Challenge 5 : DDM & Access Control

Client SDK : script 01_upload_file.py 

DDM UI: Upload Page 

• Upload the following datasets: 

• Titanic-Dataset.csv 

• titanic.parquet 

• titanic_large.csv 

under: 

• project_id =  (a) <username>   if using ui 

(b) tutorial-<username>  if using client sdk 

Use consistent metadata for all three uploads: 

• use_case = crisis 

• description (CSV) = “Challenge 05 CSV upload” 

• description (Parquet) = “Challenge 05 Parquet upload” 

• description (Large CSV) = “Challenge 05 Large CSV upload” 

Capture all returned file_id values. 

Client SDK : attach_metadata.py 

DDM UI: Upload Page 

• Locate the file: 

• titanic.parquet (the parquet file uploaded in Step 1) 

• Edit the sample metadata file: 

• uploader_metadata.json 

• fill fields that identify you ( username , challenge ) 

• Attach the edited uploader_metadata.json to titanic.parquet as uploader metadata. 

Access control insight  
The parquet file now has identity-bound uploader metadata, meaning it becomes part of the dataset’s provenance and should only be visible/usable within your identity and project scope. 

Key question : Can uploader metadata be observed only where expected? 

Client SDK : 03_download_file_metadata.py 

DDM UI: My Catalog 

• Use the same project_id =  (a) <username> if using ui 

(b) tutorial-<username>  If using client sdk 

• For two files (TitanicDataset.csv and titanic.parquet), retrieve the system-generated file metadata that DDM produced after ingestion (schema, types, summary stats, system fields, etc.) 

Client SDK : 04_download_report_html.py 

DDM UI: My Catalog 

• Use the CSV file_id (Titanic-Dataset.csv from Step 1). 

• Download the profiling report HTML derived from the dataset. 

• Open the report and inspect the data duality metrics / statistics / missingness / distributions. 

Client SDK : 05_catalog_advanced.py 

DDM UI: Catalog advanced 

• Create and run advanced query using filters.json. 

• Ensure the query is scoped to your tutorial project: 

• project_id =  (a) <username> if using ui 

(b) tutorial-<username>  If using client sdk 

• Note how many files are returned initially.  

Modify filters until only one file is returned, specifically the CSV you uploaded in Step 1 (Titanic-Dataset.csv). 

Client SDK : 06_save_advanced_query.py 

DDM UI: Catalog advanced 

Client SDK script: 06_save_advanced_query.py 

• Save the final query (the one returning 1 CSV file). 

• Use name such as: 

• tutorial-<username> (or <tutorial> if you re using UI) 

Treat the saved query as a personal reproducible artifact (it should remain bound to your identity and not be reusable by other users unless explicitly shared by design). 

Client SDK : 07_create_suite.py 

DDM UI: Create Expectations page 

• Create an expectation suite using titanic-sample.csv dataset (for generating rules + enriched descriptions) and expectations.json. 

• Use: 

• project_id  = tutorial-<username>  if you are using SDK 

<tutorial>  if you are using UI 

• suite_name = tutorial-<username> 

• expectations source =expectations.json 

• The expectations you will have to set, are shown in expecttions.json ffile. 
  If you are using DDM UI,see Appendix for expectations you will have to set in human readable format. 

This step also triggers LLM-assisted enrichment, producing human-readable column descriptions linked to the suite. 

In the UI Expectations page, you can see: 

• suite details 

• enriched column descriptions 

• charts/graphs derived from suite metadata 

The suite is reusable by reference, but does not grant access to datasets outside your project. 

Generate expectations suite and capture suite_id. 

Client SDK: 08_validate.py 

DDM UI: Validations page 

Validate Titanic-Dataset.csv against the suite from Step 7. 

Inputs you must use: 

• suite_id (Step 7) 

• file_id  (Step 1 CSV) 

• project_id  =  tutorial-<username>  if you are using SDK 

<tutorial>  if you are using UI 

After completion, open Validation Results and review: 

• success/failure status 

• failed expectations and details 

• linked dataset + linked suite  

Then repeat validation using the large titanic_large.csv  file_id from Step 1, and compare differences. 

Validation results are stored as artifacts linked to both: 

• the dataset (file_id) 

• the suite (suite_id) 

Access control insight  

Reusing a suite across datasets does not bypass access controls: every validation remains scoped to the dataset’s project/owner. 

Client SDK: 09_download_file.py 

DDM UI: My Catalog 

• Use: 

• file_id = the file you want to download (the Titanic-Dataset.csv file id from Step 1) 

to download the uploaded file. 

Client SDK: 10_catalog_list.py 

DDM UI: My Catalog 

• List catalog entries for your tutorial project: 

• project_id =  tutorial-<username>  if you are using SDK 

<tutorial>  if you are using UI 

• Confirm that: 

• all 3 uploaded files exist 

• derived artifacts (metadata, reports, validations) are visible where expected. 

Create a new account and login. 
Run whichever steps you want among 2,3,4,9. 
What message you receive?