-
Notifications
You must be signed in to change notification settings - Fork 13.5k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Getting 403 when I use swagger endpoint api/v1/security/roles/ with admin user #23300
Comments
Is not a bug, just needed superset init. |
How to do superset init, is mentioned here - https://stackoverflow.com/a/76826712/326835 |
Its still not working for me even after following above link and added init. |
FWIW, I hit this as well and I had set |
@bryanjknight is drop database really needed? I imagine if a user is in production already then dropping the database might lose alot of data... |
@joshstackintegrated I had tried without dropping but couldn't get it to work. I suspect that there might be some configuration in the database tables that needs to happen but I'm not exactly sure. Unfortunately not working on superset anymore but that was my experience from a few months ago |
@bryanjknight yeah i was worried that it had to do with some database configuration that happens at superset init. Hopefully a superset dev can shine some more light on this. In case there's a way to manually run the needed changes in the DB without needing to drop it |
I'm facing the same issue as well. I have also tried the custom initializer class which calls "SupersetSecuritymanager.role_api" My Custom Initializer class: superset-config.py: I'm not sure if I'm missing anything. However, I may not be able to drop the data base as our Superset instance is being used by many users in prod. Would appreciate any help. I looked into the source code and went all the way until the parent class that is being used by superset security manager and not sure why I'm getting 403 forbidden: |
A similar problem on superset 4.0.1. I don't even know where to look |
I get a 403 response from the security endpoints. The rest of the endpoints work correctly.
He añadido a mi config.py:
FAB_ADD_SECURITY_API = True
PREVENT_UNSAFE_DB_CONNECTIONS = False
SESSION_COOKIE_HTTPONLY=True
TESTING = True
WTF_CSRF_ENABLED = False
FLASK_DEBUG = 1
FAB_API_SHOW_STACKTRACE = True
GUEST_ROLE_NAME = "Gamma"
SESSION_COOKIE_SAMESITE = None
ENABLE_PROXY_FIX = True
PUBLIC_ROLE_LIKE_GAMMA = True
How to reproduce the bug
Expected results
To obtain the roles
Actual results
403 httpstatus Forebidden
Environment
PYTHON_VERSION | 3.8.16
Checklist
Make sure to follow these steps before submitting your issue - thank you!
Additional context
Add any other context about the problem here.
The text was updated successfully, but these errors were encountered: