danilobraga-loft commented on issue #27177:
URL: https://github.com/apache/superset/issues/27177#issuecomment-2679439640
@natwar585 did you resolve this issue? I believe a have similar scenario, I
always getting "Guest user cannot modify chart payload"
here are my configs in case any of you have a clue:
```
# Embedded
PUBLIC_ROLE_LIKE_GAMMA = True
FEATURE_FLAGS = {"EMBEDDED_SUPERSET": True}
ENABLE_CORS = True
CORS_OPTIONS = {
"supports_credentials": True,
"allow_headers": ["Content-Type", "Authorization", "X-CSRFToken"],
"resources": ["*"],
"origins": [
"https://myappid-on.ngrok-free.app";
],
"methods": ["GET", "POST", "OPTIONS"],
}
HTTP_HEADERS = {
"X-Frame-Options": "ALLOWALL",
"Content-Security-Policy": "frame-ancestors *",
}
SESSION_COOKIE_SAMESITE = None
SESSION_COOKIE_SECURE = True
SESSION_COOKIE_HTTPONLY = False
GUEST_ROLE_NAME = "Gamma"
GUEST_TOKEN_JWT_ALGO = "HS256"
GUEST_TOKEN_HEADER_NAME = "X-GuestToken"
GUEST_TOKEN_JWT_AUDIENCE = "https://myappid-on.ngrok-free.app";
# TALISMAN CONFIGURATIONS
TALISMAN_ENABLED = False
WTF_CSRF_ENABLED = False
# Embedded End
```
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: [email protected]
For queries about this service, please contact Infrastructure at:
[email protected]
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
