Cloudera Community

Support Questions

Find answers, ask questions, and share your expertise
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Advanced Search
Announcements
We’ve updated our product names and community labels - click here for full details

Securing the deployed application

Labels:
avatar
author-rank SalimAlhajri
Explorer

Created on ‎06-17-2025 11:13 PM - last edited on ‎04-20-2026 11:18 PM by Community Manager Community Manager

Dear All,

I hope you are doing well.

I would like your help in understand how I can secure the deployed application.

  • Public Applications

    By default, authentication for applications is enforced on all ports and users cannot create public applications. If desired, the Admin user can allow users to create public applications that can be accessed by unauthenticated users.

    To allow users to create public applications on an Cloudera AI Workbench:
    1. As an Admin user, turn on the feature flag in Admin > Security by selecting Allow applications to be configured with unauthenticated access.
    2. When creating a new application, select Enable Unauthenticated Access.
    3. For an existing application, in Settings select Enable Unauthenticated Access.

    To prevent all users from creating public applications, go to Admin > Security and deselect Allow applications to be configured with unauthenticated access. All existing public applications will immediately stop being publicly accessible.

  • Transparent Authentication

    Cloudera AI can pass user authentication information to an application, if the application expects an authenticated request. The REMOTE-USER and REMOTE-USER-PERM HTTP headers will be injected to the application hosted by the user.

    For example:
    Remote-user=<username> 
Remote-user-perm=<RO/RW/Unauthorized>

    How can I implement and integrate the Transparent Authentication in the deployed application script?

     

    Best wishes,

    Salim  

985 Views
0 Kudos
1 REPLY 1

avatar
author-rank vafs author-rank
Master Collaborator

Created ‎02-04-2026 09:02 AM

Hello @SalimAlhajri

The Transparent Authentication is built-in Cloudera AI. 
When the application is started, it will inject the REMOTE-USER and REMOTE-USER-PERM HTTP headers automatically, this is why it is transparent, no manual intervention is needed. 

https://docs.cloudera.com/machine-learning/1.5.5/applications/topics/ml-securing-applications.html 


Regards,
Andrés Fallas
--
Was your question answered? Please take some time to click on "Accept as Solution" below this post.
If you find a reply useful, say thanks by clicking on the thumbs-up button.
147 Views
0 Kudos
Announcements
Community Announcements
Product Name Updates — Community Label Changes & Notificatio...
What's New @ Cloudera
Announcing Cloudera Data Lineage for Trino
What's New @ Cloudera
Announcing Cloudera Streaming Analytics Operator for Kuberne...
What's New @ Cloudera
Announcing Cloudera Data Services 1.5.5 SP2: AI Inference an...
What's New @ Cloudera
Announcing Cloudera Streams Messaging Operator for Kubernete...
View More Announcements