Starburst Enterprise web UI#
The Starburst Enterprise web UI is the default web interface when you access an SEP cluster that has a valid license configured.
A cluster with no license configured shows the Trino web UI by default. The Trino UI lacks the SEP features such as Insights, data products, the query editor, and domain management.
Direct URL access#
Access the Starburst Enterprise web UI directly with the URL of your coordinator.
Now that this interface is the default for licensed clusters, there is no longer
a need to append the
/ui/insights context to your coordinator’s URL. Use
simple URLs such as the following:
On a TLS-enabled cluster, enter the credentials required by the cluster’s authentication method. Contact your site’s network administrator for your username, password, and other credentials as required by your cluster.
On a cluster with no security method enabled, the login screen shows a username field with a disabled password field. Enter any username to log in; no password is required or allowed.
The login screen you encounter is determined only by the cluster’s security configuration, including TLS support, and is independent of license status. There is no separate security configuration for the Starburst Enterprise web UI.
Deployments that use an IdP that substitutes for login credential forms, such as AzureAD and Okta, are subject to the session timeout defined in their IdP’s configuration.
When the timeout interval is reached, a dialog is displayed giving users the option to logout to exit the Starburst Enterprise web UI and return to the login screen, or to dismiss the dialog to stay on the current page without requesting new data. For example, if a session times out during a long-running query, the query is allowed to finish. Users can view and download the existing query result set in the query editor by clicking Dismiss in the modal dialog and then clicking Download, but cannot run a new query or navigate to another screen until logged back in.
The feature column of the Starburst Enterprise web UI shows several tabs, described next.
At the bottom of this column, find the Version, Environment description, and Uptime of the connected cluster.
Use the ☰ button to collapse the feature column to icon form and restore it.
The Query editor tab is a web-based interface for writing and executing SQL queries.
The Data products tab allows you to publish, find, and manage curated data assets in your organization.
The Domain management tab allows you to manage grouping of your data products into domains that define your business.
The Overview tab is the default tab opened when the Starburst Enterprise web UI starts, and shows a summary of your cluster’s current activities.
The Cluster history tab shows the resources consumed by your cluster when responding to recent queries, or for a specified time period.
The Usage metrics tab provides an overview of the cluster usage over a specified period of time and a cost estimation tool.
Roles and privileges#
SEP features an optional built-in role-based access control (RBAC) system that is integrated with the Starburst Enterprise web UI. If enabled, an authorized administrator can control users’ access to data on the Roles and privileges tab.
See Built-in access control overview for more information.
The Help (?) menu includes the following helpful links for convenience:
Web UI: Link to the Trino web UI
Documentation: Link to the Insights documentation
Authorization app: If configured by an administrator, links to the authorization app used in the cluster.
The Help menu can be configured to include a convenient link in Starburst Enterprise web UI that opens the UI of the cluster’s associated authorization app, if any.
The Help menu only contains the Authorization UI link if an
administrator configures the coordinator’s
config.properties with the
insights.authorization-application.url property, using a value pointing to a
valid URL for an authorization app such as Apache Ranger or the Privacera
You can replace the default “Authorization UI” text of this submenu by using
The following table shows the configuration properties for the authorization app:
UI URL of an authorization app associated with this cluster, such as Apache Ranger or the Privacera Platform.
Name of the associated authorization app to appear in the Help menu.
config.properties must still contain a valid
property for the cluster, which is the primary way to associate an authorization
app with the cluster.
insights.authorization-application.url=https://ranger.example.com:6182/ insights.authorization-application.label=Lab Ranger
The user menu in the upper right shows the name of the currently logged-in user, as well as their currently-applied roles.
Clicking on the Switch roles menu item brings up the Switch roles UI.
The Switch roles UI allows users to switch between specific roles they have
been granted, or to apply all roles that they have been granted. To apply all
roles granted, click the * option in the Switch roles UI. This has the
same effect as executing the
SET ROLE ALL SQL statement.
The Log out option logs you out of the current session.
The Settings menu item is available to administrative users. Clicking on the Settings menu item brings up the Settings UI, with the following options:
License - This tab displays all possible SEP features, including connectors, and their statuses based on your current license file. Your license file is available by clicking the Download current license button.
Customize login - This tab allows you to add a logo and banner text.
The Customize login screen allows you to upload a logo and create a banner message. You can choose to do one or both. You must press Save for changes to take effect. The user ID and last updated time is displayed next to the Save button.
The current logo file is displayed under the Logo upload area. To remove or replace the current logo, click the ⓧ icon. If no custom logo is in use, the Choose button is displayed.
Click the Choose button in the Logo upload file selector to open a local file browser and select the logo file to use. The selector lists the default maximum file size as well as the allowable formats.
The Starburst Enterprise web UI can be configured to allow larger file sizes by setting the
following configuration property to the desired size in the coordinator’s
# value in KB; default is 100 sep-ui.security.company-logo-max-size=100
Add text to the Banner messaging text field to create a short message of 300 characters or less. The banner message appears across the top of the login screen for logged out users.
The Starburst Enterprise web UI can be configured to allow more text by setting the following
configuration property to the desired size in the coordinator’s
# value in chars; default is 300 sep-ui.security.banner-text-max-size=300
You can disable the Starburst Enterprise web UI login and revert to the legacy Trino UI login by setting the following configuration in the