Skip to content

Action Overview and explanation

Actions are the functional permissions between an acting [subject] and an acted on [object]. They allow you to fine-tune access patterns to your requirements.

List of all available actions

Resource TypeActionDescription
Prefixmdsp:core:idl:prefix:readRead a prefix (an object in an Integrated Data Lake), to download data from Data Lake
Prefixmdsp:core:idl:prefix:createCreate a prefix, to upload data into Data Lake
Prefixmdsp:core:idl:prefix:deleteDelete a prefix, to delete data (single object or in bulk) from Data Lake
Assetmdsp:core:assetmanagement:asset:readAllows a user to read given asset
Assetmdsp:core:assetmanagement:asset:writeAllows a user to make modifications on given asset (on which policy is being created). This means
- user can update/delete given asset
- user can create a new asset with given asset as its parent
- user can update its location
- user can move given asset under other asset on which user has write access
Assetmdsp:core:eventmanagement:event:allowAllows a user to read, create, bulk create and update access to events of corresponding asset
Assetmdsp:core:iotservices:timeseries:write_normalAllows a user to push timeseries data for single Asset/Aspect
Assetmdsp:core:iotservices:timeseries:write_multiassetmultiaspectAllows a user to push timeseries data for multiple Asset/Aspects
Assetmdsp:core:iotservices:timeseries:write_bulkAllows a user to import high frequency timeseries data
Assetmdsp:core:iotservices:timeseries:write_mergeAllows a user to push timeseries data as patch/merge operation for single Asset/Aspect
Assetmdsp:core:iotservices:timeseries:readAllows a user to read ingested or aggregated timeseries data, also used to import timeseries data into Data Lake
Assetmdsp:core:iotservices:timeseries:deleteAllows a user to delete timeseries data
Assetmdsp:core:iotservices:timeseries:subscribeAllows a user to read, create, delete timeseries subscription data
Assetmdsp:core:iotservices:files:writeAllows a user to perform File write operation (single or multi-part write)
Assetmdsp:core:iotservices:files:readAllows a user to perform File read operation (single or multi-part read)
Assetmdsp:core:iotservices:files:deleteAllows a user to perform File delete operation

Dependencies among Actions

Some actions have others as a prerequisite. To avoid inconsistencies, they are enforced during creation of policies.

Info

The Policy Editor will show you these dependencies during configuration.

ActionDepends On
mdsp:core:assetmanagement:asset:writemdsp:core:assetmanagement:asset:read
mdsp:core:eventmanagement:event:allowmdsp:core:assetmanagement:asset:read
mdsp:core:iotservices:timeseries:write_normalmdsp:core:assetmanagement:asset:read
mdsp:core:iotservices:timeseries:write_multiassetmultiaspectmdsp:core:assetmanagement:asset:read
mdsp:core:iotservices:timeseries:write_bulkmdsp:core:assetmanagement:asset:read
mdsp:core:iotservices:files:write
mdsp:core:iotservices:files:read
mdsp:core:iotservices:timeseries:write_mergemdsp:core:assetmanagement:asset:read
mdsp:core:iotservices:timeseries:readmdsp:core:assetmanagement:asset:read
mdsp:core:iotservices:timeseries:deletemdsp:core:assetmanagement:asset:read
mdsp:core:iotservices:timeseries:subscribemdsp:core:assetmanagement:asset:read
mdsp:core:iotservices:timeseries:read
mdsp:core:iotservices:files:writemdsp:core:assetmanagement:asset:read
mdsp:core:iotservices:files:readmdsp:core:assetmanagement:asset:read
mdsp:core:iotservices:files:deletemdsp:core:assetmanagement:asset:read