If you use nginx, the conf file below works for the most part (it doesn’t handle logout gracefully, so reload the page if the web socket disconnects) This assume you want port 8090 to require SSL, and it will proxy SSL to zeppelins default 8080 port. It also assume you have created a list of users and passwords in /etc/nginx/conf.d/zeppelin.htpasswd Using the linux htpasswd command line tool
It also assume zeppelin build 0.6.0 that has the web socket and web interface on the same port. To get build 0.6.0 use http://nflabs.github.io/z-manager/ Best Jeff Steinmetz server { listen 8090 ssl; ssl_certificate /path/to/certfile.cer; ssl_certificate_key /path/to/keyfile.key; error_page 497 https://$host:$server_port$request_uri$is_args$args; location / { auth_basic "Restricted"; auth_basic_user_file /etc/nginx/conf.d/zeppelin.htpasswd; proxy_pass http://localhost:8080; proxy_redirect off; proxy_set_header X-Real-IP $remote_addr; proxy_set_header Host $host; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; # Have also seen these used - not sure what they are for yet # don't seem to need them #proxy_set_header Host $host:$server_port; #proxy_set_header X-Forwarded-Ssl on; # WebSocket support (nginx 1.4) proxy_http_version 1.1; proxy_set_header Upgrade $http_upgrade; proxy_set_header Connection "upgrade"; } } From: moon soo Lee Reply-To: <[email protected]> Date: Tuesday, November 3, 2015 at 8:17 AM To: <[email protected]> Subject: Re: authentication Hi, Currently, Zeppelin does not have authentication. But you can try nice on going work here https://github.com/apache/incubator-zeppelin/pull/53 Alternatively, you can use any http proxy in front of Zeppelin for authentication. Thanks, moon On Tue, Nov 3, 2015 at 4:54 PM Girish Reddy <[email protected]> wrote: Hello: What are the options if we wish to secure notebooks with user authentication? Thanks.
