Manage App assets

Operations on App assets.

In general, these should be:

Created in top-down order (Connection, then Application, then ApplicationField)
Deleted in bottom-up order (ApplicationField, Application, then Connections)¹

Asset structure

Connection

An App connection requires a name and qualifiedName. For creation, specific settings are also required to distinguish it as an App connection rather than another type of connection. In addition, at least one of adminRoles, adminGroups, or adminUsers must be provided.

Java
Python
Kotlin
Raw REST API

Create an App connection
String adminRoleGuid = client.getRoleCache().getIdForName("$admin"); // (1)
Connection connection = Connection.creator( // (2)
        "app-connection", // (3)
        AtlanConnectorType.APP, // (4)
        List.of(adminRoleGuid), // (5)
        List.of("group2"), // (6)
        List.of("jsmith")) // (7)
    .build();
AssetMutationResponse response = connection.save(client); // (8)
String connectionQualifiedName = response.getCreatedAssets().get(0).getQualifiedName(); // (9)

Retrieve the GUID for the admin role, to use later for defining the roles that can administer the connection.
Build up the minimum request to create a connection.
Provide a human-readable name for your connection, such as production or development.
Set the type of connection to APP.
List the workspace roles that should be able to administer the connection (or null if none). All users with that workspace role (current and future) will be administrators of the connection. Note that the values here need to be the GUIDs of the workspace roles. At least one of adminRoles, adminGroups, or adminUsers must be provided.
List the group names that can administer this connection (or null if none). All users within that group (current and future) will be administrators of the connection. Note that the values here are the names of the groups. At least one of adminRoles, adminGroups, or adminUsers must be provided.
List the user names that can administer this connection (or null if none). Note that the values here are the usernames of the users. At least one of adminRoles, adminGroups, or adminUsers must be provided.
Actually call Atlan to create the connection. Because this operation will persist the asset in Atlan, you must provide it an AtlanClient through which to connect to the tenant.
Retrieve the qualifiedName for use in subsequent creation calls. (You'd probably want to do some null checking first.)

Create an App connection
from pyatlan.client.atlan import AtlanClient
from pyatlan.model.assets import Connection, Application, Table, Schema
from pyatlan.model.enums import AtlanConnectorType

client = AtlanClient()
admin_role_guid = client.role_cache.get_id_for_name("$admin") # (1)
connection = Connection.creator( # (2)
    client=client, # (3)
    name="app-connection", # (4)
    connector_type=AtlanConnectorType.APP, # (5)
    admin_roles=[admin_role_guid], # (6)
    admin_groups=["group2"], # (7)
    admin_users=["jsmith"] # (8)
  ) 

response = client.asset.save(connection) # (9)
connection_qualified_name = response.assets_created(asset_type=Connection)[0].qualified_name # (10)

Retrieve the GUID for the admin role, to use later for defining the roles that can administer the connection.
Build up the minimum request to create a connection.
You must provide a client instance.
Provide a human-readable name for your connection, such as production or development.
Set the type of connection to APP.
List the workspace roles that should be able to administer the connection (or None if none). All users with that workspace role (current and future) will be administrators of the connection. Note that the values here need to be the GUIDs of the workspace roles. At least one of admin_roles, admin_groups, or admin_users must be provided.
List the group names that can administer this connection (or None if none). All users within that group (current and future) will be administrators of the connection. Note that the values here are the names of the groups. At least one of admin_roles, admin_groups, or admin_users must be provided.
List the user names that can administer this connection (or None if none). Note that the values here are the usernames of the users. At least one of admin_roles, admin_groups, or admin_users must be provided.
Actually call Atlan to create the connection.
Retrieve the qualified_name for use in subsequent creation calls. (You'd probably want to do some null checking first.)

