Something I’m not clear on regarding RBAC is if it has any control over the JupyterLab endpoints or if only offers authorization to JupyterHub endpoints. (JupyterHub RBAC — JupyterHub 2.3.1 documentation) Does anyone have any guidance on that?
It’s JupyterHub only.
However there’s some ongoing work to support RBAC across components:
1 Like
@manics Thanks again. I’m really grateful for your guidance.
1 Like
FYI, the authorization handlers would likely need to be added in both jupyterlab and jupyterlab-server` packages. There is also an issue tracking RBAC for JupyterLab: Add RBAC support to JupyterLab · Issue #11355 · jupyterlab/jupyterlab · GitHub
Some packages (e.g. jupyter-lsp) already have resource identifiers for server endpoints, but there was not a strong push for more granular endpoint identification yet.