I have tried the following configuration, [users] > # List of users with their password allowed to access Zeppelin. > # To use a different strategy (LDAP / Database / ...) check the shiro doc > at http://shiro.apache.org/configuration.html#Configuration-INISections > meeraj = password, admin > guest = password > [roles] > admin = * > [urls] > # anon means the access is anonymous. > # authcBasic means Basic Auth Security > # authc means Form based Auth Security > # To enfore security, comment the line below and uncomment the next one > /** = authc > /api/interpreter/** = authc, roles[admin] > /api/configurations/** = authc, roles[admin] > /api/credential/** = authc, roles[admin]
But the guest user is still able to create notebooks, access configuration, credentials, interpreters etc. Regards Meeraj On Tue, Jan 10, 2017 at 11:16 AM, Meeraj Kunnumpurath < mee...@servicesymphony.com> wrote: > Hello, > > Is it possible to have the below setup? As soon as I enable anonymous > access in shiro.ini, there is no option to login to the UI, which also > makes locking notebooks not possible as well. > > Regards > Meeraj > > On Mon, Jan 9, 2017 at 1:29 PM, Meeraj Kunnumpurath < > mee...@servicesymphony.com> wrote: > >> Hello >> >> I would like to setup security, such that anonymous users can view all = >> the Notebooks in read-only mode, however to create a new notebook or = >> amend an existing one, the user should have logged on. I have edited = >> shirt.ini to disable anonymous access, this disables all access. >> >> Any pointers on this will be highly appreciated. >> >> Many thanks >> Meeraj >> > > > > -- > *Meeraj Kunnumpurath* > > > *Director and Executive PrincipalService Symphony Ltd00 44 7702 693597* > > *00 971 50 409 0169mee...@servicesymphony.com <mee...@servicesymphony.com>* > -- *Meeraj Kunnumpurath* *Director and Executive PrincipalService Symphony Ltd00 44 7702 693597* *00 971 50 409 0169mee...@servicesymphony.com <mee...@servicesymphony.com>*
