You can easily control who can and cannot access folders and their data through Treasure Data's policies and permissions. Administrators need to configure folder permissions of a parent segment in Treasure Data V4.
How it Works
Folder Tree security includes -based permissions include two permission types:
- View permission. Allows users to view the information and content of an entity in the folder (for example, segment, funnel, predictive scoring).
- Full Control permission. Allows users to read, create, update, and delete any entity in a folder. A user with Full Control permission for a parent folder can also create subfolders in the parent folder. The ability for individuals with Full Control permission to create subfolders is specific to Treasure Data (v5). In Treasure Data (v4), only administrators can create folders.
Folder Tree security -based permissions characteristics:
- A security policy is applied at the folder level; permissions assigned to a user at the parent folder are inherited by the child folder recursively.
If a user has Full Controlpermission for a parent folder, the user automatically gets Full Control permission for all the child folders. However, If an administrator assigns view permissions for one of the child folders to the user with another policy, the user still has Full Control permission for the child folders.
Administer Folder Permissions in Treasure Data
Log in to the TD Console (v4).
Navigate to Control Panel > Policies.
Select a policy.
Select the Permissions tab and scroll down to Audience Studio.
Select a master segment and then select Add.
To update the master segment, select the pencil icon to make edits.
A pop-up displays all of the folders associated with the master segment.
Choose one of the following:
If you choose this option, the permissions are for all folders in both Treasure Data (v4) and Treasure Data (v5) for the same parent segment.
To set all folders for Treasure Data (v5), select the root folder.
Select Save to apply your permissions.
The following table lists the actions enabled for permission.