Does RBAC control access to the JupyterLab endpoints?

Something I’m not clear on regarding RBAC is if it has any control over the JupyterLab endpoints or if only offers authorization to JupyterHub endpoints. (JupyterHub RBAC — JupyterHub 2.3.1 documentation) Does anyone have any guidance on that?

It’s JupyterHub only.

However there’s some ongoing work to support RBAC across components:

1 Like

@manics Thanks again. I’m really grateful for your guidance.

1 Like

FYI, the authorization handlers would likely need to be added in both jupyterlab and jupyterlab-server` packages. There is also an issue tracking RBAC for JupyterLab: Add RBAC support to JupyterLab · Issue #11355 · jupyterlab/jupyterlab · GitHub

Some packages (e.g. jupyter-lsp) already have resource identifiers for server endpoints, but there was not a strong push for more granular endpoint identification yet.