Hi! We have been exploring datahub for quite sometime now. We integrated it with Okta as the Identity Provider using this document - https://datahubproject.io/docs/how/auth/sso/configure-oidc-react-okta/. The integration seems to be working perfectly. However, there are a few concerns. 1. How does role-mapping from Okta to Datahub happen? a. As soon as we completed the integration, the previous functionality of logging in using username/password disappears. Hence, we are unable to use the admin user anymore. How do we mark users as admin/writer/reader in Datahub when authenticating from a third party IdP. 2. How do we do token based authentication for APIs instead of username/password based authentication? a. Since we integrated it with Okta, hence the usernames/passwords don't exist anymore. Is there any option to generate API tokens for ingesting lineage? Couldn't find an option in the UI. cc: @powerful-telephone-71997

The login url can still be opened for admin user. Unless you explicitly disabled jaas auth

Whenever I open the login url, it redirects to Okta and then authenticates me as my own user instead of allowing me to login as admin. I did not explicitly disable jaas auth, just followed the steps in above doc

You will get redirected to okta if u visit <your datahub instance address>:9002/ But try <your datahub instance address>:9002/logIn, it should direct you to the default datahub login portal

Let me try this out @better-orange-49102, thanks

Hello, Any pointers on question 1 above? @better-orange-49102 @square-activity-64562