From 9e0f85a1ff941577c99a3f992facaf750d1913bd Mon Sep 17 00:00:00 2001
From: Nelson Costa <nelson.costa85@gmail.com>
Date: Fri, 6 Apr 2018 09:44:07 +0100
Subject: [PATCH] [ZEPPELIN-3168] Interpreter Settings Authorization

---
 docs/usage/interpreter/overview.md            |  17 +++
 .../zeppelin/conf/ZeppelinConfiguration.java  |   1 -
 .../DefaultInterpreterProperty.java           |  29 +++--
 .../interpreter/InterpreterOption.java        | 103 ++++++++++-----
 .../interpreter/InterpreterProperty.java      |  28 +++-
 .../zeppelin/rest/InterpreterRestApi.java     |  55 +++++++-
 .../zeppelin/rest/AbstractTestRestApi.java    |  14 +-
 .../app/interpreter/interpreter-create.html   |  52 +++++---
 .../app/interpreter/interpreter.controller.js |  80 +++++++++---
 .../src/app/interpreter/interpreter.html      | 120 +++++++++++++-----
 zeppelin-web/src/app/notebook/notebook.html   |   4 +-
 .../interpreter/InterpreterAuthorization.java |  93 ++++++++++++++
 .../interpreter/InterpreterInfoSaving.java    |   7 +-
 .../interpreter/InterpreterSetting.java       |  51 +++-----
 .../InterpreterSettingManager.java            |  33 +++--
 .../apache/zeppelin/notebook/Paragraph.java   |   2 +-
 .../zeppelin/storage/ConfigStorage.java       |   3 +-
 .../storage/FileSystemConfigStorage.java      |   7 -
 18 files changed, 521 insertions(+), 178 deletions(-)
 create mode 100644 zeppelin-zengine/src/main/java/org/apache/zeppelin/interpreter/InterpreterAuthorization.java

diff --git a/docs/usage/interpreter/overview.md b/docs/usage/interpreter/overview.md
index 035c381b8a9..9b059050e4c 100644
--- a/docs/usage/interpreter/overview.md
+++ b/docs/usage/interpreter/overview.md
@@ -152,3 +152,20 @@ In such cases, interpreter process recovery is necessary. Starting from 0.8.0, u
 `org.apache.zeppelin.interpreter.recovery.FileSystemRecoveryStorage` or other implementations if available in future, by default it is `org.apache.zeppelin.interpreter.recovery.NullRecoveryStorage`
  which means recovery is not enabled. Enable recover means shutting down Zeppelin would not terminating interpreter process,
 and when Zeppelin is restarted, it would try to reconnect to the existing running interpreter processes. If you want to kill all the interpreter processes after terminating Zeppelin even when recovery is enabled, you can run `bin/stop-interpreter.sh` 
+
+## Interpreter permissions
+
+Zeppelin's interpreter settings contain 2 levels of permissions:
+* Owners - Can run/read/edit/restart an interpreter setting
+* Readers - Cannot edit an interpreter setting
+
+These settings can be set directly on `interpreter.json` or in the Interpreter Settings page, `Set permissions` option.
+
+## Interpreter properties
+
+Zeppelin's interpreter properties allow the setting of the following attributes:
+* Name - Name of the property
+* Value - Value of the property
+* Type - Value type of the property (number, string, url, ...)
+* Readonly - Flag indicating if property is editable or not in UI
+* Description - Description of the property
diff --git a/zeppelin-interpreter/src/main/java/org/apache/zeppelin/conf/ZeppelinConfiguration.java b/zeppelin-interpreter/src/main/java/org/apache/zeppelin/conf/ZeppelinConfiguration.java
index 2960cd03faa..00a96c70d78 100644
--- a/zeppelin-interpreter/src/main/java/org/apache/zeppelin/conf/ZeppelinConfiguration.java
+++ b/zeppelin-interpreter/src/main/java/org/apache/zeppelin/conf/ZeppelinConfiguration.java
@@ -798,7 +798,6 @@ public enum ConfVars {
     ZEPPELIN_NOTEBOOK_GIT_REMOTE_ORIGIN("zeppelin.notebook.git.remote.origin", "origin"),
     ZEPPELIN_NOTEBOOK_CRON_ENABLE("zeppelin.notebook.cron.enable", false),
     ZEPPELIN_NOTEBOOK_CRON_FOLDERS("zeppelin.notebook.cron.folders", null);
-
     private String varName;
     @SuppressWarnings("rawtypes")
     private Class varClass;
diff --git a/zeppelin-interpreter/src/main/java/org/apache/zeppelin/interpreter/DefaultInterpreterProperty.java b/zeppelin-interpreter/src/main/java/org/apache/zeppelin/interpreter/DefaultInterpreterProperty.java
index f11cbc37b1a..d0f69e7a9d3 100644
--- a/zeppelin-interpreter/src/main/java/org/apache/zeppelin/interpreter/DefaultInterpreterProperty.java
+++ b/zeppelin-interpreter/src/main/java/org/apache/zeppelin/interpreter/DefaultInterpreterProperty.java
@@ -18,7 +18,7 @@
 package org.apache.zeppelin.interpreter;
 
 /**
- * Property for registered interpreter
+ * Registered interpreter property object (interpreter-setting.json)
  */
 public class DefaultInterpreterProperty {
   private String envName;
@@ -26,32 +26,36 @@ public class DefaultInterpreterProperty {
   private Object defaultValue;
   private String description;
   private String type;
+  private Boolean readonly;
 
   public DefaultInterpreterProperty(String envName, String propertyName, Object defaultValue,
-                                String description, String type) {
+                                String description, String type, Boolean readonly) {
     this.envName = envName;
     this.propertyName = propertyName;
     this.defaultValue = defaultValue;
     this.description = description;
     this.type = type;
+    this.readonly = readonly;
   }
 
   public DefaultInterpreterProperty(Object defaultValue, String description, String type) {
-    this(null, null, defaultValue, description, type);
+    this(null, null, defaultValue, description, type, false);
   }
 
   public DefaultInterpreterProperty(Object defaultValue, String description) {
-    this(null, null, defaultValue, description, InterpreterPropertyType.TEXTAREA.getValue());
+    this(null, null, defaultValue, description,
+            InterpreterPropertyType.TEXTAREA.getValue(), false);
   }
 
   public DefaultInterpreterProperty(String envName, String propertyName, String defaultValue) {
-    this(envName, propertyName, defaultValue, null, InterpreterPropertyType.TEXTAREA.getValue());
+    this(envName, propertyName, defaultValue, null,
+            InterpreterPropertyType.TEXTAREA.getValue(), false);
   }
 
   public DefaultInterpreterProperty(String envName, String propertyName, String defaultValue,
       String description) {
     this(envName, propertyName, defaultValue, description,
-        InterpreterPropertyType.TEXTAREA.getValue());
+        InterpreterPropertyType.TEXTAREA.getValue(), false);
   }
 
   public String getEnvName() {
@@ -94,6 +98,14 @@ public void setType(String type) {
     this.type = type;
   }
 
+  public Boolean getReadonly() {
+    return readonly;
+  }
+
+  public void setReadonly(Boolean readonly) {
+    this.readonly = readonly;
+  }
+
   public int hashCode() {
     return this.toString().hashCode();
   }
@@ -122,7 +134,8 @@ public Object getValue() {
 
   @Override
   public String toString() {
-    return String.format("{envName=%s, propertyName=%s, defaultValue=%s, description=%20s, " +
-            "type=%s}", envName, propertyName, defaultValue, description, type);
+    return String.format("{envName=%s, propertyName=%s, defaultValue=%s, " +
+            "description=%20s, type=%s, readonly=%s}",
+            envName, propertyName, defaultValue, description, type, readonly);
   }
 }
diff --git a/zeppelin-interpreter/src/main/java/org/apache/zeppelin/interpreter/InterpreterOption.java b/zeppelin-interpreter/src/main/java/org/apache/zeppelin/interpreter/InterpreterOption.java
index e8a92255fc9..f4ab42c408e 100644
--- a/zeppelin-interpreter/src/main/java/org/apache/zeppelin/interpreter/InterpreterOption.java
+++ b/zeppelin-interpreter/src/main/java/org/apache/zeppelin/interpreter/InterpreterOption.java
@@ -17,11 +17,15 @@
 
 package org.apache.zeppelin.interpreter;
 