Create an App connection
val adminRoleGuid = client.roleCache.getIdForName("\$admin") // (1)
val connection = Connection.creator( // (2)
        "app-connection", // (3)
        AtlanConnectorType.APP, // (4)
        listOf(adminRoleGuid), // (5)
        listOf("group2"), // (6)
        listOf("jsmith")) // (7)
    .build()
val response = connection.save(client) // (8)
val connectionQualifiedName = response.createdAssets[0].qualifiedName // (9)

Retrieve the GUID for the admin role, to use later for defining the roles that can administer the connection.
Build up the minimum request to create a connection.
Provide a human-readable name for your connection, such as production or development.
Set the type of connection to APP.
List the workspace roles that should be able to administer the connection (or null if none). All users with that workspace role (current and future) will be administrators of the connection. Note that the values here need to be the GUIDs of the workspace roles. At least one of adminRoles, adminGroups, or adminUsers must be provided.
List the group names that can administer this connection (or null if none). All users within that group (current and future) will be administrators of the connection. Note that the values here are the names of the groups. At least one of adminRoles, adminGroups, or adminUsers must be provided.
List the user names that can administer this connection (or null if none). Note that the values here are the usernames of the users. At least one of adminRoles, adminGroups, or adminUsers must be provided.
Actually call Atlan to create the connection. Because this operation will persist the asset in Atlan, you must provide it an AtlanClient through which to connect to the tenant.
Retrieve the qualifiedName for use in subsequent creation calls. (You'd probably want to do some null checking first.)

POST /api/meta/entity/bulk
{
  "entities": [
    {
      "typeName": "Connection", // (1)
      "attributes": {
        "name": "app-connection", // (2)
        "connectorName": "app", // (3)
        "qualifiedName": "default/app/123456789", // (4)
        "category": "APP", // (5)
        "adminRoles": [ // (6)
          "e7ae0295-c60a-469a-bd2c-fb903943aa02"
        ],
        "adminGroups": [ // (7)
          "group2"
        ],
        "adminUsers": [ // (8)
          "jsmith"
        ]
      }
    }
  ]
}

The typeName must be exactly Connection.
Human-readable name for your connection, such as production or development.
The connectorName must be exactly app.
The qualifiedName should follow the pattern: default/app/<epoch>, where <epoch> is the time in milliseconds at which the connection is being created.
The category must be APP.
List any workspace roles that can administer this connection. All users with that workspace role (current and future) will be administrators of the connection. Note that the values here need to be the GUIDs of the workspace roles. At least one of adminRoles, adminGroups, or adminUsers must be provided.
List any groups that can administer this connection. All users within that group (current and future) will be administrators of the connection. Note that the values here are the names of the groups. At least one of adminRoles, adminGroups, or adminUsers must be provided.
List any users that can administer this connection. Note that the values here are the usernames of the users. At least one of adminRoles, adminGroups, or adminUsers must be provided.

Access policies

Atlan creates the policies that grant access to a connection, including the ability to retrieve the connection and to create assets within it, asynchronously. It can take several seconds (even up to approximately 30 seconds) before these are in place after creating the connection.

You may therefore need to wait before you'll be able to create the assets below within the connection.

To confirm access, retrieve the connection after it has been created. The SDKs' retry loops will automatically retry until the connection can be successfully retrieved. At that point, your API token has permission to create the other assets.

Note: if you are reusing an existing connection rather than creating one via your API token, you must give your API token a persona that has access to that connection. Otherwise all attempts to create, read, update, or delete assets within that connection will fail due to a lack of permissions.

Application

An Application requires a name and a qualifiedName. For creation, you also need to specify the connectionQualifiedName of the connection for the Application. You can also provide the appId and applicationOwnedAssets for the asset.

Java
Python
Kotlin
Raw REST API

Create an Application
Application application = Application.creator( // (1)
        "application", // (2)
        connectionQualifiedName,) // (3) 
    .appId("1234") // (4)
    .applicationOwnedAssets(List.of(
        Table.refByQualifiedName("default/snowflake/123456789/DATABASE/SCHEMA/TABLE"),
        Schema.refByQualifiedName("default/snowflake/123456789/DATABASE/SCHEMA"))) // (5)
    .build();
AssetMutationResponse response = application.save(client); // (6)

Build up the minimum request to create an Application.
Provide a human-readable name for your Application.
Provide the qualifiedName of the connection for this asset.
(Optional) Provide the appId of this application in the source system.
(Optional) Provide the list of assets that exist in this application. Also update the individual assets to hold the qualifiedName of this application in the attribute applicationQualifiedName.
Actually call Atlan to create the application. Because this operation will persist the asset in Atlan, you must provide it an AtlanClient through which to connect to the tenant.

