[Spark Web UI] Integrating Keycloak SSO

["Solomon, Brad" <br...@deloitte.com.INVALID>]

As outlined at https://issues.apache.org/jira/browse/SPARK-38693 and https://stackoverflow.com/q/71667296/7954504, we are attempting to integrate Keycloak<https://www.keycloak.org/docs/latest/securing_apps/#_servlet_filter_adapter> Single Sign On with the Spark Web UI.

However, Spark errors out with:

spark_1 | 22/03/29 18:43:24 INFO KeycloakDeployment: Loaded URLs from http://REDACTED/auth/realms/master/.well-known/openid-configuration
spark_1 | 22/03/29 18:43:24 WARN HttpChannel: /
spark_1 | java.lang.IllegalStateException: No SessionManager

This appears to be caused by Spark not using a Jetty SessionManager. (See the first link above for configuration of Spark.)

Are there any workarounds to make this integration succeed, and if so, what would they look like? Would it be possible to use a Jetty Adapter<https://www.keycloak.org/docs/latest/securing_apps/#_jetty9_adapter> with Spark and if so, how?

Component: Spark UI, authentication
Scenario: How-to

This message (including any attachments) contains confidential information intended for a specific individual and purpose, and is protected by law. If you are not the intended recipient, you should delete this message and any disclosure, copying, or distribution of this message, or the taking of any action based on it, by you is strictly prohibited.

Deloitte refers to a Deloitte member firm, one of its related entities, or Deloitte Touche Tohmatsu Limited ("DTTL"). Each Deloitte member firm is a separate legal entity and a member of DTTL. DTTL does not provide services to clients. Please see www.deloitte.com/about to learn more.

v.E.1