-import java.util.ArrayList;
-import java.util.List;
+import com.google.gson.JsonArray;
+import com.google.gson.JsonElement;
+import com.google.gson.JsonObject;
+
+import java.util.Set;
+import java.util.HashSet;
 
 /**
- *
+ * Interpreter options object
  */
 public class InterpreterOption {
   public static final transient String SHARED = "shared";
@@ -30,23 +34,35 @@ public class InterpreterOption {
 
   // always set it as true, keep this field just for backward compatibility
   boolean remote = true;
-  String host = null;
-  int port = -1;
+  private String host = null;
+  private int port = -1;
 
   String perNote;
   String perUser;
 
   boolean isExistingProcess;
-  boolean setPermission;
-  List<String> owners;
-  boolean isUserImpersonate;
+  private boolean setPermission;
+  private Set<String> owners;
+  private Set<String> readers;
+  private boolean isUserImpersonate;
+  private boolean disallowCustomInterpreter;
 
-  public boolean isExistingProcess() {
-    return isExistingProcess;
+  public InterpreterOption() { }
+
+  public InterpreterOption(String perUser, String perNote) {
+    if (perUser == null) {
+      throw new NullPointerException("perUser can not be null.");
+    }
+    if (perNote == null) {
+      throw new NullPointerException("perNote can not be null.");
+    }
+
+    this.perUser = perUser;
+    this.perNote = perNote;
   }
 
-  public void setExistingProcess(boolean isExistingProcess) {
-    this.isExistingProcess = isExistingProcess;
+  public boolean isExistingProcess() {
+    return isExistingProcess;
   }
 
   public void setPort(int port) {
@@ -61,12 +77,12 @@ public boolean permissionIsSet() {
     return setPermission;
   }
 
-  public void setUserPermission(boolean setPermission) {
-    this.setPermission = setPermission;
+  public Set<String> getOwners() {
+    return owners;
   }
 
-  public List<String> getOwners() {
-    return owners;
+  public Set<String> getReaders() {
+    return readers;
   }
 
   public boolean isUserImpersonate() {
@@ -77,19 +93,12 @@ public void setUserImpersonate(boolean userImpersonate) {
     isUserImpersonate = userImpersonate;
   }
 
-  public InterpreterOption() {
+  public boolean getDisallowCustomInterpreter() {
+    return disallowCustomInterpreter;
   }
 
-  public InterpreterOption(String perUser, String perNote) {
-    if (perUser == null) {
-      throw new NullPointerException("perUser can not be null.");
-    }
-    if (perNote == null) {
-      throw new NullPointerException("perNote can not be null.");
-    }
-
-    this.perUser = perUser;
-    this.perNote = perNote;
+  public void setDisallowCustomInterpreter(boolean customInterpreter) {
+    disallowCustomInterpreter = customInterpreter;
   }
 
   public static InterpreterOption fromInterpreterOption(InterpreterOption other) {
@@ -102,8 +111,9 @@ public static InterpreterOption fromInterpreterOption(InterpreterOption other) {
     option.isExistingProcess = other.isExistingProcess;
     option.setPermission = other.setPermission;
     option.owners = (null == other.owners) ?
-        new ArrayList<String>() : new ArrayList<>(other.owners);
-
+        new HashSet<String>() : new HashSet<>(other.owners);
+    option.readers = (null == other.readers) ?
+            new HashSet<String>() : new HashSet<>(other.readers);
     return option;
   }
 
@@ -115,7 +125,6 @@ public int getPort() {
     return port;
   }
 
-
   public boolean perUserShared() {
     return SHARED.equals(perUser);
   }
@@ -155,4 +164,38 @@ public void setPerNote(String perNote) {
   public void setPerUser(String perUser) {
     this.perUser = perUser;
   }
+
+  public void convertToOwners(JsonObject jsonObject) {
+    if (jsonObject != null) {
+      JsonObject option = jsonObject.getAsJsonObject("option");
+      if (option != null) {
+        JsonArray users = option.getAsJsonArray("users");
+        if (users != null) {
+          if (this.getOwners() == null) {
+            this.owners = new HashSet<>();
+          }
+          for (JsonElement user : users) {
+            this.getOwners().add(user.getAsString());
+          }
+        }
+      }
+    }
+  }
+
+  public void convertToReaders(JsonObject jsonObject) {
+    if (jsonObject != null) {
+      JsonObject option = jsonObject.getAsJsonObject("option");
+      if (option != null) {
+        JsonArray users = option.getAsJsonArray("users");
+        if (users != null) {
+          if (this.getReaders() == null) {
+            this.readers = new HashSet<>();
+          }
+          for (JsonElement user : users) {
+            this.getReaders().add(user.getAsString());
+          }
+        }
+      }
+    }
+  }
 }
diff --git a/zeppelin-interpreter/src/main/java/org/apache/zeppelin/interpreter/InterpreterProperty.java b/zeppelin-interpreter/src/main/java/org/apache/zeppelin/interpreter/InterpreterProperty.java
index 92cf3a8febc..e0ff5e6b3a3 100644
--- a/zeppelin-interpreter/src/main/java/org/apache/zeppelin/interpreter/InterpreterProperty.java
+++ b/zeppelin-interpreter/src/main/java/org/apache/zeppelin/interpreter/InterpreterProperty.java
@@ -18,17 +18,22 @@
 package org.apache.zeppelin.interpreter;
 
 /**
- * Property for instance of interpreter
+ * Interpreter property object (interpreter.json)
  */
 public class InterpreterProperty {
   private String name;
   private Object value;
   private String type;
+  private Boolean readonly;
+  private String description;
 
-  public InterpreterProperty(String name, Object value, String type) {
+  public InterpreterProperty(String name, Object value, String type,
+                             Boolean readonly, String description) {
     this.name = name;
     this.value = value;
     this.type = type;
+    this.readonly = readonly;
+    this.description = description;
   }
 
   public InterpreterProperty(String name, Object value) {
@@ -61,8 +66,25 @@ public void setType(String type) {
     this.type = type;
   }
 
+  public Boolean getReadonly() {
+    return readonly;
+  }
+
+  public void setReadonly(Boolean readonly) {
+    this.readonly = readonly;
+  }
+
+  public String getDescription() {
+    return description;
+  }
+
+  public void setDescription(String description) {
+    this.description = description;
+  }
+
   @Override
   public String toString() {
-    return String.format("{name=%s, value=%s, type=%s}", name, value, type);
+    return String.format("{name=%s, value=%s, type=%s, readonly=%s}",
+            name, value, type, readonly);
   }
 }
diff --git a/zeppelin-server/src/main/java/org/apache/zeppelin/rest/InterpreterRestApi.java b/zeppelin-server/src/main/java/org/apache/zeppelin/rest/InterpreterRestApi.java
index 479740d6c8e..dd6817c9f41 100644
--- a/zeppelin-server/src/main/java/org/apache/zeppelin/rest/InterpreterRestApi.java
+++ b/zeppelin-server/src/main/java/org/apache/zeppelin/rest/InterpreterRestApi.java
@@ -22,8 +22,11 @@
 import org.sonatype.aether.repository.RemoteRepository;
 
 import java.io.IOException;
+import java.util.Iterator;
 import java.util.List;
 import java.util.Map;
+import java.util.Set;
+import java.util.ArrayList;
 
 import javax.servlet.http.HttpServletRequest;
 import javax.ws.rs.DELETE;
@@ -37,12 +40,15 @@
 import javax.ws.rs.core.Response;
 import javax.ws.rs.core.Response.Status;
 
+import com.google.common.collect.Sets;
 import org.apache.zeppelin.annotation.ZeppelinApi;
 import org.apache.zeppelin.dep.Repository;
+import org.apache.zeppelin.interpreter.InterpreterAuthorization;
 import org.apache.zeppelin.interpreter.InterpreterException;
 import org.apache.zeppelin.interpreter.InterpreterPropertyType;
 import org.apache.zeppelin.interpreter.InterpreterSetting;
 import org.apache.zeppelin.interpreter.InterpreterSettingManager;
+import org.apache.zeppelin.rest.exception.ForbiddenException;
 import org.apache.zeppelin.rest.message.NewInterpreterSettingRequest;
 import org.apache.zeppelin.rest.message.RestartInterpreterRequest;
 import org.apache.zeppelin.rest.message.UpdateInterpreterSettingRequest;
@@ -60,6 +66,7 @@ public class InterpreterRestApi {
 
   private InterpreterSettingManager interpreterSettingManager;
   private NotebookServer notebookServer;
+  private InterpreterAuthorization interpreterAuthorization;
 
   public InterpreterRestApi() {
   }
@@ -68,6 +75,7 @@ public InterpreterRestApi(InterpreterSettingManager interpreterSettingManager,
           NotebookServer notebookWsServer) {
     this.interpreterSettingManager = interpreterSettingManager;
     this.notebookServer = notebookWsServer;
+    this.interpreterAuthorization = new InterpreterAuthorization(interpreterSettingManager);
   }
 
   /**
@@ -77,7 +85,17 @@ public InterpreterRestApi(InterpreterSettingManager interpreterSettingManager,
   @Path("setting")
   @ZeppelinApi
   public Response listSettings() {
-    return new JsonResponse<>(Status.OK, "", interpreterSettingManager.get()).build();
+    List<InterpreterSetting> settings = interpreterSettingManager.get();
+    List<InterpreterSetting> filteredSettings = new ArrayList<>();
+    Iterator<InterpreterSetting> it = settings.iterator();
+    Set<String> userAndRoles = getUserAndRoles();
+    while (it.hasNext()) {
+      InterpreterSetting c = it.next();
+      if (interpreterAuthorization.hasReadAuthorization(userAndRoles, c.getId())) {
+        filteredSettings.add(c);
+      }
+    }
+    return new JsonResponse<>(Status.OK, "", filteredSettings).build();
   }
 
   /**
@@ -89,6 +107,9 @@ public Response listSettings() {
   public Response getSetting(@PathParam("settingId") String settingId) {
     try {
       InterpreterSetting setting = interpreterSettingManager.get(settingId);
+
+      checkIfUserCanRead(settingId, "No permissions to get interpreter setting");
+
       if (setting == null) {
         return new JsonResponse<>(Status.NOT_FOUND).build();
       } else {
@@ -136,6 +157,8 @@ public Response updateSetting(String message, @PathParam("settingId") String set
     logger.info("Update interpreterSetting {}", settingId);
 
     try {
+      checkIfUserCanWrite(settingId, "No permissions to update interpreter setting");
+
       UpdateInterpreterSettingRequest request =
           UpdateInterpreterSettingRequest.fromJson(message);
       interpreterSettingManager
@@ -164,6 +187,7 @@ public Response updateSetting(String message, @PathParam("settingId") String set
   @Path("setting/{settingId}")
   @ZeppelinApi
   public Response removeSetting(@PathParam("settingId") String settingId) throws IOException {
+    checkIfUserCanWrite(settingId, "No permissions to remove interpreter setting");
     logger.info("Remove interpreterSetting {}", settingId);
     interpreterSettingManager.remove(settingId);
     return new JsonResponse(Status.OK).build();
@@ -256,8 +280,13 @@ public Response getMetaInfo(@Context HttpServletRequest req,
     if (interpreterSetting == null) {
       return new JsonResponse<>(Status.NOT_FOUND).build();
     }
-    Map<String, String> infos = interpreterSetting.getInfos();
-    return new JsonResponse<>(Status.OK, "metadata", infos).build();
+    Map<String, String> infosAll = interpreterSetting.getInfos();
+    Set<String> userAndRoles = getUserAndRoles();
+    infosAll.put("canRead", String.valueOf(interpreterAuthorization
+            .hasReadAuthorization(userAndRoles, settingId)));
+    infosAll.put("canWrite", String.valueOf(interpreterAuthorization
+            .hasWriteAuthorization(userAndRoles, settingId)));
+    return new JsonResponse<>(Status.OK, "metadata", infosAll).build();
   }
 
   /**
@@ -288,4 +317,24 @@ public Response removeRepository(@PathParam("repoId") String repoId) {
   public Response listInterpreterPropertyTypes() {
     return new JsonResponse<>(Status.OK, InterpreterPropertyType.getTypes()).build();
   }
+  private void checkIfUserCanRead(String settingId, String errorMsg) {
+    Set<String> userAndRoles = getUserAndRoles();
+    if (!interpreterAuthorization.hasReadAuthorization(userAndRoles, settingId)) {
+      throw new ForbiddenException(errorMsg);
+    }
+  }
+
+  private void checkIfUserCanWrite(String settingId, String errorMsg) {
+    Set<String> userAndRoles = getUserAndRoles();
+    if (!interpreterAuthorization.hasWriteAuthorization(userAndRoles, settingId)) {
+      throw new ForbiddenException(errorMsg);
+    }
+  }
+
+  private Set<String> getUserAndRoles() {
+    Set<String> userAndRoles = Sets.newHashSet();
+    userAndRoles.add(SecurityUtils.getPrincipal());
+    userAndRoles.addAll(SecurityUtils.getRoles());
+    return userAndRoles;
+  }
 }
diff --git a/zeppelin-server/src/test/java/org/apache/zeppelin/rest/AbstractTestRestApi.java b/zeppelin-server/src/test/java/org/apache/zeppelin/rest/AbstractTestRestApi.java
index 172f1175ecd..cfd112dcd82 100644
--- a/zeppelin-server/src/test/java/org/apache/zeppelin/rest/AbstractTestRestApi.java
+++ b/zeppelin-server/src/test/java/org/apache/zeppelin/rest/AbstractTestRestApi.java
@@ -58,10 +58,10 @@
 public abstract class AbstractTestRestApi {
   protected static final Logger LOG = LoggerFactory.getLogger(AbstractTestRestApi.class);
 
-  static final String REST_API_URL = "/api";
-  static final String URL = getUrlToTest();
-  protected static final boolean WAS_RUNNING = checkIfServerIsRunning();
-  static boolean isRunningWithAuth = false;
+  private static final String REST_API_URL = "/api";
+  private static final String URL = getUrlToTest();
+  private static final boolean WAS_RUNNING = checkIfServerIsRunning();
+  private static boolean isRunningWithAuth = false;
 
   private static File shiroIni = null;
   private static String zeppelinShiro =
@@ -126,8 +126,8 @@ public abstract class AbstractTestRestApi {
           + "/bA8TFNPblPxavIOcd+R+RfFmT1YKfYIhco=\n"
           + "-----END CERTIFICATE-----";
 
-  protected static File zeppelinHome;
-  protected static File confDir;
+  private static File zeppelinHome;
+  private static File confDir;
 
   private String getUrl(String path) {
     String url;
@@ -152,7 +152,7 @@ protected static String getUrlToTest() {
     return url;
   }
 
-  static ExecutorService executor;
+  private static ExecutorService executor;
   protected static final Runnable SERVER = new Runnable() {
     @Override
     public void run() {
diff --git a/zeppelin-web/src/app/interpreter/interpreter-create.html b/zeppelin-web/src/app/interpreter/interpreter-create.html
index 8bf29a91f43..ebe61825632 100644
--- a/zeppelin-web/src/app/interpreter/interpreter-create.html
+++ b/zeppelin-web/src/app/interpreter/interpreter-create.html
@@ -235,12 +235,13 @@ <h5>Option</h5>
         <div class="row interpreter">
           <div class="col-md-12">
             <div class="checkbox remove-margin-top-bottom">
-          <span class="input-group" style="line-height:30px;">
-            <label>
-              <input type="checkbox" style="width:20px !important" id="idShowPermission" ng-click="togglePermissions('newInterpreter')" ng-model="newInterpreterSetting.option.setPermission"/>
-               Set permission
-            </label>
-          </span>
+              <span class="input-group" style="line-height:30px;">
+                <label>
+                  <input type="checkbox" style="width:20px !important" id="idShowPermission"
+                         ng-click="togglePermissions('newInterpreter')" ng-model="newInterpreterSetting.option.setPermission"/>
+                   Set permissions
+                </label>
+              </span>
             </div>
           </div>
         </div>
@@ -251,16 +252,27 @@ <h5>Option</h5>
             <!-- permissions -->
             <div ng-show="newInterpreterSetting.option.setPermission" class="permissionsForm">
               <div>
-                <p>
-                  Enter comma separated users and groups in the fields. <br />
-                  Empty field (*) implies anyone can run this interpreter.
+                <p>Enter comma separated users/roles in the fields.<br />
+                  Empty field implies no restrictions.
                 </p>
                 <div>
-                  <span class="owners">Owners </span>
+                  <span class="owners" tooltip-append-to-body="true" tooltip-placement="top-left"
+                        uib-tooltip="Owners can run/read/edit/restart an interpreter setting">
+                    Owners:
+                  </span>
                   <select id="newInterpreterOwners" class="form-control" multiple="multiple">
                     <option ng-repeat="owner in newInterpreterSetting.option.owners" selected="selected">{{owner}}</option>
                   </select>
                 </div>
+                <div>
+                  <span class="readers" tooltip-append-to-body="true" tooltip-placement="top-left"
+                        uib-tooltip="Readers can only run/read/restart an interpreter setting">
+                    Readers:
+                  </span>
+                  <select id="newInterpreterReaders" class="form-control" multiple="multiple">
+                    <option ng-repeat="reader in newInterpreterSetting.option.readers" selected="selected">{{reader}}</option>
+                  </select>
+                </div>
               </div>
             </div>
           </div>
@@ -272,8 +284,9 @@ <h5>Properties</h5>
             <tr>
               <th>name</th>
               <th>value</th>
-              <th>action</th>
+              <th style="text-align: center;">read-only</th>
               <th>description</th>
+              <th>action</th>
             </tr>
             <tr ng-repeat="key in newInterpreterSetting.properties | sortByKey">
               <td>{{key}}</td>
@@ -292,14 +305,17 @@ <h5>Properties</h5>
                        type="checkbox" msd-elastic ng-model="newInterpreterSetting.properties[key].value" />
               </td>
               <td style="vertical-align: middle;">
-                <button class="btn btn-default btn-sm fa fa-remove" ng-click="removeInterpreterProperty(key)">
-                </button>
+                <input type="checkbox" msd-elastic
+                       ng-model="newInterpreterSetting.properties[key].readonly" />
               </td>
               <td style="vertical-align: middle;">
                 {{newInterpreterSetting.properties[key].description}}
               </td>
+              <td style="vertical-align: middle;">
+                <button class="btn btn-default btn-sm fa fa-remove" ng-click="removeInterpreterProperty(key)">
+                </button>
+              </td>
             </tr>
-
             <tr>
               <td style="vertical-align: middle;">
                 <input pu-elastic-input pu-elastic-input-minwidth="180px"
@@ -313,6 +329,13 @@ <h5>Properties</h5>
                 <input ng-switch-when="password" type="password" msd-elastic ng-model="newInterpreterSetting.propertyValue" />
                 <input ng-switch-when="checkbox" type="checkbox" msd-elastic ng-model="newInterpreterSetting.propertyValue" />
               </td>
+              <td style="vertical-align: middle;">
+                <input type="checkbox" msd-elastic
+                       ng-model="newInterpreterSetting.propertyReadonly" />
+              </td>
+              <td style="vertical-align: middle;">
+                <textarea msd-elastic ng-model="newInterpreterSetting.propertyDesc"></textarea>
+              </td>
               <td style="vertical-align: middle;">
                 <select msd-elastic ng-model="newInterpreterSetting.propertyType" ng-init="newInterpreterSetting.propertyType=interpreterPropertyTypes[0]"
                         ng-options="item for item in interpreterPropertyTypes" ng-change="defaultValueByType(newInterpreterSetting)">
@@ -320,7 +343,6 @@ <h5>Properties</h5>
                 <button class="btn btn-default btn-sm fa fa-plus" ng-click="addNewInterpreterProperty()">
                 </button>
               </td>
-              <td></td>
             </tr>
           </table>
         </div>
diff --git a/zeppelin-web/src/app/interpreter/interpreter.controller.js b/zeppelin-web/src/app/interpreter/interpreter.controller.js
index ef6b8a5eb95..7c78abbf5b4 100644
--- a/zeppelin-web/src/app/interpreter/interpreter.controller.js
+++ b/zeppelin-web/src/app/interpreter/interpreter.controller.js
@@ -95,6 +95,7 @@ function InterpreterCtrl($rootScope, $scope, $http, baseUrlSrv, ngToast, $timeou
 
   $scope.togglePermissions = function(intpName) {
     angular.element('#' + intpName + 'Owners').select2(getSelectJson());
+    angular.element('#' + intpName + 'Readers').select2(getSelectJson());
     if ($scope.showInterpreterAuth) {
       $scope.closePermissions();
     } else {
@@ -105,6 +106,7 @@ function InterpreterCtrl($rootScope, $scope, $http, baseUrlSrv, ngToast, $timeou
   $scope.$on('ngRenderFinished', function(event, data) {
     for (let setting = 0; setting < $scope.interpreterSettings.length; setting++) {
       angular.element('#' + $scope.interpreterSettings[setting].name + 'Owners').select2(getSelectJson());
+      angular.element('#' + $scope.interpreterSettings[setting].name + 'Readers').select2(getSelectJson());
     }
   });
 
@@ -154,9 +156,16 @@ function InterpreterCtrl($rootScope, $scope, $http, baseUrlSrv, ngToast, $timeou
     }
   };
 
-  let getAvailableInterpreters = function() {
-    $http.get(baseUrlSrv.getRestApiBase() + '/interpreter').then(function(res) {
-      $scope.availableInterpreters = res.data.body;
+  let getCustomInterpreters = function() {
+    $http.get(baseUrlSrv.getRestApiBase() + '/interpreter/setting').then(function(res) {
+      let customInterpreters = {};
+      for (let i = 0; i < res.data.body.length; i++) {
+        let intSetting = res.data.body[i];
+        if (!intSetting.option.disallowCustomInterpreter) {
+          customInterpreters[i] = intSetting;
+        }
+      }
+      $scope.availableInterpreters = customInterpreters;
     }).catch(function(res) {
       console.log('Error %o %o', res.status, res.data ? res.data.message : '');
     });
@@ -172,7 +181,13 @@ function InterpreterCtrl($rootScope, $scope, $http, baseUrlSrv, ngToast, $timeou
   };
 
   let emptyNewProperty = function(object) {
-    angular.extend(object, {propertyValue: '', propertyKey: '', propertyType: $scope.interpreterPropertyTypes[0]});
+    angular.extend(object, {
+      propertyKey: '',
+      propertyValue: '',
+      propertyReadonly: false,
+      propertyType: $scope.interpreterPropertyTypes[0],
+      propertyDesc: '',
+    });
   };
 
   let emptyNewDependency = function(object) {
@@ -183,11 +198,6 @@ function InterpreterCtrl($rootScope, $scope, $http, baseUrlSrv, ngToast, $timeou
     interpreterSettingsTmp.splice(index, 1);
   };
 
-  $scope.copyOriginInterpreterSettingProperties = function(settingId) {
-    let index = _.findIndex($scope.interpreterSettings, {'id': settingId});
-    interpreterSettingsTmp[index] = angular.copy($scope.interpreterSettings[index]);
-  };
-
   $scope.setPerNoteOption = function(settingId, sessionOption) {
     let option;
     if (settingId === undefined) {
@@ -370,6 +380,9 @@ function InterpreterCtrl($rootScope, $scope, $http, baseUrlSrv, ngToast, $timeou
           if (setting.option.isUserImpersonate === undefined) {
             setting.option.isUserImpersonate = false;
           }
+          if (setting.option.disallowCustomInterpreter === undefined) {
+            setting.option.disallowCustomInterpreter = false;
+          }
           if (!($scope.getInterpreterRunningOption(settingId) === 'Per User' &&
             $scope.getPerUserOption(settingId) === 'isolated')) {
             setting.option.isUserImpersonate = false;
@@ -382,6 +395,7 @@ function InterpreterCtrl($rootScope, $scope, $http, baseUrlSrv, ngToast, $timeou
           for (let i = 0; i < setting.option.owners.length; i++) {
             setting.option.owners[i] = setting.option.owners[i].trim();
           }
+          setting.option.readers = angular.element('#' + setting.name + 'Readers').val();
 
           let request = {
             option: angular.copy(setting.option),
@@ -454,6 +468,7 @@ function InterpreterCtrl($rootScope, $scope, $http, baseUrlSrv, ngToast, $timeou
             value: intpInfo[key].defaultValue,
             description: intpInfo[key].description,
             type: intpInfo[key].type,
+            readonly: intpInfo[key].readonly,
           };
         }
       }
@@ -524,6 +539,7 @@ function InterpreterCtrl($rootScope, $scope, $http, baseUrlSrv, ngToast, $timeou
       newSetting.option.setPermission = false;
     }
     newSetting.option.owners = angular.element('#newInterpreterOwners').val();
+    newSetting.option.readers = angular.element('#newInterpreterReaders').val();
 
     let request = angular.copy($scope.newInterpreterSetting);
 
