How do I disable Airflow login for authentication and authorization?

Question

I have a fork of apache airflow which I want to run behind a proxy server. All the authentication will be already handled outside airflow, thus I don't want the customers to login with another set of credentials again. Is there any way to completely remove/disable the authentication from airflow.

Basically, I want to get rid of this initial login screen and allow anyone who reaches airflow to have user (not admin) access. [Worst case admin access is also ok.]

Answer 1

If anyone is using docker, this worked for me(airflow 2.0.1):

1. Add a copy of webserver_config.py somewhere in your project.
2. Uncomment AUTH_ROLE_PUBLIC and set 'Admin' as the value.

AUTH_ROLE_PUBLIC = 'Admin'

3. Add these settings to your .cfg file.

[webserver]
rbac = False
authenticate = False

4. In your Dockerfile, add the command to copy the webserver_config.py into the /home/airflow directory. e.g:

ADD airflow/webserver_config.py /home/airflow

Once you spin up the pod, config file should be appended to the directory disabling the authentication.

Answer 2

For airflow 2.0.1 and later:

In file: $AIRFLOW_HOME/webserver_config.py

add/edit this line (note that by default it says = 'Public' and you need to change it!)

AUTH_ROLE_PUBLIC = 'Admin'

Documentation about this argument: https://airflow.apache.org/docs/apache-airflow/stable/security/webserver.html#web-authentication

The feature was added in this PR/change: https://github.com/apache/airflow/pull/13191 which was merged into airflow 2.0.1