Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- #
- # Licensed to the Apache Software Foundation (ASF) under one or more
- # contributor license agreements. See the NOTICE file distributed with
- # this work for additional information regarding copyright ownership.
- # The ASF licenses this file to You under the Apache License, Version 2.0
- # (the "License"); you may not use this file except in compliance with
- # the License. You may obtain a copy of the License at
- #
- # http://www.apache.org/licenses/LICENSE-2.0
- #
- # Unless required by applicable law or agreed to in writing, software
- # distributed under the License is distributed on an "AS IS" BASIS,
- # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- # See the License for the specific language governing permissions and
- # limitations under the License.
- #
- [users]
- # List of users with their password allowed to access Zeppelin.
- # To use a different strategy (LDAP / Database / ...) check the shiro doc at http://shiro.apache.org/configuration.html#Configuration-INISections
- #admin = password1
- #user1 = password2, role1, role2
- #user2 = password3, role3, admin
- #user3 = password4, role2
- # Sample LDAP configuration, for user Authentication, currently tested for single Realm
- [main]
- ### A sample for configuring Active Directory Realm
- activeDirectoryRealm = org.apache.zeppelin.server.ActiveDirectoryGroupRealm
- activeDirectoryRealm.systemUsername = CN=ZeppelinUser1,OU=Users,OU=Zeppelin,DC=MYAD,DC=COM
- activeDirectoryRealm.systemPassword = mypass
- activeDirectoryRealm.searchBase = OU=Zeppelin,DC=MYAD,DC=COM
- activeDirectoryRealm.url = ldap://myldap.com:389
- activeDirectoryRealm.groupRolesMap = "CN=ZeppelinGroup1,OU=Groups,OU=Zeppelin,DC=MYAD,DC=COM":"ZeppelinGroup1"
- #activeDirectoryRealm.authorizationCachingEnabled = true
- ### A sample for configuring LDAP Directory Realm
- #ldapRealm = org.apache.zeppelin.server.LdapGroupRealm
- ## search base for ldap groups (only relevant for LdapGroupRealm):
- #ldapRealm.contextFactory.environment[ldap.searchBase] =
- #ldapRealm.contextFactory.url =
- #ldapRealm.userDnTemplate =
- #ldapRealm.contextFactory.authenticationMechanism =
- sessionManager = org.apache.shiro.web.session.mgt.DefaultWebSessionManager
- ### If caching of user is required then uncomment below lines
- #cacheManager = org.apache.shiro.cache.MemoryConstrainedCacheManager
- #securityManager.cacheManager = $cacheManager
- securityManager.sessionManager = $sessionManager
- # 86,400,000 milliseconds = 24 hour
- securityManager.sessionManager.globalSessionTimeout = 86400000
- shiro.loginUrl = /api/login
- [roles]
- #role1 = *
- #role2 = *
- #role3 = *
- ZeppelinGroup1 = *
- [urls]
- # anon means the access is anonymous.
- # authcBasic means Basic Auth Security
- # authc means Form based Auth Security
- # To enfore security, comment the line below and uncomment the next one
- /api/version = anon
- #/** = anon
- /** = authc
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement