Resource Type | Resource Description Method in Access Policies | Authorization by Tag |
Logset | qcs::cls:$region:$account:logset/* qcs::cls:$region:$account:logset/$logsetId | Supported |
Log topic | qcs::cls:$region:$account:topic/* qcs::cls:$region:$account:topic/$topicId | Supported |
Machine group | qcs::cvm:$region:$account:machinegroup/* qcs::cvm:$region:$account:machinegroup/$machinegroupId | Supported |
Collection configuration | qcs::cls:$region:$account:config/* qcs::cls:$region:$account:config/$configId | Not supported |
Dashboard | qcs::cls:$region:$account:dashboard/* qcs::cls:$region:$account:dashboard/$dashboardId | Supported |
Alarm policy | qcs::cls:$region:$account:alarm/* qcs::cls:$region:$account:alarm/$alarmId | Not supported |
Notification channel group | qcs::cls:$region:$account:alarmNotice/* qcs::cls:$region:$account:alarmNotice/$alarmNoticeId | Not supported |
Data processing task | qcs::cls:$region:uin/$account:datatransform/* qcs::cls:$region:uin/$account:datatransform/$TaskId | Not supported |
Shipping task (COS) | qcs::cls:$region:$account:shipper/* qcs::cls:$region:$account:shipper/$shipperId | Not supported |
Other resource types (disused; used by APIs of earlier versions only) | Single chart in the dashboard: qcs::cls:$region:$account:chart/* qcs::cls:$region:$account:chart/$chartId | Not supported |
$region
and $account
to your actual parameter information.*
.*
, indicating all resources. To avoid misoperations by ordinary users, you can configure read-only permissions for ordinary users and management permissions for admins. For example, you can assign admins the management permissions on all data processing tasks and assign ordinary users the read-only permissions on all data processing tasks.
문제 해결에 도움이 되었나요?