Security(安全)¶
Automate provides comprehensive security and permissions controls to ensure automations execute safely and that users only see information they are authorized to access.
Key security concepts¶
Automate is governed by the same security and permissions model as the rest of the platform. Users can only see and interact with the automations to which they have access. This ensures condition evaluation and effects always reflect the appropriate data access at the time when the automation is evaluated.
Execution permissions¶
Understanding who has permission to see what is critical for secure automation design:
- Condition evaluation: Uses automation owner's permissions
- Action and Logic effects: Execute as the automation owner
- Notification effects: Use each recipient's individual permissions
Learn more about how permissions work for different effect types in our Automate permissions documentation.
Automation scoping¶
Automations can be configured with different scoping options that determine who can access the run history for action, Logic, and function executions:
- User-scoped automations: Only the automation's owner has access to run history.
- Project-scoped automations: Enable team collaboration by sharing run history with all users who satisfy the markings on a run.
Learn more about scoping options in our history visibility and scope documentation.
History and activity tracking¶
Automate tracks execution history and activity to provide visibility into automation behavior while respecting security boundaries:
- Activity tracking: View all automation-related activity for your user in the Automate application.
- Automation history: See condition triggers, failures, and metadata changes for individual automations.
- Shared history events: Optionally enable shared history to make execution events visible to other users (while keeping execution details private).
Learn more about execution events and retention in our Automation history documentation.
中文翻译¶
安全¶
Automate 提供全面的安全与权限控制机制,确保自动化流程安全执行,且用户仅能查看其授权访问的信息。
核心安全概念¶
Automate 遵循与平台其他组件相同的安全与权限模型。用户只能查看和操作其拥有访问权限的自动化流程。这确保了条件评估与效果执行始终反映自动化评估时的适当数据访问权限。
执行权限¶
理解谁有权查看哪些内容对于设计安全的自动化流程至关重要:
- 条件评估: 使用自动化所有者的权限
- 操作与逻辑效果: 以自动化所有者的身份执行
- 通知效果: 使用每个收件人的个人权限
关于不同效果类型的权限工作机制,请参阅我们的 Automate 权限 文档。
自动化范围¶
自动化可配置不同的范围选项,以决定谁能访问操作、逻辑和函数执行的运行历史:
- 用户级自动化: 仅自动化所有者可访问运行历史。
- 项目级自动化: 通过向满足运行标记的所有用户共享运行历史,实现团队协作。
关于范围选项的更多信息,请参阅我们的 历史可见性与范围 文档。
历史记录与活动追踪¶
Automate 会追踪执行历史与活动,在遵守安全边界的前提下提供自动化行为的可见性:
- 活动追踪: 在 Automate 应用中查看与您用户相关的所有自动化活动。
- 自动化历史: 查看单个自动化的条件触发、失败及元数据变更。
- 共享历史事件: 可选择启用共享历史,使执行事件对其他用户可见(同时保持执行详情私密)。
关于执行事件与保留策略的更多信息,请参阅我们的 自动化历史 文档。