Create an Application
application = Application.creator( # (1)
    name = "application", # (2)
    connection_qualified_name = connection_qualified_name, # (3)
)
application.app_id = "1234", # (4)
application.application_owned_assets = [
      Table.ref_by_qualified_name("default/snowflake/123456789/DATABASE/SCHEMA/TABLE"),
      Schema.ref_by_qualified_name("default/snowflake/123456789/DATABASE/SCHEMA")
  ] # (5)
response = client.asset.save(application) # (6)
application_qualified_name = response.assets_created(asset_type=Application)[0].qualified_name # (7)

Build up the minimum request to create an Application.
Provide a human-readable name for your Application.
Provide the qualified_name of the connection for this Application.
(Optional) Provide the appId of this application in the source system.
(Optional) Provide the list of assets that exist in this application. Also update the individual assets to hold the qualifiedName of this application in the attribute applicationQualifiedName.
Actually call Atlan to create the Application.
Retrieve the qualified_name for use in subsequent creation calls. (You'd probably want to do some null checking first.)

Create an Application
val application = Application.creator( // (1)
        "application", // (2)
        connectionQualifiedName,) // (3) 
    .appId("1234") // (4)
    .applicationOwnedAssets(List.of(
        Table.refByQualifiedName("default/snowflake/123456789/DATABASE/SCHEMA/TABLE"),
        Schema.refByQualifiedName("default/snowflake/123456789/DATABASE/SCHEMA"))) // (5)
    .build()
val response = application.save(client) // (6)

Build up the minimum request to create an Application.
Provide a human-readable name for your Application.
Provide the qualifiedName of the connection for this asset.
(Optional) Provide the appId of this application in the source system.
(Optional) Provide the list of assets that exist in this application. Also update the individual assets to hold the qualifiedName of this application in the attribute applicationQualifiedName.
Actually call Atlan to create the application. Because this operation will persist the asset in Atlan, you must provide it an AtlanClient through which to connect to the tenant.

POST /api/meta/entity/bulk
{
  "entities": [
    {
      "typeName": "Application", // (1)
      "attributes": {
        "name": "application", // (2)
        "qualifiedName": "default/app/123456789/application", // (3)
        "connectionQualifiedName": "default/app/123456789", // (4)
        "connectorName": "app", // (5)
        "appId": "1234", // (6)
        "applicationOwnedAssets": [ // (7)
            },
            {
                "typeName": "Schema",
                "uniqueAttributes": {
                    "qualifiedName": "default/snowflake/123456789/DATABASE/SCHEMA"
                }
            }
        ]
      }
    }
  ]
}

The typeName must be exactly Application.
Human-readable name for your asset.
The qualifiedName should follow the pattern: default/app/<epoch>/<assetName>, where default/app/<epoch> is the qualifiedName of the connection for this asset and <assetName> is the name of this asset.
The connectionQualifiedName must be the exact qualifiedName of the connection for this asset.
The connectorName must be exactly app.
(Optional) The appId should be id of the application in the source system.
(Optional) The Catalog assets which are present inside this application are added in applicationOwnedAssets attribute.
The typeName for this embedded reference must be the type of asset being embeded.
To complete the reference, you must include a uniqueAttributes object with the qualifiedName of the asset. Note: the asset must already exist in Atlan before creating the path.

ApplicationField

An ApplicationField requires a name and a qualifiedName. For creation, you also need to specify the connectionQualifiedName of the connection for the ApplicationField, and the applicationQualifiedName of the field's ancestor. You can also provide the applicationFieldOwnedAssets for the asset.

Java
Python
Kotlin
Raw REST API

Create an ApplicationField
ApplicationField applicationField = ApplicationField.creator( // (1)
        "application-field", // (2)
        application) // (3) 
    .applicationFieldOwnedAssets(List.of(
        Table.refByQualifiedName("default/snowflake/123456789/DATABASE/SCHEMA/TABLE"),
        Schema.refByQualifiedName("default/snowflake/123456789/DATABASE/SCHEMA"))) // (4)
    .build();
AssetMutationResponse response = applicationField.save(client); // (5)

Build up the minimum request to create an ApplicationField.
Provide a human-readable name for your ApplicationField.
Provide the application for this field.
(Optional) Provide the list of assets that exist in this ApplicationField. Also update the individual assets to hold the qualifiedName of this ApplicationField in the attribute applicationFieldQualifiedName.
Actually call Atlan to create the ApplicationField. Because this operation will persist the asset in Atlan, you must provide it an AtlanClient through which to connect to the tenant.

