Run any semantic-link-labs function with a Service Principle

[FrankPreusker]

As far as I understand, any semantic-link-lab function is executed with the permissions of the current users and is therefore limited to eg the current workspace or other objects which the user has permissions for.
Especialy for tenant admins it would be great to be able to run functions like run_model_bpa_bulk for a much wider set of semantic models (potentailly all in a tenant) without the need to have direct permissions on them.

Potential solution:
Similar to eg the Scanner API the authentication could use a Service Principal

[natolira]

+1 here.

Many functions here are good as a proof of concept, but to actually implement this is better to use a service principal instead of a user.

Maybe add some **kwars into every function that uses APIs?

[andrzejwicik]

+1 here. Must have if we want to use it on an enterprise scale.

[dtiles]

+1 here. Definitely a great addition

[NickyvVr]

+1, I definitely agree this would be most helpful!

[techexplorer101]

+1, definitely needed for use within organizations. Any updates on this issue?

[m-kovalsky]

With the introduction of this class in 0.8.7, we are getting closer to SP authentication for supported APIs. Stay tuned…

https://semantic-link-labs.readthedocs.io/en/stable/sempy_labs.html#sempy_labs.ServicePrincipalTokenProvider

[stermos-auchan]

@m-kovalsky Hello, imagine I added a service account user (a "normal" account, not a service principal) to all the workspaces, is it possible today (or will it be tomorrow) to execute semantic link labs functions by using the permissions of that user in a Notebook ?