Bringing together the Apache Cassandra experts from the community and DataStax.

Want to learn? Have a question? Want to share your expertise? You are in the right place!

Not sure where to begin? Getting Started

 

question

danielleplex_185261 avatar image
danielleplex_185261 asked Erick Ramirez edited

Is it possible to secure DS Studio?

Is there any built in solution to secure DSE studio?

At the moment it does not ask for any type of authentication so if I run it on a server it is accessible for everyone, and I was wondering if I can deploy it and add at least basic level authentication or if I need run it behind a proxy to authenticate it.


Thanks!

studio
10 |1000 characters needed characters left characters exceeded

Up to 8 attachments (including images) can be used with a maximum of 1.0 MiB each and 10.0 MiB total.

Erick Ramirez avatar image
Erick Ramirez answered

@danielleplex_185261 That's a great question. We recommend:

  • you restrict user access to the server where Studio is installed only to users who have rights to the DBs;
  • deploy Studio behind a VPN accessible only via a jump host;
  • use an authentication proxy access to the web UI;
  • secure connections to the DSE clusters.

For more information, see the DataStax Studio security best practices. Cheers!

Share
10 |1000 characters needed characters left characters exceeded

Up to 8 attachments (including images) can be used with a maximum of 1.0 MiB each and 10.0 MiB total.

Cedrick Lunven avatar image
Cedrick Lunven answered

Great answer by Eric.

Studio is really design to run locally on developer desktops and not as a shared asset (what would happen if multiple user open the same notebook). This is the reason why by default only localhost bound.

Because DataStax Studio is designed to be a local desktop application, a warning in configuration.yaml describes the risks of changing the bind address configuration from localhost.


In my team I work with and instance locally using docker and share the notebooks throught git.

https://hub.docker.com/r/datastax/dse-studio


My2c

Share
10 |1000 characters needed characters left characters exceeded

Up to 8 attachments (including images) can be used with a maximum of 1.0 MiB each and 10.0 MiB total.