https://community.cloudera.com/t5/Support-Questions/Securing-the-deployed-application/m-p/410553#M252881 <P>Dear All,</P><P>I hope you are doing well.</P><P>I would like your help in understand how I can secure the deployed application.</P><UL class="ul"><LI><STRONG>Public Applications</STRONG><P class="p">By default, authentication for applications is enforced on all ports and users cannot create public applications. If desired, the Admin user can allow users to create public applications that can be accessed by unauthenticated users.</P><DIV class="p">To allow users to create public applications on an<SPAN>&nbsp;</SPAN><SPAN class="ph">Cloudera AI Workbench</SPAN>:<OL class="ol"><LI>As an Admin user, turn on the feature flag in<SPAN>&nbsp;</SPAN><SPAN class="ph menucascade"><SPAN class="ph uicontrol">Admin</SPAN><SPAN>&nbsp;</SPAN>&gt;<SPAN>&nbsp;</SPAN><SPAN class="ph uicontrol">Security</SPAN></SPAN><SPAN>&nbsp;</SPAN>by selecting<SPAN>&nbsp;</SPAN><SPAN class="ph uicontrol">Allow applications to be configured with unauthenticated access</SPAN>.</LI><LI>When creating a new application, select<SPAN>&nbsp;</SPAN><SPAN class="ph uicontrol">Enable Unauthenticated Access</SPAN>.</LI><LI>For an existing application, in<SPAN>&nbsp;</SPAN><SPAN class="ph uicontrol">Settings</SPAN><SPAN>&nbsp;</SPAN>select<SPAN>&nbsp;</SPAN><SPAN class="ph uicontrol">Enable Unauthenticated Access</SPAN>.</LI></OL></DIV><P class="p">To prevent all users from creating public applications, go to<SPAN>&nbsp;</SPAN><SPAN class="ph menucascade"><SPAN class="ph uicontrol">Admin</SPAN><SPAN>&nbsp;</SPAN>&gt;<SPAN>&nbsp;</SPAN><SPAN class="ph uicontrol">Security</SPAN></SPAN><SPAN>&nbsp;</SPAN>and deselect<SPAN>&nbsp;</SPAN><SPAN class="ph uicontrol">Allow applications to be configured with unauthenticated access</SPAN>. All existing public applications will immediately stop being publicly accessible.</P></LI><LI><STRONG>Transparent Authentication</STRONG><P class="p"><SPAN class="ph">Cloudera AI</SPAN><SPAN>&nbsp;</SPAN>can pass user authentication information to an application, if the application expects an authenticated request. The<SPAN>&nbsp;</SPAN>REMOTE-USER<SPAN>&nbsp;</SPAN>and<SPAN>&nbsp;</SPAN>REMOTE-USER-PERM<SPAN>&nbsp;</SPAN>HTTP headers will be injected to the application hosted by the user.</P><DIV class="p">For example:<PRE>Remote-user=&lt;username&gt; Remote-user-perm=&lt;RO/RW/Unauthorized&gt;</PRE><P>How can I implement and integrate the&nbsp;<STRONG>Transparent Authentication in the deployed application script?</STRONG></P><P>&nbsp;</P><P><STRONG>Best wishes,</STRONG></P><P><STRONG>Salim&nbsp;&nbsp;</STRONG></P></DIV></LI></UL> Tue, 21 Apr 2026 06:18:43 GMT SalimAlhajri 2026-04-21T06:18:43Z https://community.cloudera.com/t5/Support-Questions/Securing-the-deployed-application/m-p/410553#M252881 <P>Dear All,</P><P>I hope you are doing well.</P><P>I would like your help in understand how I can secure the deployed application.</P><UL class="ul"><LI><STRONG>Public Applications</STRONG><P class="p">By default, authentication for applications is enforced on all ports and users cannot create public applications. If desired, the Admin user can allow users to create public applications that can be accessed by unauthenticated users.