https://datahubproject.io logo
Docs
Join the conversationJoin Slack
Channels
acryl-omnisend
advice-data-governance
advice-metadata-modeling
all-things-datahub-in-windows
all-things-deployment
announcements
authentication-authorization
chatter
column-level-lineage
contribute
contribute-datahub-blog
data-council-workshop-2023
datahub-soda-test
demo-slack-notifications
design-business-glossary
design-data-product-entity
design-data-quality
design-datahub-documentation
design-dataset-access-requests
design-dataset-joins
feature-requests
flyte-datahub-integration
getting-started
github-activities
help-
i18n-community-contribution
ingestion
integration-alteryx-datahub
integration-azure-datahub
integration-dagster-datahub
integration-databricks-datahub
integration-datastudio-datahub
integration-iceberg-datahub
integration-powerbi-datahub
integration-prefect-datahub
integration-protobuf
integration-tableau-datahub
integration-vertica-datahub
introduce-yourself
jobs
metadata-day22-hackathon
muti-tenant-deployment
office-hours
openapi
plugins
show-and-tell
talk-data-product-management
troubleshoot
ui
Powered by Linen
authentication-authorization
  • c

    curved-magazine-23582

    07/20/2022, 1:45 PM
    good morning, how do I enable token based authentication in DataHub? currently that part of UI is disabled. Is there a config to enable that?
  • w

    witty-motorcycle-52108

    09/23/2022, 1:54 PM
    Hey y'all, wondering if anyone has deployed DH behind an authentication proxy before that does the entire auth flow but then provides a signed JWT to DH for Authn/z after the full auth flow has been completed?
  • c

    chilly-potato-57465

    09/28/2022, 8:54 AM
    Hello everyone! I am looking into the authentication and authorization topic and got several questions. So far as I understand, frontend authentication can be performed with OIDC and Azure AD, and in order to do that we need to register DataHub application in the MS Azure portal and then run the Azure AD source plugin. Is this correct? Then, for authorization roles and policies are used which can be assigned to users and groups. It is still not possible to assign DataHub roles based on Azure roles (https://datahubproject.io/docs/authorization/roles#whats-coming-next) but is it possible to assign roles/policies to Azure groups? That is not clear from the docs.
  • w

    worried-flower-88750

    11/10/2022, 9:10 PM
    X-posting, fingers crossed someone here has any thoughts, https://datahubspace.slack.com/archives/C029A3M079U/p1668099985693689
  • w

    witty-butcher-82399

    12/12/2022, 5:21 PM
    Hi! A couple of questions about authorization: I would like to define a policy such as: allow some users/groups to edit description for the datasets in a given data platform instance. This is somehow similar to this one: https://datahubproject.io/docs/authorization/policies#coming-soon
    • Ability to define Metadata Policies against multiple reosurces scoped to particular “Containers” (e.g. A “schema”, “database”, or “collection”)
    Just going higher in the hierarchy up to the platform instance level. In the current status, I was thinking on solving this with
    resource_urn
    criteria https://datahubproject.io/docs/authorization/policies#resources Does that criteria support other operators different from
    EQUALS
    such as starts with, contains or even regexp? Definitely in the UI this is not possible, is it possible via policy as code? Second question is about applying to owners.
    Whether this policy should be apply to owners of the Metadata asset. If true, those who are marked as owners of a Metadata Asset, either directly or indirectly via a Group, will have the selected privileges.
    Can this be restricted to some ownership in particular?
    • 1
    • 2
  • d

    dazzling-microphone-98929

    02/23/2023, 12:59 PM
    Hello team, somebody could help me?
    PipelineInitError: Failed to configure the source (powerbi): Powerbi authorization failed . Please check your input configuration.
    w
    • 2
    • 1
  • r

    rich-daybreak-77194

    03/18/2023, 3:23 AM
    I have a some question for user and group authenticatetion I user a SSO with google login but i want to know 1.Can we scope some user for login such as my org have 5 people (a,b,c,d,e) but i want a and b to login c,d,e shouldn’t use datahub 2.Can we auto set group to a,b with a reader at first time login (Group not role)
Powered by Linen
Title
r

rich-daybreak-77194

03/18/2023, 3:23 AM
I have a some question for user and group authenticatetion I user a SSO with google login but i want to know 1.Can we scope some user for login such as my org have 5 people (a,b,c,d,e) but i want a and b to login c,d,e shouldn’t use datahub 2.Can we auto set group to a,b with a reader at first time login (Group not role)
View count: 1