IBM Data and AI Ideas Portal for Customers
Hide about this portal


This portal is to open public enhancement requests against products and services offered by the IBM Data & AI organization. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).


Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:


Search existing ideas

Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updates on them if they matter to you. If you can't find what you are looking for,


Post your ideas

Post ideas and requests to enhance a product or service. Take a look at ideas others have posted and upvote them if they matter to you,

  1. Post an idea

  2. Upvote ideas that matter most to you

  3. Get feedback from the IBM team to refine your idea


Specific links you will want to bookmark for future use

Welcome to the IBM Ideas Portal (https://www.ibm.com/ideas) - Use this site to find out additional information and details about the IBM Ideas process and statuses.

IBM Unified Ideas Portal (https://ideas.ibm.com) - Use this site to view all of your ideas, create new ideas for any IBM product, or search for ideas across all of IBM.

ideasibm@us.ibm.com - Use this email to suggest enhancements to the Ideas process or request help from IBM for submitting your Ideas.

IBM Employees should enter Ideas at https://ideas.ibm.com


Add a new idea Subscribe
Status Delivered
Workspace Data Lineage by Manta
Created by Guest
Created on Aug 5, 2024

RELATED IDEAS

Support Alation Authentication methods

See this idea on ideas.ibm.com

Current State:
Alation currenltly supports two ways of authenticating ( https://developer.alation.com/dev/docs/authentication-into-alation-apis

1. Register your application (Manta) as an OAuth 2 client

2. Use a refresh token

Manta currently supports neither. It supports LEGACY - a token which expires every 24 hours, or DEFAULT - authenticates using a username and password - which will not work when Alation is integrated with SSO (such as SAML)

Expected State:

1. Manta should have a documented API that can be used to rotate the legacy token.

2. Manta should support at least one of the two methods described above. (my own preference is refresh token because it works for users who have SSO or not and allows service account management can be handled from either Alation or the IDP)

3. Add a step-by-step tutorial on how to connect Alation with Manta, including generating refresh token or OAuth client.

 

What happens if this is not done:

1. There is no way to integrate Manta and Alation in an enterprise environment, where Alation is connected to SSO. It is not practical to create a non-SSO account in Alation, not is it practical to manually rotate access keys every 24 hours by hand (since there is no API to do this)

Needed By Yesterday (Let's go already!)
  • Admin
    Jakub Moravec
    Reply
    |     Jan 29, 2025

    Hi Dev,

    happy to inform you that the editable refresh token has been relesed in Manta 42.9. Please let me know if you have any questions.

    Best Regards,
    Jakub

  • Guest
    Reply
    |     Oct 31, 2024

    Hi Jakub,
    making the refresh token editable (from Ui and API) would help reduce the need for this idea, but not remove this need.

    Let me explain why. 

    The current state requires the user to generate an access token and replace it every 24 hours.

    Allowing refresh tokens to be set by the user would require the user must manually update it every 60 days. Alation refresh tokens expire about every 60 days, unless Manta implements a thread to continuously extend the expiry time of this token.

    Implementing Alation OAuth secrets in Alation would allow Manta to use secrets indefinitely, much like user-name password. 

    If you could look into when this (making refresh tokens editable) would be implemented, it would help us a lot, since it is a good path to reach the ideal solution.

    Thank You, 

    Dev

  • Admin
    Jakub Moravec
    Reply
    |     Oct 25, 2024

    Hi Devayon,

    we discussed this internally, the prefer solution would be to make the Refresh token editable in Manta Admin UI. Can you please confirm if this solution will be sufficient?

    Thank you, Jakub Moravec

By clicking the "Post Comment" or "Submit Idea" button, you are agreeing to the IBM Ideas Portal Terms of Use.
Do not place IBM confidential, company confidential, or personal information into any field.