Software Version :
Zeppelin: Zeppelin-bin-0.8.1-All
FreeIPA: 4.6.4, please refer to the installation: https://blog.csdn.net/woloqun/article/details/89980646
Zeppelin Configuration
mv zeppelin-site.xml.template zeppelin-site.xml
<property>
<name>zeppelin.anonymous.allowed</name>
<value>false</value>
<description>Anonymous user allowed by default</description>
</property>
Configure LDAP
mv shiro.ini.template shiro.ini
[main]
ldapRealm = org.apache.zeppelin.realm.LdapGroupRealm
ldapRealm.contextFactory.environment[ldap.searchBase] = dc=haohaozhu,dc=hadoop
ldapRealm.contextFactory.url = ldap://zeppelin.haohaozhu.hadoop:389
ldapRealm.userDnTemplate = uid={0},cn=users,cn=accounts,dc=haohaozhu,dc=hadoop
ldapRealm.contextFactory.authenticationMechanism = simple
ldapRealm.contextFactory.systemUsername= uid=admin,cn=users,cn=accounts,dc=haohaozhu,dc=hadoop
ldapRealm.contextFactory.systemPassword= hadoop123
sessionManager = org.apache.shiro.web.session.mgt.DefaultWebSessionManager
cookie = org.apache.shiro.web.servlet.SimpleCookie
cookie.name = JSESSIONID
cookie.httpOnly = true
#cookie.secure = true
sessionManager.sessionIdCookie = $cookie
securityManager.sessionManager = $sessionManager
securityManager.sessionManager.globalSessionTimeout = 86400000
shiro.loginUrl = /api/login
[roles]
zeppelinadmin = *
[urls]
/api/version = anon
#/api/interpreter/setting/restart/** = authc
/api/interpreter/** = authc, roles[zeppelinadmin]
#/api/configurations/** = authc, roles[admin]
#/api/credential/** = authc, roles[admin]
#/** = anon
/** = authc
FreeIPA add users
zeppelin Log in
the upper right corner displays the login user
to add zeppelinadmin role in FreeIPA and add zeppelinadmin roles to admin, admin so that users have permission to configure the interpreter;