FrontEnd Authentication on Spark and Pipeline controller pages

[ageryck]

trafficstars

Implement a level of access control to the frontend UIs since it provides privileged access with abilities to execute the pipeline and access monitoring pages. The current implementation has no controlled access.

[bashir2]

Thanks @ageryck for filing this issue. The intention for the controller UI was to be accessed from the same machine the controller is running hence there is no access-control. I understand that this is not desired/possible always. I just filed #632 to create a CLI too. Do you think that with that tool your requirements are met? So the idea is that the controller end-points are not accessible outside that machine. If a GUI cannot be used on that machine, the CLI tool should work with say ssh.

[ageryck]

Thanks @ageryck for filing this issue. The intention for the controller UI was to be accessed from the same machine the controller is running hence there is no access-control. I understand that this is not desired/possible always. I just filed #632 to create a CLI too. Do you think that with that tool your requirements are met? So the idea is that the controller end-points are not accessible outside that machine. If a GUI cannot be used on that machine, the CLI tool should work with say ssh.

@bashir2 yes use of CLI accessed via ssh will meet our requirements/concerns of secure access and access outside the same machine, later we can figure out secure remote access to the controller UI especially for monitoring the pipeline