A free and open-source database management tool designed for team use. It provides access control, data masking, SQL auditing, CI/CD, and cross-region deployment capabilities.
Home • Docs • Blog • Gitee • GitHub
- Rich data source support covering many database types
- MySQL, Oracle, MariaDB, PostgreSQL, IBM DB2, SQL Server, OceanBase
- SAP Hana, StarRocks, Doris, SelectDB, ClickHouse, PolarDB, TiDB, Greenplum
- Hologres, DM (Dameng), GaussDB, AnalyticDB MySQL, MaxCompute, Redis, MongoDB
- Unified web console access to databases, with support for transactions, isolation levels, and execution plans
- Query editor, syntax highlighting, intelligent suggestions, execution plans, and result export
- Supported database objects include databases, schemas, tables, columns, indexes, views, functions, stored procedures, triggers, users, roles, and more
- Visual management of database objects such as create, delete, modify, and inspect properties
- Management of different data sources through environments and clusters
- Authorization model that separates resources and functions
- Resource permissions can be granted at the instance, database, schema, and table levels, depending on the statement type
- Function authorization uses role-based access control (RBAC) by granting roles to users
- Supports permission requests, permission grants, and temporary permissions
- Provides three ways to trigger CI/CD workflows: Git Push, Web Hook, and HttpCall
- Supports Gitee as the change repository
- Supports audit rules, security policies, and data masking
- Includes 54 built-in rules and supports custom extensions through rule scripts
- Supports SQL pre-checks before execution to warn about or block risky statements
- Supports three workflow types: SQL audit, permission tickets, and change workflows
- Supports manual execution, immediate execution, and scheduled execution for work orders
- Workflow engines: built-in, DingTalk, Feishu, WeCom
- Unified authentication / SSO: OpenLDAP / OpenID Connect (OIDC) / Windows AD / DingTalk / Feishu / WeCom
CloudDM supports Standalone (Alone) and Cluster (Console + Sidecar) modes, and also supports install packages, Docker, and Kubernetes deployment methods.
The example below demonstrates how to use standalone deployment. If you need install-package deployment, cluster deployment, or Kubernetes deployment, you can continue deploying with the install packages and yml files generated after local packaging. For complete deployment instructions, see DEPLOY.en.md.
# Quick start
docker run -d --name cgdm-alone -p 8222:8222 bladepipe/cgdm-alone:3.0.7
# Faster image pulls in China
docker run -d --name cgdm-alone -p 8222:8222 \
cloudcanal-registry.cn-shanghai.cr.aliyuncs.com/clougence/cgdm-alone:3.0.7Access the product in your browser:
http://localhost:8222
On first access, the initialization wizard will open.
If you not change the account, the default account is admin@cdmgr.com
Released under the business-friendly Apache 2.0 license.
There is currently no formal license file at the repository root, so this README does not make any default legal assumption beyond the statement above.