Superset API access through Cloudron Oauth
-
Hello Cloudron Team and users,
Sorry to bother you again since last time. I come here for help and guidance.
I'm currently trying to fiddle something with Superset and embedding through the Superset API in local, which is ok.
Now that i want to try it out on my Cloudron Superset Instance i'm quite stuck, as i can't get a hold of my JWT token through the Superset API :
https://superset.apache.org/docs/api/ => /api/v1/security/login
Which is i think related to the fact cloudron introduced a custom security manager in the superset_config.py filefrom cloudron_security_manager import CloudronSecurityManager CUSTOM_SECURITY_MANAGER = CloudronSecurityManager AUTH_TYPE = AUTH_OAUTH AUTH_ROLE_ADMIN = 'Admin' AUTH_ROLE_PUBLIC = 'Public' AUTH_USER_REGISTRATION = True AUTH_USER_REGISTRATION_ROLE = "Admin" OAUTH_PROVIDERS = [ { 'name':'Cloudron', 'token_key':'access_token', 'icon':'fa-address-card', 'remote_app': { 'client_id': os.environ["CLOUDRON_OIDC_CLIENT_ID"], 'client_secret': os.environ["CLOUDRON_OIDC_CLIENT_SECRET"], 'client_kwargs': {'scope': 'openid email profile'}, 'server_metadata_url': f"{CLOUDRON_OIDC_ISSUER}/.well-known/openid-configuration", 'api_base_url': f"{CLOUDRON_OIDC_ISSUER}/", 'access_token_url': f"{CLOUDRON_OIDC_TOKEN_ENDPOINT}", 'authorize_url': f"{CLOUDRON_OIDC_AUTH_ENDPOINT}" } } ]Now more security is ok, but i don't know how i can access the JWT token going through cloudron security first, if someone have experience about this, i'm quite sure it's supposed to be this way but i may be wrong.
Thank you -
Seems to be a superset problems by your expertise so ? I thought it would be related to the cloudron Security manager handling in addition to superset api...
I'll look into it when i'm in front of the problem i guess, maybe trying to override the security part of the api like a comment in the issues -
Seems to be a superset problems by your expertise so ? I thought it would be related to the cloudron Security manager handling in addition to superset api...
I'll look into it when i'm in front of the problem i guess, maybe trying to override the security part of the api like a comment in the issues