GitHub user zjffdu opened a pull request:
https://github.com/apache/zeppelin/pull/2914
[ZEPPELIN-3350] Don't allow set cronExecutionUser
### What is this PR for?
This PR just does a quick fix this security issue.
1. Remove the setting cron user in frontend
2. Run the note via owner.
### What type of PR is it?
[Bug Fix ]
### Todos
* [ ] - Task
### What is the Jira issue?
* https://issues.apache.org/jira/browse/ZEPPELIN-3350
### How should this be tested?
* Manually tested
### Screenshots (if appropriate)
### Questions:
* Does the licenses files need update? No
* Is there breaking changes for older versions? No
* Does this needs documentation? No
You can merge this pull request into a Git repository by running:
$ git pull https://github.com/zjffdu/zeppelin ZEPPELIN-3350
Alternatively you can review and apply these changes as the patch at:
https://github.com/apache/zeppelin/pull/2914.patch
To close this pull request, make a commit to your master/trunk branch
with (at least) the following in the commit message:
This closes #2914
----
commit 805bffad10bc60bca613101953cc4ecefa72cf14
Author: Jeff Zhang <zjffdu@...>
Date: 2018-04-04T10:13:06Z
[ZEPPELIN-3350] Don't allow set cronExecutionUser
----
---
