Skip to content

You are viewing documentation for Immuta version 2022.2.

For the latest version, view our documentation for Immuta SaaS or the latest self-hosted version.

Global Subscription Policies Advanced DSL Tutorial

This page details how users can create more complex policies using functions and variables in the Advanced DSL policy builder than the Subscription Policy builder allows.

For instructions on writing Global Subscription Policies, see the following tutorial.

Enabling Enhanced Subscription Policy Variables (Public Preview)

  1. Navigate to the App Settings Page.
  2. Click Advanced Settings in the left panel, and scroll to the Preview Features section.
  3. Check the Enable Enhanced Subscription Policy Variables checkbox.

    Enable Enhanced Subscription Policy Variables

  4. Click Save.

Create and Edit Global Subscription Policies Using Advanced DSL

  1. Navigate to the Policies Page.
  2. Select Subscription Policies and click + Add Subscription Policy.
  3. Choose a name for your policy and select how the policy should grant access.
  4. Select Create using Advanced DSL.

    Create using Advanced DSL

  5. Select the rules for your policy from the Advanced DSL options. For example, creating a @hasTagsAsAttribute('Department', 'dataSource') would subscribe all users who have an attribute that matches a tag on a data source to that data source. So users with the attribute Department.Marketing would be subscribed to data sources with the tag Marketing.

    Advanced DSL Options

  6. Select how you want Immuta to merge multiple Global Subscription policies that apply to a single data source.

    • Always Required: Users must meet all the conditions outlined in each policy to get access (i.e., the conditions of the policies are combined with AND).

    • Share Responsibility: Users need to meet the condition of at least one policy that applies (i.e., the conditions of the policies are combined with OR).

  7. Select where this policy should be applied, On data sources, When selected by data owners, or On all data sources

    • If a user selects On data sources options include, with columns tagged, with columns spelled like, in server, and created between.
  8. Click Create Policy.