@@ -535,6 +551,8 @@ function InterpreterCtrl($rootScope, $scope, $http, baseUrlSrv, ngToast, $timeou
         newProperties[p] = {
           value: newSetting.properties[p].value,
           type: newSetting.properties[p].type,
+          readonly: newSetting.properties[p].readonly,
+          description: newSetting.properties[p].description,
           name: p,
         };
       }
@@ -610,7 +628,9 @@ function InterpreterCtrl($rootScope, $scope, $http, baseUrlSrv, ngToast, $timeou
       }
       $scope.newInterpreterSetting.properties[$scope.newInterpreterSetting.propertyKey] = {
         value: $scope.newInterpreterSetting.propertyValue,
+        readonly: $scope.newInterpreterSetting.propertyReadonly,
         type: $scope.newInterpreterSetting.propertyType,
+        description: $scope.newInterpreterSetting.propertyDesc,
       };
       emptyNewProperty($scope.newInterpreterSetting);
     } else {
@@ -621,10 +641,22 @@ function InterpreterCtrl($rootScope, $scope, $http, baseUrlSrv, ngToast, $timeou
       if (!setting.propertyKey || setting.propertyKey === '') {
         return;
       }
-
-      setting.properties[setting.propertyKey] =
-        {value: setting.propertyValue, type: setting.propertyType};
-
+      for (let prop in setting.properties) {
+        if (setting.properties[prop].name === setting.propertyKey) {
+          BootstrapDialog.alert({
+            closable: true,
+            title: 'Add property',
+            message: 'Key ' + setting.propertyKey + ' already exists',
+          });
+          return;
+        }
+      }
+      setting.properties[setting.propertyKey] = {
+        value: setting.propertyValue,
+        readonly: setting.propertyReadonly,
+        type: setting.propertyType,
+        description: setting.propertyDesc,
+      };
       emptyNewProperty(setting);
     }
   };
@@ -744,6 +776,24 @@ function InterpreterCtrl($rootScope, $scope, $http, baseUrlSrv, ngToast, $timeou
     }
   };
 
+  $scope.shouldEdit = function(form, settingId) {
+    $http.get(baseUrlSrv.getRestApiBase() + '/interpreter/metadata/' + settingId)
+      .then(function(res) {
+        if (res.data.body === undefined || res.data.body.canWrite) {
+          let index = _.findIndex($scope.interpreterSettings, {'id': settingId});
+          interpreterSettingsTmp[index] = angular.copy($scope.interpreterSettings[index]);
+          form.$show();
+        } else {
+          BootstrapDialog.alert({
+            message: 'No permissions to edit interpreter settings',
+          });
+          form.$cancel();
+        }
+      }).catch(function(res) {
+        console.log('Error %o %o', res.status, res.data ? res.data.message : '');
+      });
+  };
+
   $scope.showErrorMessage = function(setting) {
     BootstrapDialog.show({
       title: 'Error downloading dependencies',
@@ -758,14 +808,14 @@ function InterpreterCtrl($rootScope, $scope, $http, baseUrlSrv, ngToast, $timeou
     $scope.resetNewRepositorySetting();
 
     getInterpreterSettings();
-    getAvailableInterpreters();
+    getCustomInterpreters();
     getRepositories();
   };
 
   $scope.showSparkUI = function(settingId) {
     $http.get(baseUrlSrv.getRestApiBase() + '/interpreter/metadata/' + settingId)
       .then(function(res) {
-        if (res.data.body === undefined) {
+        if (res.data.body.url === undefined) {
           BootstrapDialog.alert({
             message: 'No spark application running',
           });
diff --git a/zeppelin-web/src/app/interpreter/interpreter.html b/zeppelin-web/src/app/interpreter/interpreter.html
index c1d90cc28e0..6380c7e3f8b 100644
--- a/zeppelin-web/src/app/interpreter/interpreter.html
+++ b/zeppelin-web/src/app/interpreter/interpreter.html
@@ -24,11 +24,6 @@ <h3 class="new_h3">
             <i class="fa fa-database" ng-style="{color: showRepositoryInfo ? '#3071A9' : 'black' }"></i>
             Repository
           </button>
-          <button class="btn btn-default btn-sm"
-                  ng-click="showAddNewSetting = !showAddNewSetting">
-            <i class="fa fa-plus"></i>
-            Create
-          </button>
         </div>
       </div>
     </div>
@@ -37,7 +32,6 @@ <h3 class="new_h3">
         Manage interpreters settings. You can create / edit / remove settings. Note can bind / unbind these interpreter settings.
       </div>
     </div>
-
     <div class="row">
       <div class="col-md-4">
         <div class="input-group" style="margin-top: 10px">
@@ -53,6 +47,16 @@ <h3 class="new_h3">
         </div>
       </div>
     </div>
+    <div class="row">
+      <div class="col-md-12">
+        <br/>
+        <button class="btn btn-default btn-sm"
+                ng-click="showAddNewSetting = !showAddNewSetting">
+          <i class="fa fa-plus"></i>
+          Create custom interpreter
+        </button>
+      </div>
+    </div>
   </div>
 
