Are there supposed to be any security restrictions on what the notebooks can do?Responded
From what I can tell this is using the App instance profile in terms of IAM. I can list and delete buckets and datasets. This is fine in the commercial clients, but I'm wondering if it would be an issue for Mike Z Brian Pavlicek
James is correct. From our perspective, there may be a few users (i.e. Admins) that should be able to perform actions on all objects, but the standard user (and there could be dozens to 100s) should only be to perform these actions on defined objects. As Sarath mentioned, enhanced security controls should support the necessary granularity in granting these permissions.
Please sign in to leave a comment.