Skip to content

Cross-Workspace Authorization

TrueWatch uses workspaces as units for data isolation, ensuring independent and secure data for each workspace. Simultaneously, it supports cross-workspace data authorization, allowing data from multiple workspaces to be authorized to the current workspace for querying and display through chart components such as scenario dashboards and views. After configuring data authorization, you can view data from all authorized workspaces within a single workspace.

Furthermore, the platform supports unified queries across workspaces under the same site. After enabling this feature, you can directly query and aggregate data from all other workspaces under the same site within the current workspace, without needing to configure data authorization for each one individually.

Note

Cross-site queries are not supported.

Add Authorization

  1. Navigate to Manage > Cross-Workspace Authorization > Authorize To.
  2. Click Add Authorization.
  3. Select the site to authorize.
  4. Enter the Workspace ID to authorize.
  5. Define the data scope.
  6. Confirm.
How to Obtain Workspace ID

Navigate to Manage > Workspace Settings > Workspace ID, click Copy to obtain the Workspace ID.

Data Scope

Includes Synthetic Tests, Cloud Billing, LOG, APM, Metrics, Basic Objects, Resource Catalog, Events, RUM, Network, Profile, LLM. Multiple selections are supported.

  • LOG Indexes: If your selected data scope includes LOG data (i.e., "All" or "LOG" is selected), you can further select the indexes you need to authorize for viewing.

    • The indexes here include default indexes and all LOG indexes. Does not include external indexes.

  • When "Metrics" is selected as the data scope, you can refine the configuration for the Metrics authorization scope:

    • Default Option: The system displays "All". If the input field is left empty, it means authorizing all Measurements under the current workspace.
    • Custom Filtering: Supports manually entering tag conditions for filtering. Multiple tag conditions should be separated by English commas, in the format key:value. For example, entering host:server, env:prod will only authorize Metrics data matching these tag conditions.

View Authorization

  • Authorize To: Add authorizations from other workspaces to this workspace.

  • Can View: Add authorizations from this workspace to other workspaces.

In the authorization list, you can perform the following management operations:

  • Filter the list based on site.
  • Search and locate by entering workspace name or ID.
  • Delete data authorization for a specific workspace.
  • Re-edit authorization rules via the edit button.
  • When adding or deleting data authorization, the system will generate audit events and send email notifications to the owners and administrators of the corresponding workspaces.

Impact Scope

When editing or deleting authorization rules, if the data scope or LOG indexes are reduced.

After clicking confirm, a sliding window will pop up on the right side, displaying the impact scope of the deleted data authorization for the currently authorized space, including the names of monitor and data access configurations.

Supports exporting this list as a CSV file.

Application Scenarios

After successfully adding cross-workspace authorization, you can perform cross-space queries through the following entry points within the workspace.