检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
On the API Credentials page, obtain the account name, account ID, IAM username, and IAM user ID, and obtain the project and its ID from the project list.
Application authentication: Step 3 in "Preparations for Using the SDK" IAM authentication for an API in DataArts DataService Exclusive published to the gateway: An API using the IAM authentication method cannot directly access the cluster through token authentication. 401 Authorization
Users with the Tenant Administrator permissions can perform all operations except IAM user management. For security purposes, you are not advised to grant the Tenant Administrator permissions to IAM users.
Enumerated values: APP: app IAM: IAM APIG: APIG (discarded) APIGW: APIGW (deprecated) DLM: DataArts DataService (deprecated) ROMA_APIC: ROMA (deprecated) Status code: 400 Table 4 Response body parameters Parameter Type Description error_code String Error code. error_msg String Error
User information has been synchronized from IAM to the data source. For details, see Synchronizing IAM Users to the Data Source.
Configuring Minimum Permissions Log in to the IAM console using the a Huawei account. Choose Agencies in the navigation pane on the left and locate the default dlg_agency created by the system. Figure 1 dlg_agency Click Authorize in the Operation column.
X-Auth-Token Yes String IAM token. For details about how to obtain it, see Authentication.
You can obtain it from the value of X-Subject-Token in the response message header returned by the "Obtaining a User Token" API of the IAM service. workspace Yes String Workspace ID. For details about how to obtain it, see Instance ID and Workspace ID.
X-Auth-Token Yes String IAM token. For details about how to obtain the token, see Authentication.
Enumerated values: APP: app IAM: IAM APIG: APIG (discarded) APIGW: APIGW (deprecated) DLM: DataArts DataService (deprecated) ROMA_APIC: ROMA (deprecated) Status code: 400 Table 5 Response body parameters Parameter Type Description error_code String Error code. error_msg String Error
X-Auth-Token No String IAM Token Minimum length: 0 Maximum length: 4096 Content-Type No String This parameter is mandatory if the body is available. If the body is unavailable, you do not need to set and verify this parameter.
In the navigation pane on the left, choose Permissions > Bucket Policy, and check whether the current OBS bucket can be accessed by IAM users. Parent topic: DataArts Factory
Configuring workspace resource permissions Configuring fine-grained authentication Configuring queue permissions To configure the security administrator, log in to the DataArts Security console using an account with the permissions of the DAYU Administrator system role, and select an IAM
This parameter is mandatory for the CloudTable link. linkConfig.iamAuth Yes Boolean If you choose IAM for identity authentication, enter the username, AK, and SK. linkConfig.runMode Yes Enumeration Running mode of the HBase link.
X-Auth-Token Yes String IAM token. For details about how to obtain the token, see Authentication.
Public agency or IAM account: A public agency or IAM account is used to execute jobs. Personal account: The user who clicks Test is used to execute jobs.
IAM authentication: After the API is authorized to the current account or another account, the user token obtained from IAM is used for security authentication. The API can be called using an API invoking tool. The security level of this mode is medium.
X-Auth-Token No String IAM Token Minimum length: 0 Maximum length: 4096 Response Parameters Table 3 Parameters Parameter Mandatory Type Description fail_count No Integer Number of failed instances force_success_count No Integer Number of instances that were forced to be successful
X-Auth-Token No String IAM Token Minimum length: 0 Maximum length: 4096 Response Parameters Table 3 Parameters Parameter Mandatory Type Description yesterday No array[object] Tasks of the previous day.
X-Auth-Token Yes String IAM token. For details about how to obtain the token, see Authentication.