Skip to content

Cross-Workspace Authorization

Guance isolates data by workspace to ensure independent and secure data for each workspace. It also supports cross-workspace data authorization, allowing you to authorize data from multiple workspaces to the current workspace for querying and display through chart components such as scenario dashboards and views. Once data authorization is configured, you can view data from all authorized workspaces within a single workspace.

Additionally, the platform supports unified querying across workspaces within the same site. Once this feature is enabled, you can directly query and aggregate data from all other workspaces within the same site from the current workspace, without the need to configure data authorizations one by one.

Note

Querying across multiple sites simultaneously is not supported.

Add Authorization

  1. Go to Manage > Cross-Workspace Authorization > Authorize To;
  2. Click Add Authorization;
  3. Select the site to authorize;
  4. Enter the ID of the workspace to authorize;
  5. Define the data scope;
  6. Confirm.
How to Obtain Workspace ID

Go to Manage > Workspace Settings > Workspace ID, click Copy to obtain the workspace ID.

Data Scope

Includes Synthetic Tests, Cloud Billing, LOG, APM, Metrics, Basic Objects, Resource Catalog, Events, RUM, Network, Profile, LLM; multiple selections are supported.

  • Log Indexes: If the selected data scope includes log data (i.e., "All" or "LOG" is selected), you can further select the specific indexes you wish to authorize for viewing;

    • ❗️The indexes here include default indexes and all log indexes. Does not include external indexes.

  • When "Metrics" is selected as the data scope, you can refine the authorization scope for metrics:

    • Default Option: The system displays "All". Keeping the input field blank at this point means authorizing all measurements in the current workspace;
    • Custom Filtering: Supports manual input of tag conditions for filtering. Multiple tag conditions should be separated by English commas, in the format key:value. For example, entering host:server, env:prod will only authorize metric data that matches these tag conditions.

View Authorization

  • Authorize To: Add authorizations from other workspaces to this workspace;

  • Can View: Add authorizations from this workspace to other workspaces.

In the authorization list, you can perform the following management operations:

  • Filter the list based on site;
  • Search and locate by entering a workspace name or ID;
  • Delete data authorization for a specific workspace;
  • Re-edit authorization rules using the edit button;
  • When adding or deleting data authorizations, the system will generate audit events and send email notifications to the owners and administrators of the corresponding workspaces.

Impact Scope

When editing or deleting authorization rules, if the data scope or log indexes are reduced.

After clicking confirm, a sliding window will appear on the right, displaying the impact scope of the deleted data authorization on the authorized workspace, including the names of monitors and data access configurations.

Supports exporting this list as a CSV file.

Application Scenarios

After successfully adding cross-workspace authorization, you can perform cross-space queries through the following entry points within the workspace.

Feedback

Is this page helpful? ×