Keiji Yoshida created ZEPPELIN-3045:
---------------------------------------
Summary: Add the option which prevents the cron executing user
from being changed to users other than the login user
Key: ZEPPELIN-3045
URL: https://issues.apache.org/jira/browse/ZEPPELIN-3045
Project: Zeppelin
Issue Type: Improvement
Reporter: Keiji Yoshida
Assignee: Keiji Yoshida
Add the option to Zeppelin, that prevents the cron executing user from being
changed to users other than the login user.
Now, the cron executing user can be set to any users. That could cause a
security issue when the Hadoop cluster has data access control (managed by
Apache Ranger and so forth) because Zeppelin users can access the data which
they ordinary cannot access by setting other users as the cron executing user.
Thus, under the circumstances strict data access control is required, it is
necessary to add the option to Zeppelin, that prevents the cron executing user
from being changed to users other than the login user.
--
This message was sent by Atlassian JIRA
(v6.4.14#64029)
