反馈已提交
网络繁忙
BI server version
JAR
Permission export plugin
Functional changes
5.1
2020-04-03
V2.0
Support for exporting permission-related Excel
5.1.7
-
V3.0
Supports automatic generation of permission-related server datasets
5.1.13
V3.1
Field VIEWABLE in user-module table changed to USABLE
5.1.17
V3.2
Added support for exporting "User Permissions to BI Data"
Many enterprises attach great importance to authority, and regularly need to conduct authority audits to confirm whether the authority meets the regulations and whether it exceeds the authority.
Due to the change of personnel, after the administrator changes, it is very inconvenient to organize without knowing the specific situation of the previous permissions.
Users can quickly audit permissions by installing the "Permission Export" plug-in
Automatically sort out user information and permission details. Users can export to Excel format with one click.
Automatically generate permission-related server data sets, support setting parameters, and users can directly call the data sets for permission preview or timing scheduling.
Note: When the URL is integrated into the permission management interface, there is no permission to export.
To download the plug-in, please click: Permission Export Plug-in
For plug-in installation methods, please refer to: Plug-in Management
1) Log in to the data decision system as a "super administrator", click "Manage > Permission", and add a"Aythorization Export"tab page. As shown below:
See Chapter 3 for permission tables and table fields that support export.
Note: Only super administrators can see the "Permission Export" tab page.
2) Click the "Export" button on the right side of the relevant permissions. When the export succeeds or fails, a message reminder will be pushed on the platform. After the export is successful, click the "Download File" button to download the relevant files. As shown below:
Note: If the export fails, the message reminds "Permission export failed, please try again".
FineBI server version is after 5.1.7, and the plug-in version is after V2.0.1 to support this function.
After installing the plug-in, click "Manage > Data Connection > Server Dataset" to automatically generate a server data set related to permissions, as shown in the following figure:
In the data preparation stage, users can add database tables and call related data sets for permission preview or scheduled scheduling. As shown below:
Parameters can be set for some datasets. Please refer to Chapter 3 for table structure and field definitions.
The tables that support permission export and permission auditing are as follows:
Permissions table
table definition
Permission export
permission dataset
Whether the permission dataset supports parameters
user_info
User Info
support
Does not support parameters, full data
user_module
User permissions to the platform management module
user_entry
User permissions to the platform directory
Support parameter, can pass username
user_template
User permissions to a single dashboard
user_connection
User permissions for data connections
user_package
User permissions to BI data
role_entry
Role permissions to platform catalogs
not support
Support parameters, pass roles
role_template
Role permissions to individual dashboards
role_package
Permissions of roles to BI data
dep_role_entry
Departmental Permissions to Platform Catalogs
Support parameter, can pass department path
dep_role_template
Departmental Permissions to Individual Dashboards
dep_role_package
Departmental permissions on BI data
Note: The parameter value can be set to null value, single value, multiple values, examples are as follows:
The parameter is empty: do not fill in, query the full data
The parameter is a single value: technical support, the query parameter value is the permission of technical support
The parameter is multiple values: technical support|sales department (separated by |), the query parameter value is the authority of technical support or sales department
Note: The user information does not include the information of the supervising user.
field
definition
Precautions
USERID
User ID
UESRNAME
username
REALNAME
Name
CREATIONTYPE
create type
1: Manual creation
2: Synchronous creation
LASTOPERATIONTYPE
Last action type
1: Manual
2: Sync
DEPT_POST
Department and Title
·
Department - Title: Technical Support - Team Member
Department/Sub-Department-Title: Technical Support/South China-Team Member
If a user has multiple department titles, they will be displayed together and separated by "|"
For example: Development - Minister | Technical Support - Minister
ROLE
Role
For example: normal character
If a user has multiple roles, they are spliced and displayed together, separated by "|"
Example: Common Role 1 | Company Management
MOBILE
Phone number
EMAIL
Mail
ENABLE
user status
enable: enable
disable: disable
This permission is the user's permission to view, edit, and authorize the platform directory.
Note 1: Home page permissions are not exported.
Note 2: If the user's viewing, editing, and authorization permissions for a directory are all negative, the user's permission record for the directory will not be generated.
USERNAME
ENTRY
Directory location in "Platform Management System > Directory Management > Directory List"
Example: Management Cockpit/Company Integrated Operations Cockpit
TEMPLATE_URL
The storage path of the dashboard in the FineBI project, for example:
Dashboard: 1/Management Cockpit/Company Integrated Operations Cockpit
Link: https://www.baidu.com/
Escalation Label: My Escalation Tasks
VIEWABLE
The user's "view" permission on the directory
yes: have viewing permission
no: no viewing permission
EXPORTABLE
The user's "export" permission on the directory
yes: have export permission
no: no export permission
EDITABLE
The user's "edit" permission on the directory
yes: have editing permission
no: no editing permission
AURHORABLE
The user's "authorization" permission on the directory
yes: have authorization permission
no: no authorization permission
This permission is the user's view and export permission for each dashboard under the FineBI project after the role permission authentication is enabled.
Note1: role authorization authentication is not enabled in "Template Authentication" , the exported user_template will be empty.
