saurabnigam edited a comment on issue #15819: URL: https://github.com/apache/superset/issues/15819#issuecomment-886724956
Yes, the latest version has the same issue. The dashboard is embedded using an iframe. parent domain: a.y.com superset domain: b.y.com ie domain is same, subdomain is different. Nginx is used as a reverse proxy and all headers are passed. No cors or CSRF restrictions are there. Normally in chrome or firefox if I open this page it works. When I open this in incognito or private browsing in chrome or firefox respectively the error comes. According to my findings, Superset is trying to access browser storage for caching which is getting security issues in incognito mode due to cross-domain, but I might be wrong! Screenshot for reference.  Let me know if more info is required -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected] --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
