You can refer to the following configuration: [users] # List of users with their password allowed to access Zeppelin. # To use a different strategy (LDAP / Database / ...) check the shiro doc at http://shiro.apache.org/configuration.html#Configuration-INISections <http://shiro.apache.org/configuration.html#Configuration-INISections> # To enable admin user, uncomment the following line and set an appropriate password. admin = password1, admin user1 = password1, bi user2 = password2, bi user3 = password3, bi
[roles] bi = * admin = * [urls] # This section is used for url-based security. # You can secure interpreter, configuration and credential information by urls. Comment or uncomment the below urls that you want to hide. # anon means the access is anonymous. # authc means Form based Auth Security # To enfore security, comment the line below and uncomment the next one /api/version = anon /api/openid/* = anon /api/interpreter/** = authc, roles[admin] /api/configurations/** = authc, roles[admin] /api/credential/** = authc, roles[admin] > 在 2018年10月26日,下午7:40,Spico Florin <spicoflo...@gmail.com> 写道: > > Hello! > > I would like to know what are the available roles in Zeppelin (besides admin > that has *). > How can I create/define my own roles based on the actions that an user is > allowed. > In the shiro.ini the examples are to generic, having role1, role2 all action > allowed *. > > Can you please define the fine grained action that I can add in arole? > > I look forward for your answers. > Best regards, > Florin