   <div class="row" ng-if="showRepositoryInfo">
@@ -90,7 +94,6 @@ <h4>Repositories</h4>
      ng-repeat="setting in interpreterSettings | orderBy: 'name' | filter: {name:searchInterpreter}" >
   <div id="{{setting.name | lowercase}}">
     <div class="row interpreter">
-
       <div class="col-md-12">
         <h3 class="interpreter-title">{{setting.name}}
           <small>
@@ -129,8 +132,7 @@ <h3 class="interpreter-title">{{setting.name}}
                   ng-show="setting.group == 'spark'">
             <span class="fa fa-external-link"></span> spark ui</button>
           <button class="btn btn-default btn-xs"
-                  ng-click="valueform.$show();
-                  copyOriginInterpreterSettingProperties(setting.id)">
+                  ng-click="shouldEdit(valueform, setting.id)">
             <span class="fa fa-pencil"></span> edit</button>
           <button class="btn btn-default btn-xs"
                   ng-click="restartInterpreterSetting(setting.id)">
@@ -358,8 +360,22 @@ <h5>Option</h5>
         <div class="checkbox remove-margin-top-bottom">
           <span class="input-group" style="line-height:30px;">
             <label>
-              <input type="checkbox" style="width:20px !important" id="idShowPermission" ng-click="togglePermissions(setting.name)" ng-model="setting.option.setPermission" ng-disabled="!valueform.$visible"/>
-               Set permission
+              <input type="checkbox" style="width:20px" id="disallowCustomInterpreter" ng-model="setting.option.disallowCustomInterpreter" ng-disabled="!valueform.$visible"/>
+              Disallow custom interpreter
+            </label>
+          </span>
+        </div>
+      </div>
+    </div>
+    <div class="row interpreter">
+      <div class="col-md-12">
+        <div class="checkbox remove-margin-top-bottom">
+          <span class="input-group" style="line-height:30px;">
+            <label>
+              <input type="checkbox" style="width:20px !important" id="idShowPermission"
+                     ng-click="togglePermissions(setting.name)" ng-model="setting.option.setPermission"
+                     ng-disabled="!valueform.$visible"/>
+               Set permissions
             </label>
           </span>
         </div>
@@ -370,16 +386,27 @@ <h5>Option</h5>
         <!-- permissions -->
         <div ng-show="setting.option.setPermission" class="permissionsForm">
           <div>
-            <p>
-              Enter comma separated users and groups in the fields. <br />
-              Empty field (*) implies anyone can run this interpreter.
+            <p>Enter comma separated users/roles in the fields.<br />
+              Empty field implies no restrictions.
             </p>
             <div>
-
-            <span class="owners">Owners </span>
-            <select id="{{setting.name}}Owners" class="form-control" multiple="multiple" ng-disabled="!valueform.$visible">
-              <option ng-repeat="owner in setting.option.owners" selected="selected">{{owner}}</option>
-            </select>
+              <span class="owners" tooltip-append-to-body="true" tooltip-placement="top-left"
+                    uib-tooltip="Owners can run/read/edit/restart an interpreter setting">
+                Owners:
+              </span>
+              <select id="{{setting.name}}Owners" class="form-control" multiple="multiple" ng-disabled="!valueform.$visible">
+                <option ng-repeat="owner in setting.option.owners" selected="selected">{{owner}}</option>
+              </select>
+            </div>
+            <br/>
+            <div>
+              <span class="readers" tooltip-append-to-body="true" tooltip-placement="top-left"
+                    uib-tooltip="Readers can only run/read/restart an interpreter setting">
+                Readers:
+              </span>
+              <select id="{{setting.name}}Readers" class="form-control" multiple="multiple" ng-disabled="!valueform.$visible">
+                <option ng-repeat="reader in setting.option.readers" selected="selected">{{reader}}</option>
+              </select>
             </div>
           </div>
         </div>
@@ -395,40 +422,61 @@ <h5>Properties</h5>
         <table class="table table-striped">
           <thead>
             <tr>
-              <th style="width:40%">name</th>
-              <th style="width:40%">value</th>
-              <th style="width:20%" ng-if="valueform.$visible">action</th>
+              <th style="width:30%">name</th>
+              <th style="width:30%">value</th>
+              <th style="text-align: center;" ng-if="valueform.$visible">read-only</th>
+              <th style="width:20%">description</th>
+              <th style="width:10%" ng-if="valueform.$visible">action</th>
             </tr>
           </thead>
           <tr ng-repeat="key in setting.properties | sortByKey" >
             <td style="vertical-align: middle;">{{key}}</td>
             <td style="vertical-align: middle;">
               <span ng-if="setting.properties[key].type === 'textarea'"
-                    editable-textarea="setting.properties[key].value" e-form="valueform" e-msd-elastic>
+                    e-ng-readonly="setting.properties[key].readonly"
+                    editable-textarea="setting.properties[key].value"
+                    e-form="valueform" e-msd-elastic>
                  {{setting.properties[key].value | breakFilter}}
               </span>
               <span ng-if="setting.properties[key].type === 'string'"
-                    editable-text="setting.properties[key].value" e-form="valueform" e-msd-elastic>
-                {{setting.properties[key].value}}
+                    e-ng-readonly="setting.properties[key].readonly"
+                    editable-text="setting.properties[key].value"
+                    e-form="valueform" e-msd-elastic>
+                 {{setting.properties[key].value}}
               </span>
               <span ng-if="setting.properties[key].type === 'number'"
-                    editable-text="setting.properties[key].value" e-widget-number e-form="valueform" e-msd-elastic>
-                {{setting.properties[key].value}}
+                    e-ng-readonly="setting.properties[key].readonly"
+                    editable-text="setting.properties[key].value"
+                    e-widget-number e-form="valueform" e-msd-elastic>
+                 {{setting.properties[key].value}}
               </span>
               <span ng-if="setting.properties[key].type === 'url'"
-                    editable-text="setting.properties[key].value" e-form="valueform" e-msd-elastic>
+                    e-ng-readonly="setting.properties[key].readonly"
+                    editable-text="setting.properties[key].value"
+                    e-form="valueform" e-msd-elastic>
                 <a ng-href="{{setting.properties[key].value}}">{{setting.properties[key].value}}</a>
               </span>
               <span ng-if="setting.properties[key].type === 'password'"
-                    editable-password="setting.properties[key].value" e-form="valueform" e-msd-elastic>
-                {{setting.properties[key].value ? '***' : ''}}
+                    e-ng-readonly="setting.properties[key].readonly"
+                    editable-password="setting.properties[key].value"
+                    e-form="valueform" e-msd-elastic>
+                 {{setting.properties[key].value ? '***' : ''}}
               </span>
               <span ng-if="setting.properties[key].type === 'checkbox'"
-                    editable-checkbox="setting.properties[key].value" e-form="valueform" e-msd-elastic>
-                {{setting.properties[key].value}}
+                    e-ng-readonly="setting.properties[key].readonly"
+                    editable-checkbox="setting.properties[key].value"
+                    e-form="valueform" e-msd-elastic>
+                 {{setting.properties[key].value}}
               </span>
             </td>
             <td style="vertical-align: middle;" ng-if="valueform.$visible">
+              <input type="checkbox" msd-elastic ng-disabled="true"
+                     ng-model="setting.properties[key].readonly" />
+            </td>
+            <td style="vertical-align: middle;">{{setting.properties[key].description}}
+            </td>
+            <td style="vertical-align: middle;" ng-if="valueform.$visible
+              && !setting.properties[key].readonly">
               <button class="btn btn-default btn-sm fa fa-remove"
                    ng-click="removeInterpreterProperty(key, setting.id)">
               </button>
@@ -439,7 +487,6 @@ <h5>Properties</h5>
               <input ng-model="setting.propertyKey"
                      pu-elastic-input pu-elastic-input-minwidth="180px" />
             </td>
-
             <td style="vertical-align: middle;" ng-switch on="setting.propertyType">
               <textarea ng-switch-default msd-elastic ng-model="setting.propertyValue"></textarea>
               <input ng-switch-when="string" type="text" msd-elastic ng-model="setting.propertyValue"/>
@@ -448,6 +495,13 @@ <h5>Properties</h5>
               <input ng-switch-when="password" type="password" msd-elastic ng-model="setting.propertyValue" />
               <input ng-switch-when="checkbox" type="checkbox" msd-elastic ng-model="setting.propertyValue" />
             </td>
+            <td style="vertical-align: middle;">
+              <input type="checkbox" msd-elastic ng-model="setting.propertyReadonly" />
+            </td>
+            <td style="vertical-align: middle;">
+              <input ng-model="setting.propertyDesc"
+                     pu-elastic-input pu-elastic-input-minwidth="180px" />
+            </td>
             <td style="vertical-align: middle;">
               <select ng-model="setting.propertyType" ng-init="setting.propertyType=interpreterPropertyTypes[0]"
                       ng-options="item for item in interpreterPropertyTypes" ng-change="defaultValueByType(setting)">
diff --git a/zeppelin-web/src/app/notebook/notebook.html b/zeppelin-web/src/app/notebook/notebook.html
index f004e9b325f..f7089917fe0 100644
--- a/zeppelin-web/src/app/notebook/notebook.html
+++ b/zeppelin-web/src/app/notebook/notebook.html
@@ -80,8 +80,8 @@ <h4>Note Permissions (Only note owners can change)</h4>
     <hr />
     <div>
       <p>
-        Enter comma separated users and groups in the fields. <br />
-        Empty field (*) implies anyone can do the operation.
+        Enter comma separated users/roles in the fields.<br />
+        Empty field implies no restrictions.
       </p>
       <div class="permissionsForm"
            data-ng-model="permissions">
diff --git a/zeppelin-zengine/src/main/java/org/apache/zeppelin/interpreter/InterpreterAuthorization.java b/zeppelin-zengine/src/main/java/org/apache/zeppelin/interpreter/InterpreterAuthorization.java
new file mode 100644
index 00000000000..1c96ca7f07c
--- /dev/null
+++ b/zeppelin-zengine/src/main/java/org/apache/zeppelin/interpreter/InterpreterAuthorization.java
@@ -0,0 +1,93 @@
+/*
+ * Licensed to the Apache Software Foundation (ASF) under one or more
+ * contributor license agreements.  See the NOTICE file distributed with
+ * this work for additional information regarding copyright ownership.
+ * The ASF licenses this file to You under the Apache License, Version 2.0
+ * (the "License"); you may not use this file except in compliance with
+ * the License.  You may obtain a copy of the License at
+ *
+ *    http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package org.apache.zeppelin.interpreter;
+
+import org.apache.commons.lang.StringUtils;
+import org.apache.zeppelin.conf.ZeppelinConfiguration;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+
+import java.util.*;
+
+/**
+ * Contains authorization information for interpreter settings
+ */
+public class InterpreterAuthorization {
+  private static final Logger LOG = LoggerFactory.getLogger(InterpreterAuthorization.class);
+  private ZeppelinConfiguration conf;
+  private Map<String, Set<String>> owners;
+  private Map<String, Set<String>> readers;
+
+  public InterpreterAuthorization(InterpreterSettingManager interpreterSettingManager) {
+    this.conf = ZeppelinConfiguration.create();
+    this.owners = interpreterSettingManager.getAllOwners();
+    this.readers = interpreterSettingManager.getAllReaders();
+  }
+
+  private boolean isOwner(String settingId, Set<String> entities) {
+    return isMember(entities, owners.get(settingId)) ||
+           isAdmin(entities);
+  }
+
+  private boolean isReader(String settingId, Set<String> entities) {
+    return isMember(entities, readers.get(settingId)) ||
+           isAdmin(entities);
+  }
+
+  private boolean isWriter(String settingId, Set<String> userAndRoles) {
+    return isOwner(settingId, userAndRoles) &&
+           isReader(settingId, userAndRoles);
+  }
+
+  private boolean isAdmin(Set<String> entities) {
+    String adminRole = conf.getString(ZeppelinConfiguration.ConfVars.ZEPPELIN_OWNER_ROLE);
+    if (StringUtils.isBlank(adminRole)) {
+      return false;
+    }
+    return entities.contains(adminRole);
+  }
+
+  // return true if b is empty or if (a intersection b) is non-empty
+  private boolean isMember(Set<String> a, Set<String> b) {
+    Set<String> intersection = new HashSet<>(b);
+    intersection.retainAll(a);
+    return (b.isEmpty() || (intersection.size() > 0));
+  }
+
+  public boolean hasWriteAuthorization(Set<String> userAndRoles, String settingId) {
+    if (conf.isAnonymousAllowed()) {
+      LOG.debug("Zeppelin runs in anonymous mode, everybody is writer");
+      return true;
+    }
+    if (userAndRoles == null) {
+      return false;
+    }
+    return isWriter(settingId, userAndRoles);
+  }
+
+  public boolean hasReadAuthorization(Set<String> userAndRoles, String settingId) {
+    if (conf.isAnonymousAllowed()) {
+      LOG.debug("Zeppelin runs in anonymous mode, everybody is reader");
+      return true;
+    }
+    if (userAndRoles == null) {
+      return false;
+    }
+    return isReader(settingId, userAndRoles);
+  }
+}
diff --git a/zeppelin-zengine/src/main/java/org/apache/zeppelin/interpreter/InterpreterInfoSaving.java b/zeppelin-zengine/src/main/java/org/apache/zeppelin/interpreter/InterpreterInfoSaving.java
index 3d9c2c348a3..5045a49795f 100644
--- a/zeppelin-zengine/src/main/java/org/apache/zeppelin/interpreter/InterpreterInfoSaving.java
+++ b/zeppelin-zengine/src/main/java/org/apache/zeppelin/interpreter/InterpreterInfoSaving.java
@@ -55,7 +55,7 @@ public class InterpreterInfoSaving implements JsonSerializable {
 
   public static InterpreterInfoSaving loadFromFile(Path file) throws IOException {
     LOGGER.info("Load interpreter setting from file: " + file);
-    InterpreterInfoSaving infoSaving = null;
+    InterpreterInfoSaving infoSaving;
     try (BufferedReader json = Files.newBufferedReader(file, StandardCharsets.UTF_8)) {
       JsonParser jsonParser = new JsonParser();
       JsonObject jsonObject = jsonParser.parse(json).getAsJsonObject();
@@ -63,9 +63,12 @@ public static InterpreterInfoSaving loadFromFile(Path file) throws IOException {
 
       if (infoSaving != null && infoSaving.interpreterSettings != null) {
         for (InterpreterSetting interpreterSetting : infoSaving.interpreterSettings.values()) {
-          interpreterSetting.convertPermissionsFromUsersToOwners(
+          interpreterSetting.getOption().convertToOwners(
               jsonObject.getAsJsonObject("interpreterSettings")
                   .getAsJsonObject(interpreterSetting.getId()));
+          interpreterSetting.getOption().convertToReaders(
+                  jsonObject.getAsJsonObject("interpreterSettings")
+                          .getAsJsonObject(interpreterSetting.getId()));
         }
       }
     }
diff --git a/zeppelin-zengine/src/main/java/org/apache/zeppelin/interpreter/InterpreterSetting.java b/zeppelin-zengine/src/main/java/org/apache/zeppelin/interpreter/InterpreterSetting.java
index 21de851bab7..cd3286db9bb 100644
--- a/zeppelin-zengine/src/main/java/org/apache/zeppelin/interpreter/InterpreterSetting.java
+++ b/zeppelin-zengine/src/main/java/org/apache/zeppelin/interpreter/InterpreterSetting.java
@@ -20,9 +20,6 @@
 import com.google.common.annotations.VisibleForTesting;
 import com.google.common.base.Preconditions;
 import com.google.common.collect.ImmutableMap;
-import com.google.gson.JsonArray;
-import com.google.gson.JsonElement;
-import com.google.gson.JsonObject;
 import com.google.gson.annotations.SerializedName;
 import com.google.gson.internal.StringMap;
 import org.apache.commons.io.FileUtils;
@@ -54,7 +51,6 @@
 import java.util.ArrayList;
 import java.util.HashMap;
 import java.util.HashSet;
-import java.util.LinkedList;
 import java.util.List;
 import java.util.Map;
 import java.util.Properties;
@@ -122,10 +118,10 @@ public class InterpreterSetting {
   private transient ApplicationEventListener appEventListener;
   private transient DependencyResolver dependencyResolver;
 
-  private transient Map<String, String> infos;
+  private transient Map<String, String> infos = new HashMap<>();
 
   // Map of the note and paragraphs which has runtime infos generated by this interpreter setting.
-  // This map is used to clear the infos in paragraph when the interpretersetting is restarted
+  // This map is used to clear the infos in paragraph when the interpreter setting is restarted
   private transient Map<String, Set<String>> runtimeInfosToBeCleared;
 
   private transient ZeppelinConfiguration conf = new ZeppelinConfiguration();
@@ -136,12 +132,8 @@ public class InterpreterSetting {
   private transient InterpreterLauncher launcher;
 
   private transient LifecycleManager lifecycleManager;
-  ///////////////////////////////////////////////////////////////////////////////////////////
-
-
 
   private transient RecoveryStorage recoveryStorage;
-  ///////////////////////////////////////////////////////////////////////////////////////////
 
   /**
    * Builder class for InterpreterSetting
@@ -487,7 +479,7 @@ public void close() {
     }
     interpreterGroups.clear();
     this.runtimeInfosToBeCleared = null;
-    this.infos = null;
+    this.infos = new HashMap<>();
   }
 
   public void setProperties(Object object) {
@@ -495,7 +487,7 @@ public void setProperties(Object object) {
       StringMap<String> map = (StringMap) properties;
       Properties newProperties = new Properties();
       for (String key : map.keySet()) {
-        newProperties.put(key, map.get(key));
+        newProperties.put(StringUtils.trim(key), map.get(key));
       }
       this.properties = newProperties;
     } else {
@@ -851,24 +843,6 @@ public void run() {
     t.start();
   }
 
