-
Notifications
You must be signed in to change notification settings - Fork 382
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Support Authentication for BinderHub #323
Comments
The auth would have to happen before the user can click build so we need a handler in binderhub right? This handler would then talk to the jupyterhub auth system. Does the jhub API let me get things that are in the |
http://jupyterhub.readthedocs.io/en/latest/api/services.auth.html is the docs on this I believe. The OpenHumans use case should already be doable once we have auth, since it's just injecting stuff into the running container (which we can already do in JupyterHub). Am unsure about auth_state availability in the API though. |
I'll have to do a little checking for how to run a Hub-authenticated service outside the Hub. I think right now, they are confined to services run at One question: is this an authenticated Binder, totally dedicated to binder applications, or is it Binder as an additional functionality on top of a regular Hub deployment? I think coexisting would be challenging. The main things that will need work are:
|
(Can we use bhub and jhub instead of hub and hub? Not always but often I get lost in which hub we are talking about :) ) |
My hope is that we can merge binderhub helm chart into z2jh at some point, completely eliminating the 'do I need a binderhub or jupyterhub?' confusion. |
Can this be closed based on #666? Is there some additional documentation coming on how to use binderhub authentication? |
Additional documentation from the experience of deploying it would be great. Maybe when you use this on the pangeo binder you can take notes while setting it up and contribute those as docs. |
Looks like the docs were updated at some point: https://binderhub.readthedocs.io/en/latest/authentication.html |
Since binderhub is already a JupyterHub service, we should be able to support authentication there without too much trouble (I think?). This should be great for private installs, and allow us to leverage all the JupyterHub authenticators. It'd also remove our strict requirement on NullAuthenticator in the hub.
Authentication should be optional though, so we can still run fully open binders, and API users of these don't have to go through a fake auth scheme.
What are the missing pieces, @minrk?
The text was updated successfully, but these errors were encountered: