You are viewing a plain text version of this content. The canonical link for it is here.

Posted to notifications@superset.apache.org by GitBox <gi...@apache.org> on 2020/09/17 08:29:51 UTC

[GitHub] [incubator-superset] dpgaspar commented on issue #10905: How to secure newly added APIs

dpgaspar commented on issue #10905:
URL: https://github.com/apache/incubator-superset/issues/10905#issuecomment-694082326


   Hi, this is more of an FAB question. You should use `@protect` with `BaseApi` or `ModelRestApi` classes, this will create a new permission pair, on your case it would be `can role on AuthorizationAPI`, after you need to run `superset init` so that superset itself creates the necessary permission on the DB and add it to the `Admin` role.


----------------------------------------------------------------
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

For queries about this service, please contact Infrastructure at:
users@infra.apache.org



---------------------------------------------------------------------
To unsubscribe, e-mail: notifications-unsubscribe@superset.apache.org
For additional commands, e-mail: notifications-help@superset.apache.org