This repository has been archived by the owner on Nov 17, 2023. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 58
DataLab Superset authetification
viravit edited this page Nov 8, 2021
·
3 revisions
- Not active/in progress
# Prerequisites:
Datalab with created rpoject and Edge node on local endpoint at GCP.
Superset notebook, based on Ubuntu 20.04 with Python 3.8 instance.
Keycloak server wich plays role of access mangement and identity solotion.
# Nodes description
## Edge node:
Datalab Edge node with installed Openresty (based on Nginx) is reverse proxy for Superset notebook.
Nginx config is located at /etc/openrest/conf.d/proxy.conf
Reverse proxy setting locateded at /etc/openresty/location/spst.conf
## Superset node:
Apache-Superset v1.0.0 installed as pip package for Python3.
Superset configuration located at /home/datalab-user/superset_config.py
Flask-oidc configuration for Keycloak is located at id_provider.json
Superset user exist in superset database as well as in Keycloak database
# Issue:
DEBUG:flask_oidc:CSRF token mismatch
# Expected result:
As Datalab use Openresty (Nginx) in pair with Keycloak to provide SSO user should be able to authorize at Superset without double authentication.
# Usefull links:
* Superset documenttation: https://superset.apache.org/docs/installation/installing-superset-from-scratch
* Flask App Builder Documentation: https://flask-appbuilder.readthedocs.io/en/latest/config.html
* Alternative configuration of using OpenID/Keycloak with Superset: https://stackoverflow.com/questions/47678321/using-openid-keycloak-with-superset