Incubator-superset: Can't access `/users/list` and `/users/userinfo` when login by keycloak SSO.
Succeed to login the existed user with admin role.
Could access the charts and dashboards. roles/list/ is also work.
But after click the users list link(/users/list), would be redirect to /login then has been redirect back to/superset/welcome by /login.
Integrate keycloak sso by fab-oidc.
In supserset_conf.py:
from flask_appbuilder.security.manager import AUTH_OID
AUTH_TYPE = AUTH_OID
from fab_oidc.security import SupersetOIDCSecurityManager
CUSTOM_SECURITY_MANAGER = SupersetOIDCSecurityManager
OIDC_CLIENT_SECRETS = "/home/superset/oidc_client.json"
OIDC_SCOPES = ['openid', 'email', 'profile']
Deploy on k8s use helm chart: stable/superset.
A customized docker image.
ARG SUPERSET_VERSION
# https://hub.docker.com/r/amancevice/superset/dockerfile
# https://github.com/amancevice/docker-superset
FROM amancevice/superset:0.34.1
USER root
RUN pip install --no-cache-dir pydruid==0.5.7 fab-oidc==0.0.9
USER superset
I have tried to integrate oauth2 provider, there is same problem.
qiuyuzhou
All 2 comments
Issue-Label Bot is automatically applying the label #bug to this issue, with a confidence of 0.75. Please mark this comment with :thumbsup: or :thumbsdown: to give our bot feedback!
Links: app homepage, dashboard and code for this bot.
![issue-label-bot[bot] picture](https://avatars2.githubusercontent.com/in/27079?v=4&s=40)
issue-label-bot[bot]
on 12 Nov 2019
After execute superset init, the problem has been resolved. It seem to re-sync the role definition to the database.I don't understand the deep reason.
qiuyuzhou
on 12 Nov 2019
Related issues
vylc
路
3Comments
joshuacano
路
3Comments
dinhhuydh
路
3Comments
lenguyenthedat
路
3Comments
kalimuthu123
路
3Comments
Most helpful comment
After execute
superset init, the problem has been resolved. It seem to re-sync the role definition to the database.I don't understand the deep reason.