Hi Lydia, On 8 May 2017 at 13:59, lheck <[email protected]> wrote:
> The latter (b) poses a security risk. Is there a means of enforcing a > password or linking the jupyter password to the user's system password? There are two parts of the answer here: 1. Since notebook 4.3, users without a password set are automatically secured by a randomly generated token to mitigate this risk. It's not strictly enforced - you can still configure it to use no security - but it's more secure by default. So upgrading your users to any version since 4.3 should improve matters easily. 2. If you're running a central, multi-user Jupyter installation, you should look at JupyterHub (http://jupyterhub.readthedocs.io/en/latest/ ), which is designed for precisely this use case. It can integrate with system logins for authentication, or with institutional single-sign on systems. Best wishes, Thomas -- You received this message because you are subscribed to the Google Groups "Project Jupyter" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/jupyter/CAOvn4qh4Dj5ixLO3%3DWNjJuCO7eqBEMpX%2Bz5eSAJOOgPez_2r5g%40mail.gmail.com. For more options, visit https://groups.google.com/d/optout.
