ericandrewmeadows edited a comment on issue #8062: CUSTOM_SECURITY_MANAGER not working in 0.34.0rc1 URL: https://github.com/apache/incubator-superset/issues/8062#issuecomment-522648303 Sorry - accidentally opened & closed. In my `superset_config.py`, this is how I am implementing the OAuth: ``` from flask_appbuilder.security.manager import AUTH_OID from create_client_secret_json import create_client_secret_json from security import OIDCSecurityManager SECRETS_FILENAME = 'client_secret.json' client_secrets_dict = create_client_secret_json(SECRETS_FILENAME) os.environ['ORG_URL'] = client_secrets_dict['issuer'] AUTH_TYPE = AUTH_OID OIDC_CLIENT_SECRETS = SECRETS_FILENAME OIDC_ID_TOKEN_COOKIE_SECURE = True OIDC_USER_INFO_ENABLED = True AUTH_USER_REGISTRATION = True AUTH_USER_REGISTRATION_ROLE = 'Gamma' OIDC_SCOPES = ["openid", "email", "profile", "groups"] OIDC_INTROSPECTION_AUTH_METHOD = os.environ['OID_AUTH_METHOD'] CUSTOM_SECURITY_MANAGER = OIDCSecurityManager ``` The server logs actually do not give any issues, but with the custom SM, it is not ending up reaching `handle_login()`, and `/login` is not being properly routed to. When I end up accessing `/login` directly, I end up having the endpoint say I did not pass in a specified `redirect_uri` because the variable `ENABLE_PROXY_FIX` also appears to be broken because the port is coming through on the request. Intuitively, this is all from the Talisman library.
---------------------------------------------------------------- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: [email protected] With regards, Apache Git Services --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
