Use AAD authentication in the REST API and Databricks CLI instead of user tokens
Use Azure Active Directory (AAD) authentication in the REST API (and Databricks CLI) instead of user tokens
Anna Shrestinian commented
Using AAD tokens with the Databricks API is in the roadmap
Arvind Ravish commented
Is this in the roadmap
I totally agree. Current approach of using tokens is very limited and is making a security risk. Correct approach would be to use AAD.
ALM Mechanics commented
With AAD integration the token usage can be more controlled and monitored.
Rohan Cragg commented
Once issued, a user token could be disclosed to a 3rd party and used by that 3rd party which violates a basic security principle of non-repudiation.
The Tokens API does allow for listing and revocation of tokens which provides some very limited mitigation.