In order to make Zeppelin more easy to integrate in the modern cloud environments where authentication and authorization are done by having a centralized server for all the apps, Zeppelin shall support standard protocols for IAM purposes.
Regarding authentication -OpenId connect protocol Authorization -UMA protocol (user access management), which is a OAuth2.0 profile. This allows Resources owners to write their access control policies on the Authorization server and make the policy enforcement point in Zeppelin itself, for instance. A common language for policy expression can be XACML or the emerging ALFA language. -- View this message in context: http://apache-zeppelin-users-incubating-mailing-list.75479.x6.nabble.com/Zeppelin-should-support-standard-protocols-for-authN-and-AuthZ-tp5247.html Sent from the Apache Zeppelin Users (incubating) mailing list mailing list archive at Nabble.com.
