Github user zjffdu commented on the issue:
https://github.com/apache/zeppelin/pull/2407
@prabhjyotsingh @felixcheung I thought about this again. I don't have
concern on this PR, but have concern on how user should interact with shell
interpreter interpreter. I think the shell interpreter should behave as close
as bash terminal of linux. That means the user should call `kinit` if he want
to run shell command in kerberized cluster just as he did in linux shell
terminal. For now, the shell interpreter of zeppelin share the same
keytab/principal for all users even when in isolated and impersonated mode
which is a big security hole.
---
If your project is set up for it, you can reply to this email and have your
reply appear on GitHub as well. If your project does not have this feature
enabled and wishes so, or if the feature is enabled but not working, please
contact infrastructure at infrastruct...@apache.org or file a JIRA ticket
with INFRA.
---
