompute compute engine. | odps |
| ApplyObject | array<object> | Yes | The objects on which you want to request permissions. | |
| object | Yes | |||
| Actions | string | Yes | The permission that you want to request. If you want to request multiple permissions at the same time, separate them with commas (,). You can request only the following permissions: Select, Describe, Drop, Alter, Update, and Download. | Select,Describe |
| ColumnMetaList | array<object> | Yes | The fields on which you want to request permissions. | |
| object | No | |||
| Name | string | Yes | The field on which you want to request permissions. If you want to request permissions on an entire table, enter all fields in the table. You can request permissions on specific fields of a table in a MaxCompute project only after LabelSecurity is enabled for this project. If LabelSecurity is disabled, you can request permissions only on an entire table. | aColumnName |
| Name | string | Yes | The name of the object on which you want to request permissions. You can request permissions only on MaxCompute tables. Set this parameter to the name of the table on which you want to request permissions. | aTableName |
Response parameters
Examples
Sample success responses
JSONformat
{
"RequestId": "0bc1ec92159376****",
"FlowId": [
"ee276e6e-5d34-46d8-b848-bca7879ed233"
]
}Error codes
For a list of error codes, visit the Service error codes.
Change history
| Change time | Summary of changes | Operation |
|---|---|---|
| 2023-06-28 | The internal configuration of the API is changed, but the call is not affected | View Change Details |