Note 2: If the user's viewing and exporting permissions for a dashboard are both "No", the user's permission record for the dashboard will not be generated.
The storage path of the dashboard in the FineBI project
For example: 1/Management Cockpit/Company Integrated Operation Cockpit
User's "View" permission to the dashboard
WRITABLE
User's "Fill" permission to the dashboard
BI dashboard does not have permission to fill in the report, the WRITABLE field value is no
User's "Export" permission on the dashboard
This permission is the user's permission to use, manage, and authorize the data connection after the data connection control is enabled.
Note 1: If the administrator does not enable data connection control , the exported user_connection content is empty.
Note 2: If the user's permission to use, manage, and authorize a data connection is all negative, the user's permission record for the data connection will not be generated.
CONNECTION
Data connection name in FineBI project
USABLE
User's "use" rights to the data connection
yes: have permission to use
no: no permission to use
User's "Administrative" access to the data connection
yes: have administrative rights
no: no administrative rights
User's "authorization" permission for the data connection
This authority is the user's viewing and authorization authority for the platform management module after the hierarchical authority management is enabled.
Note 1: If the administrator does not enable hierarchical authority management, the exported user_module content is empty.
Note 2: If the user's permission to use and authorize a platform management module is negative, the user's permission record for the platform management module will not be generated.
MODULE
Management Module in Data Decision System
For example: user management
The user's "use" permission to the platform management module
User's "authorization" authority to the platform management module
This permission is the user's permission to use, manage, and authorize groups/service packages/BI data tables.
Note 1: If the user's permission to use, manage, and authorize a certain group/service package/data table is no, the user 's permission record for the group/service package/data table will not be generated.
Note 2: The user has no administrative rights to a single data sheet.
PACKAGE
Grouping/Business Package/BI Data Table Location
For example: scene data/data analysis method/repurchase analysis table
ENGINE
data table type
spider: extract data
direct: real-time data
User's "use" permission to group/business package/BI data table
User's "Management" permission for group/business package/BI data table
User's "authorization" permission to group/business package/BI data table
This permission is the viewing, editing, exporting, and authorization permissions of the role to the platform directory.
Note 2: If the viewing, editing, exporting, and authorization permissions of a role to a directory are all negative, the role's permission record for the directory will not be generated.
ROLEID
role id
The role's "view" permission on the directory
The role's "export" permission on the directory
The role's "edit" permission on the directory
The role's "authorization" permission on the directory
This permission is the permission to view and export each dashboard under the FineBI project after the role permission authentication is enabled.
Note1: role authorization authentication is not enabled in "Template Authentication" , the exported role_template will be empty.
Note 2: If the viewing and exporting permissions of a role to a certain dashboard are both No, the permission record of the role to the dashboard will not be generated.
The role's "view" permission to the dashboard
The "Fill" permission of the role to the dashboard
Role's "Export" permission to the dashboard
This permission is the role's permission to use, manage, and authorize groups/service packages/BI data tables.
Note 1: If the role's use, management, and authorization permissions for a group/service package/data table are all No, then the role's permission record for the group/service package/data table will not be generated.
Note 2: Roles do not have administrative rights to a single data table.
Role's "use" permission to group/business package/BI data table
"Management" permissions of roles to groups/business packages/BI data tables
"Authorization" permissions of roles to groups/business packages/BI data tables
This permission is the department's permission to view, edit, export, and authorize the platform directory.
Note 2: If the department's viewing, editing, exporting, and authorization permissions for a directory are all negative, the department's permission record for the directory will not be generated.
DEP
Department: Technical Support
The department's "view" permission to the directory
Department's "Export" permission to the directory
Department's "Edit" permission on the directory
The "authorization" permission of the department to the directory
This permission is the permission of the department to view and export each dashboard under the FineBI project after the role permission authentication is enabled.
Note1: role authorization authentication is not enabled in "Template Authentication" HYPERLINK "https://help.finereport.com/doc-view-849.html" , the exported dep_role_template will be empty.
Note 2: If the department's viewing and exporting permissions for a dashboard are both "No", the department's permission record for the dashboard will not be generated.
For example: demo/analytics/marketing/tourismanalytics.frm
Department's "View" access to the dashboard
The department's "Fill" permission on the dashboard
Department's "Export" permission on the dashboard
This authority is the department's authority to use, manage, and authorize groups/business packages/BI data tables.
Note 1: If the department's permission to use, manage and authorize a certain group/service package/data table is no, then the department's permission record for the group/service package/data table will not be generated.
Note 2: The department has no administrative authority over a single data sheet.
The department's "use" authority to group/business package/BI data table
Department's "Management" authority to group/business package/BI data table
The "authorization" authority of the department to the group/business package/BI data table
售前咨询电话
400-811-8890转1
在线技术支持
在线QQ:800049425
热线电话:400-811-8890转2
总裁办24H投诉
热线电话:173-1278-1526
文 档反 馈
鼠标选中内容,快速反馈问题
鼠标选中存在疑惑的内容,即可快速反馈问题,我们将会跟进处理。
不再提示
10s后关闭