</P><DIV class="p">To allow users to create public applications on an<SPAN>&nbsp;</SPAN><SPAN class="ph">Cloudera AI Workbench</SPAN>:<OL class="ol"><LI>As an Admin user, turn on the feature flag in<SPAN>&nbsp;</SPAN><SPAN class="ph menucascade"><SPAN class="ph uicontrol">Admin</SPAN><SPAN>&nbsp;</SPAN>&gt;<SPAN>&nbsp;</SPAN><SPAN class="ph uicontrol">Security</SPAN></SPAN><SPAN>&nbsp;</SPAN>by selecting<SPAN>&nbsp;</SPAN><SPAN class="ph uicontrol">Allow applications to be configured with unauthenticated access</SPAN>.</LI><LI>When creating a new application, select<SPAN>&nbsp;</SPAN><SPAN class="ph uicontrol">Enable Unauthenticated Access</SPAN>.</LI><LI>For an existing application, in<SPAN>&nbsp;</SPAN><SPAN class="ph uicontrol">Settings</SPAN><SPAN>&nbsp;</SPAN>select<SPAN>&nbsp;</SPAN><SPAN class="ph uicontrol">Enable Unauthenticated Access</SPAN>.</LI></OL></DIV><P class="p">To prevent all users from creating public applications, go to<SPAN>&nbsp;</SPAN><SPAN class="ph menucascade"><SPAN class="ph uicontrol">Admin</SPAN><SPAN>&nbsp;</SPAN>&gt;<SPAN>&nbsp;</SPAN><SPAN class="ph uicontrol">Security</SPAN></SPAN><SPAN>&nbsp;</SPAN>and deselect<SPAN>&nbsp;</SPAN><SPAN class="ph uicontrol">Allow applications to be configured with unauthenticated access</SPAN>. All existing public applications will immediately stop being publicly accessible.</P></LI><LI><STRONG>Transparent Authentication</STRONG><P class="p"><SPAN class="ph">Cloudera AI</SPAN><SPAN>&nbsp;</SPAN>can pass user authentication information to an application, if the application expects an authenticated request. The<SPAN>&nbsp;</SPAN>REMOTE-USER<SPAN>&nbsp;</SPAN>and<SPAN>&nbsp;</SPAN>REMOTE-USER-PERM<SPAN>&nbsp;</SPAN>HTTP headers will be injected to the application hosted by the user.</P><DIV class="p">For example:<PRE>Remote-user=&lt;username&gt; Remote-user-perm=&lt;RO/RW/Unauthorized&gt;</PRE><P>How can I implement and integrate the&nbsp;<STRONG>Transparent Authentication in the deployed application script?</STRONG></P><P>&nbsp;</P><P><STRONG>Best wishes,</STRONG></P><P><STRONG>Salim&nbsp;&nbsp;</STRONG></P></DIV></LI></UL> Tue, 21 Apr 2026 06:18:43 GMT https://community.cloudera.com/t5/Support-Questions/Securing-the-deployed-application/m-p/410553#M252881 SalimAlhajri 2026-04-21T06:18:43Z https://community.cloudera.com/t5/Support-Questions/Securing-the-deployed-application/m-p/413505#M254098 <P>Hello&nbsp;<a href="https://community.cloudera.com/t5/user/viewprofilepage/user-id/127301">@SalimAlhajri</a>,&nbsp;</P><P>The Transparent Authentication is built-in Cloudera AI.&nbsp;<BR />When the application is started, it will inject the&nbsp;REMOTE-USER and REMOTE-USER-PERM HTTP headers automatically, this is why it is transparent, no manual intervention is needed.&nbsp;</P><P><A href="https://docs.cloudera.com/machine-learning/1.5.5/applications/topics/ml-securing-applications.html" target="_blank">https://docs.cloudera.com/machine-learning/1.5.5/applications/topics/ml-securing-applications.html</A>&nbsp;</P> Wed, 04 Feb 2026 17:02:39 GMT https://community.cloudera.com/t5/Support-Questions/Securing-the-deployed-application/m-p/413505#M254098 vafs 2026-02-04T17:02:39Z