GitHub user dosubot[bot] added a comment to the discussion: Superset worker call api warm_up_cache returned 403
<!-- Greeting --> Hi @huutai1996! 👋 I'm [Dosu](https://dosu.dev), a bot here to help you solve bugs, answer questions, and get you on your way to contributing. I'll be assisting you while you wait for a human maintainer. How can I help you today? <!-- Answer --> I found some similar threads that might be relevant to your issue: 1. [Encountering a "403 Forbidden" error while attempting to integrate a dashboard into Moodle application](https://github.com/apache/superset/discussions/30849) <sup>[[1]](https://github.com/apache/superset/discussions/30849)</sup>. 2. [Apache Superset Embedded Not Working (Forbidden)](https://github.com/apache/superset/discussions/23044) <sup>[[2]](https://github.com/apache/superset/discussions/23044)</sup>. Both discussions involve encountering a 403 Forbidden error, which is similar to the issue you're facing with the `warm_up_cache` API. Regarding your specific issue, even though you have set `WTF_CSRF_ENABLED` to `False`, the logs indicate that a CSRF token is still being fetched. This might be due to the default headers included in requests made by the `warm_up_cache` API, which include an `X-CSRF-Token` header <sup>[[3]](https://github.com/apache/superset/blob/master/tests/integration_tests/tasks/test_cache.py)</sup>. Additionally, common causes of a 403 Forbidden error in Apache Superset include various security access errors, such as `TABLE_SECURITY_ACCESS_ERROR`, `DATASOURCE_SECURITY_ACCESS_ERROR`, and others <sup>[[4]](https://github.com/apache/superset/blob/master/superset/errors.py)</sup>. It might be worth checking if there are any permission issues related to the resources you're trying to access. If the issue persists, you may want to verify your Superset configuration and ensure that there are no other settings or middleware that might be enforcing CSRF protection despite your configuration. <!-- Dosu Comment Footer --> *To continue talking to [Dosu](https://dosu.dev), mention @dosu.* --- <sup>Help Dosu learn! Give it feedback: [Great Response](https://app.dosu.dev/response-feedback/d7cfad2c-b7a5-4256-989b-1b7bf374c666?feedback_type=great_response) | [Irrelevant Answer](https://app.dosu.dev/response-feedback/d7cfad2c-b7a5-4256-989b-1b7bf374c666?feedback_type=irrelevant_answer) | [Incorrect Sources](https://app.dosu.dev/response-feedback/d7cfad2c-b7a5-4256-989b-1b7bf374c666?feedback_type=incorrect_sources) | [Too Verbose](https://app.dosu.dev/response-feedback/d7cfad2c-b7a5-4256-989b-1b7bf374c666?feedback_type=too_verbose) | [Hallucination](https://app.dosu.dev/response-feedback/d7cfad2c-b7a5-4256-989b-1b7bf374c666?feedback_type=hallucination) | [Bug Report](https://app.dosu.dev/response-feedback/d7cfad2c-b7a5-4256-989b-1b7bf374c666?feedback_type=bug_report) | [Other](https://app.dosu.dev/response-feedback/d7cfad2c-b7a5-4256-989b-1b7bf374c666?feedback_type=other)</sup> GitHub link: https://github.com/apache/superset/discussions/33004#discussioncomment-12732102 ---- This is an automatically sent email for [email protected]. To unsubscribe, please send an email to: [email protected] --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
