" with JWT token but always reponse "message": "Not authorized" [superset]

via GitHub Tue, 21 Nov 2023 05:28:21 -0800


xavier-GitHub76 commented on issue #25876:
URL: https://github.com/apache/superset/issues/25876#issuecomment-1820927529


   hello, 
   first of all, thank you very much for your help. It is very pleasant. 👍 
   Unfortunately I fail. I don't understand the systematic use of the 
{{url}}/'login' web page although API endpoints exist:
   {{url}}/api/v1/security/login
   {{url}}/api/v1/security/csrf_token/
   
   I nevertheless tried your scenario.
   
   I made the GET request on  {{url}}/'login' and I successfully retrieved the 
value of the hidden variable crsf_token.
   
   
![image](https://github.com/apache/superset/assets/82046143/bb955158-3753-452d-808d-e057f34e3d22)
   
![image](https://github.com/apache/superset/assets/82046143/d751b423-fd21-4832-a226-16aae8604268)
   
   I made the POST request on  {{url}}/'login' with body as FormData containing 
the csrf_token, username, and password :
   
![image](https://github.com/apache/superset/assets/82046143/7a917fa6-4af2-4cbc-bcf9-25f595b8e84b)
   
   I make the request on {{url}}/api/v1/me/ (with no Auth) but I had "message": 
"Not authorized"
   
![image](https://github.com/apache/superset/assets/82046143/d48ca3db-b6b9-4c2f-8bc0-b4f0f5f850a7)
   
   Best regards
   
   
   
   
   


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: [email protected]

For queries about this service, please contact Infrastructure at:
[email protected]


---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

Re: [I] API "/api/v1/me/" with JWT token but always reponse "message": "Not authorized" [superset]

Reply via email to