-  //TODO(zjffdu) ugly code, should not use JsonObject as parameter. not readable
-  public void convertPermissionsFromUsersToOwners(JsonObject jsonObject) {
-    if (jsonObject != null) {
-      JsonObject option = jsonObject.getAsJsonObject("option");
-      if (option != null) {
-        JsonArray users = option.getAsJsonArray("users");
-        if (users != null) {
-          if (this.option.getOwners() == null) {
-            this.option.owners = new LinkedList<>();
-          }
-          for (JsonElement user : users) {
-            this.option.getOwners().add(user.getAsString());
-          }
-        }
-      }
-    }
-  }
-
   // For backward compatibility of interpreter.json format after ZEPPELIN-2403
   static Map<String, InterpreterProperty> convertInterpreterProperties(Object properties) {
     if (properties != null && properties instanceof StringMap) {
@@ -880,7 +854,8 @@ static Map<String, InterpreterProperty> convertInterpreterProperties(Object prop
           InterpreterProperty newProperty = new InterpreterProperty(
               entry.getKey().toString(),
               entry.getValue(),
-              InterpreterPropertyType.STRING.getValue());
+              InterpreterPropertyType.STRING.getValue(),
+              false, "");
           newProperties.put(entry.getKey().toString(), newProperty);
         } else {
           // already converted
@@ -902,7 +877,10 @@ static Map<String, InterpreterProperty> convertInterpreterProperties(Object prop
           InterpreterProperty newProperty = new InterpreterProperty(
               key,
               stringMap.get("value"),
-              stringMap.containsKey("type") ? stringMap.get("type").toString() : "string");
+              stringMap.containsKey("type") ? stringMap.get("type").toString() : "string",
+              stringMap.containsKey("readonly") ?
+                      Boolean.parseBoolean(stringMap.get("readonly").toString()) : false,
+              stringMap.containsKey("description") ? stringMap.get("description").toString() : "");
 
           newProperties.put(newProperty.getName(), newProperty);
         } else if (value instanceof DefaultInterpreterProperty){
@@ -910,15 +888,18 @@ static Map<String, InterpreterProperty> convertInterpreterProperties(Object prop
           InterpreterProperty property = new InterpreterProperty(
               key,
               dProperty.getValue(),
-              dProperty.getType() != null ? dProperty.getType() : "string"
-              // in case user forget to specify type in interpreter-setting.json
+              dProperty.getType() != null ? dProperty.getType() : "string",
+              dProperty.getReadonly() != null ? dProperty.getReadonly() : false,
+              dProperty.getDescription() != null ? dProperty.getDescription() : ""
           );
           newProperties.put(key, property);
         } else if (value instanceof String) {
           InterpreterProperty newProperty = new InterpreterProperty(
               key,
               value,
-              "string");
+              "string",
+              false,
+              "");
 
           newProperties.put(newProperty.getName(), newProperty);
         } else {
diff --git a/zeppelin-zengine/src/main/java/org/apache/zeppelin/interpreter/InterpreterSettingManager.java b/zeppelin-zengine/src/main/java/org/apache/zeppelin/interpreter/InterpreterSettingManager.java
index a5184c2c3ae..07b5760078d 100644
--- a/zeppelin-zengine/src/main/java/org/apache/zeppelin/interpreter/InterpreterSettingManager.java
+++ b/zeppelin-zengine/src/main/java/org/apache/zeppelin/interpreter/InterpreterSettingManager.java
@@ -62,16 +62,7 @@
 import java.nio.file.Files;
 import java.nio.file.Path;
 import java.nio.file.Paths;
-import java.util.ArrayList;
-import java.util.Arrays;
-import java.util.Collection;
-import java.util.Collections;
-import java.util.Comparator;
-import java.util.HashMap;
-import java.util.Iterator;
-import java.util.LinkedList;
-import java.util.List;
-import java.util.Map;
+import java.util.*;
 
 
 /**
@@ -123,8 +114,6 @@ public class InterpreterSettingManager {
   private RecoveryStorage recoveryStorage;
   private ConfigStorage configStorage;
 
-
-
   public InterpreterSettingManager(ZeppelinConfiguration zeppelinConfiguration,
                                    AngularObjectRegistryListener angularObjectRegistryListener,
                                    RemoteInterpreterProcessListener
@@ -170,10 +159,26 @@ public InterpreterSettingManager(ZeppelinConfiguration conf,
     LOGGER.info("Using LifecycleManager: " + this.lifecycleManager.getClass().getName());
 
     this.configStorage = configStorage;
-
     init();
   }
 
+  public Map<String, Set<String>> getAllOwners() {
+    Map<String, Set<String>> authInfo = new HashMap<>();
+    for (InterpreterSetting interpreterSetting : get()) {
+      authInfo.put(interpreterSetting.getId(),
+              interpreterSetting.getOption().getOwners());
+    }
+    return authInfo;
+  }
+
+  public Map<String, Set<String>> getAllReaders() {
+    Map<String, Set<String>> authInfo = new HashMap<>();
+    for (InterpreterSetting interpreterSetting : get()) {
+      authInfo.put(interpreterSetting.getId(),
+              interpreterSetting.getOption().getReaders());
+    }
+    return authInfo;
+  }
 
   private void initInterpreterSetting(InterpreterSetting interpreterSetting) {
     interpreterSetting.setConf(conf)
@@ -297,7 +302,7 @@ private void loadFromFile() throws IOException {
     }
   }
 
-  public void saveToFile() throws IOException {
+  private void saveToFile() throws IOException {
     synchronized (interpreterSettings) {
       InterpreterInfoSaving info = new InterpreterInfoSaving();
       info.interpreterBindings = interpreterBindings;
diff --git a/zeppelin-zengine/src/main/java/org/apache/zeppelin/notebook/Paragraph.java b/zeppelin-zengine/src/main/java/org/apache/zeppelin/notebook/Paragraph.java
index 57756b8e183..1926af6c080 100644
--- a/zeppelin-zengine/src/main/java/org/apache/zeppelin/notebook/Paragraph.java
+++ b/zeppelin-zengine/src/main/java/org/apache/zeppelin/notebook/Paragraph.java
@@ -325,7 +325,7 @@ public Map<String, Object> info() {
     return null;
   }
 
-  private boolean hasPermission(List<String> userAndRoles, List<String> intpUsersAndRoles) {
+  private boolean hasPermission(List<String> userAndRoles, Set<String> intpUsersAndRoles) {
     if (1 > intpUsersAndRoles.size()) {
       return true;
     }
diff --git a/zeppelin-zengine/src/main/java/org/apache/zeppelin/storage/ConfigStorage.java b/zeppelin-zengine/src/main/java/org/apache/zeppelin/storage/ConfigStorage.java
index b3175e59f3c..5aeb29c290c 100644
--- a/zeppelin-zengine/src/main/java/org/apache/zeppelin/storage/ConfigStorage.java
+++ b/zeppelin-zengine/src/main/java/org/apache/zeppelin/storage/ConfigStorage.java
@@ -90,8 +90,7 @@ protected InterpreterInfoSaving buildInterpreterInfoSaving(String json) {
       // While we decided to turn this feature on always (without providing
       // enable/disable option on GUI).
       // previously created setting should turn this feature on here.
-      interpreterSetting.getOption();
-      interpreterSetting.convertPermissionsFromUsersToOwners(
+      interpreterSetting.getOption().convertToOwners(
           jsonObject.getAsJsonObject("interpreterSettings")
               .getAsJsonObject(interpreterSetting.getId()));
     }
diff --git a/zeppelin-zengine/src/main/java/org/apache/zeppelin/storage/FileSystemConfigStorage.java b/zeppelin-zengine/src/main/java/org/apache/zeppelin/storage/FileSystemConfigStorage.java
index 20c19b65cb7..d98701aad21 100644
--- a/zeppelin-zengine/src/main/java/org/apache/zeppelin/storage/FileSystemConfigStorage.java
+++ b/zeppelin-zengine/src/main/java/org/apache/zeppelin/storage/FileSystemConfigStorage.java
@@ -15,19 +15,13 @@
  * limitations under the License.
  */
 
-
 package org.apache.zeppelin.storage;
 
-import com.google.gson.JsonObject;
-import com.google.gson.JsonParser;
 import org.apache.hadoop.fs.Path;
 import org.apache.zeppelin.conf.ZeppelinConfiguration;
-import org.apache.zeppelin.helium.HeliumConf;
 import org.apache.zeppelin.interpreter.InterpreterInfoSaving;
-import org.apache.zeppelin.interpreter.InterpreterSetting;
 import org.apache.zeppelin.notebook.FileSystemStorage;
 import org.apache.zeppelin.notebook.NotebookAuthorizationInfoSaving;
-import org.apache.zeppelin.user.CredentialsInfoSaving;
 import org.slf4j.Logger;
 import org.slf4j.LoggerFactory;
 
@@ -108,5 +102,4 @@ public void saveCredentials(String credentials) throws IOException {
     LOGGER.info("Save Credentials to file: " + credentialPath);
     fs.writeFile(credentials, credentialPath, false);
   }
-
 }