Hi everyone, I'm back with my authentication questions. Here is my shiro.ini config file. The problem is that it lets in all users from search base "OU=Users,DC=companyname,DC=local" How can I restrict the access to only one user who owns a notebook? The process zeppelin-daemon.sh is running by this user
[main] activeDirectoryRealm = org.apache.zeppelin.server.ActiveDirectoryGroupRealm activeDirectoryRealm.systemUsername = userNameA activeDirectoryRealm.systemPassword = passwordA activeDirectoryRealm.searchBase = "OU=Users,DC=companyname,DC=local" activeDirectoryRealm.principalSuffix = @companyname.local activeDirectoryRealm.url = ldap://ldapserver.companyname.local:389 activeDirectoryRealm.groupRolesMap = "OU=Users,DC=companyname,DC=local":"admin" activeDirectoryRealm.authorizationCachingEnabled = false securityManager.realms = $activeDirectoryRealm sessionManager = org.apache.shiro.web.session.mgt.DefaultWebSessionManager securityManager.sessionManager = $sessionManager securityManager.sessionManager.globalSessionTimeout = 86400000 shiro.loginUrl = /api/login [roles] admin = * [urls] /** = authc Thanks Cheers Polina
