Skip to content

Orgnanizational access and email being unique user key #175

Discussion options

You must be logged in to vote

@pbasov this is an interesting use-case, but you are correct that right now deployKF needs to be told about who is in what group. This is because some resources (like secrets) need to be provisioned before the user logs in.

For the real world, this is usually fine because giving someone more than read access to deployKF does confer some significant trust (e.g. they can run arbitrary code in Notebooks or Pipelines). If you are doing a basic demo and having security/audit-trail is not a concern, you could make a few Static User/Password Combinations for each team while you are testing rather than generating profiles for each one.

NOTE: at a certain scale you might run into Kubernetes issues…

Replies: 1 comment

Comment options

You must be logged in to vote
0 replies
Answer selected by thesuperzapper
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
2 participants