Create an ApplicationField
applicationField = ApplicationField.creator( # (1)
    name = "application-field", # (2)
    application_qualified_name = application_qualified_name, # (3)
)
applicationField.application_field_owned_assets = [
      Table.ref_by_qualified_name("default/snowflake/123456789/DATABASE/SCHEMA/TABLE"),
      Schema.ref_by_qualified_name("default/snowflake/123456789/DATABASE/SCHEMA")
  ] # (4)
response = client.asset.save(applicationField) # (5)

Build up the minimum request to create an ApplicationField.
Provide a human-readable name for your ApplicationField.
Provide the qualified_name of the application for this ApplicationField.
(Optional) Provide the list of assets that exist in this ApplicationField. Also update the individual assets to hold the qualifiedName of this ApplicationField in the attribute applicationFieldQualifiedName.
Actually call Atlan to create the ApplicationField.

Create an ApplicationField
val applicationField = ApplicationField.creator( // (1)
        "application-field", // (2)
        application) // (3) 
    .applicationFieldOwnedAssets(List.of(
        Table.refByQualifiedName("default/snowflake/123456789/DATABASE/SCHEMA/TABLE"),
        Schema.refByQualifiedName("default/snowflake/123456789/DATABASE/SCHEMA"))) // (4)
    .build()
val response = applicationField.save(client) // (5)

Build up the minimum request to create an ApplicationField.
Provide a human-readable name for your ApplicationField.
Provide the application for this field.
(Optional) Provide the list of assets that exist in this ApplicationField. Also update the individual assets to hold the qualifiedName of this ApplicationField in the attribute applicationFieldQualifiedName.
Actually call Atlan to create the ApplicationField. Because this operation will persist the asset in Atlan, you must provide it an AtlanClient through which to connect to the tenant.

POST /api/meta/entity/bulk
{
  "entities": [
    {
      "typeName": "ApplicationField", // (1)
      "attributes": {
        "name": "application-field", // (2)
        "qualifiedName": "default/app/123456789/application/field", // (3)
        "connectionQualifiedName": "default/app/123456789", // (4)
        "connectorName": "app", // (5)
        "parentApplication": { // (6)
          "typeName": "Application", // (7)
          "uniqueAttributes": { // (8)
            "qualifiedName": "default/app/123456789/application"
          }
        },
        "applicationParentQualifiedName": "default/app/123456789/application", // (9)
        "applicationFieldOwnedAssets": [ // (10)
            },
            {
                "typeName": "Schema",
                "uniqueAttributes": {
                    "qualifiedName": "default/snowflake/123456789/DATABASE/SCHEMA"
                }
            }
        ]
      }
    }
  ]
}

The typeName must be exactly ApplicationField.
Human-readable name for your asset.
The qualifiedName should follow the pattern: default/app/<epoch>/<applicationName>/<fieldName>, where default/app/<epoch>/<applicationName> is the qualifiedName of the application for this field and <fieldName> is the name of this asset.
The connectionQualifiedName must be the exact qualifiedName of the connection for this asset.
The connectorName must be exactly app.
The application in which this field exists is embedded in the parentApplication attribute.
The typeName for this embedded reference must be Application.
To complete the reference, you must include a uniqueAttributes object with the qualifiedName of the application. Note: the application must already exist in Atlan before creating the path.
The applicationParentQualifiedName must be the qualifiedName of the application which contains this field.
(Optional) The Catalog assets which are present inside this ApplicationField are added in applicationFieldOwnedAssets attribute.
The typeName for this embedded reference must be the type of asset being embeded.
To complete the reference, you must include a uniqueAttributes object with the qualifiedName of the asset. Note: the asset must already exist in Atlan before creating the path.

Available relationships

Every level of the App structure is an Asset, and can therefore be related to the following other assets.

Although if you want to delete everything in a connection, your better avenue is the packaged connection delete utility in the UI. ↩

Asset structure​

Connection​

Application​

ApplicationField​

Available relationships​

Footnotes​

Asset structure

Connection

Application

ApplicationField

Available relationships

Footnotes