Github user sourav-mazumder commented on the pull request:
https://github.com/apache/incubator-zeppelin/pull/681#issuecomment-183951948
Hi Hayssams,
I liked your approach. That is something very similar to what my initial
comment was to Prasad's design.
The points you have mentioned at the end of your document are the key
considerations. Especially separating the permission of a notebook from actual
content of the notebooks.
My only suggestion would be that along with the option of storing the
permissions in a database (using JDBC) one should also have the options of
storing the same in a PAM file or LDAP. User should be able to pick and choose.
This PR does not need to implement all of those options right now. May be
starting with PAM file based approach would be good enough as long as that file
is either encrypyted or stored in a folder which can be only accessed by
Zeppelin admin (the person who can start and stop zeppelin).
Regards,
Sourav
---
If your project is set up for it, you can reply to this email and have your
reply appear on GitHub as well. If your project does not have this feature
enabled and wishes so, or if the feature is enabled but not working, please
contact infrastructure at infrastruct...@apache.org or file a JIRA ticket
with INFRA.
---
