GitHub user dosubot[bot] added a comment to the discussion: How to manage user accounts using API
<!-- Answer --> The 403 Forbidden error happens because, even with `FAB_ADD_SECURITY_API = True` and admin role, the `/api/v1/security/users/` endpoint in Superset 5.0.0 does not actually implement a POST method for user creation. The API exposes user info and listing, but not user creation—so all attempts to create users via this endpoint will return 403, regardless of permissions or authentication. This is a limitation of the current Superset API implementation, not a misconfiguration or missing permission on your side [[source](https://github.com/apache/superset/blob/829e4d92d91ceae4b43b1ed3b063ffe45377799c/superset/views/users/api.py)]. To create users, you need to use the CLI command: ```bash superset fab create-user \ --username newuser \ --firstname New \ --lastname User \ --email [email protected] \ --password 'securepassword' \ --role Admin ``` If you need user creation via API, you would have to implement a custom API endpoint or extend the existing one. Let me know if you want guidance on that. <!-- Dosu Comment Footer --> *To reply, just mention [@dosu](https://go.dosu.dev/dosubot).* --- <sup>How did I do? [Good](https://app.dosu.dev/response-feedback/fc3e48f7-bf69-4fac-a6de-705f6e464c3b?feedback_type=great_response) | [Irrelevant](https://app.dosu.dev/response-feedback/fc3e48f7-bf69-4fac-a6de-705f6e464c3b?feedback_type=irrelevant_answer) | [Incorrect](https://app.dosu.dev/response-feedback/fc3e48f7-bf69-4fac-a6de-705f6e464c3b?feedback_type=incorrect_sources) | [Verbose](https://app.dosu.dev/response-feedback/fc3e48f7-bf69-4fac-a6de-705f6e464c3b?feedback_type=too_verbose) | [Hallucination](https://app.dosu.dev/response-feedback/fc3e48f7-bf69-4fac-a6de-705f6e464c3b?feedback_type=hallucination) | [Report 🐛](https://app.dosu.dev/response-feedback/fc3e48f7-bf69-4fac-a6de-705f6e464c3b?feedback_type=bug_report) | [Other](https://app.dosu.dev/response-feedback/fc3e48f7-bf69-4fac-a6de-705f6e464c3b?feedback_type=other)</sup> [](https://app.dosu.dev/a28d3c7e-a9d3-459e-9fb6-3a6f9ff4f357/ask?utm_source=github)& nbsp;[](https://go.dosu.dev/discord-bot) [](https://twitter.com/intent/tweet?text=%40dosu_ai%20helped%20me%20solve%20this%20issue!&url=https%3A//github.com/apache/superset/discussions/35887) GitHub link: https://github.com/apache/superset/discussions/35887#discussioncomment-14816106 ---- This is an automatically sent email for [email protected]. To unsubscribe, please send an email to: [email protected] --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
