Databricks Community

Chris_Shehu · ‎11-12-2021

We want to use the REPO directory in our production environment only and have a dev environment with less restrictions. If I use the checkbox on the group admin screen to disable workspace access, it locks out the entire Data Engineering section.

Chris_Shehu · ‎11-24-2021

So I found a way to get 85% of the way there:

1) Disable workspace access for the users group.

2) Create a new group or use another group that you created for the next step.

3) Go to the workspace and right click on whitespace in the root directory.

4) Add the new group/existing group with Read access.

This locks it so that new files can't be created or edited but the exception is the user's personal folder.

The permissions for that are greyed out and can't be changed.

So I proposed an idea to either have the ability to turn off personal folders or to modify the permissions.

see: https://feedback.azure.com/d365community/idea/70547d9f-464d-ec11-a819-0022484e8090

View solution in original post

Anonymous · ‎11-13-2021

@Christopher Shehu - Hello again! Thank you for this question. It sounds like an interesting one!

Prabakar · ‎11-15-2021

Hi @Christopher Shehu Could you please check the below doc and let me know if it helps?

https://docs.databricks.com/repos.html#control-access-to-databricks-repos

User16871418122 · ‎11-23-2021

You can allow specific git URLs by for commits and push by whitelisting in workspace settings in admin console

Screenshot 2021-11-24 at 12.21.27 PM

Chris_Shehu · ‎11-24-2021

Thanks for the answers but I'm looking more for something where you can disable the folder structure and ONLY have a git repo in the databricks PRD environment. That way someone can't bypass the github process to create something in prod.