dosubot[bot] commented on issue #33053: URL: https://github.com/apache/superset/issues/33053#issuecomment-2789394491
<!-- Answer --> I found some similar threads that might be helpful: 1. [400 Bad Request: The CSRF session token is missing.](https://github.com/apache/superset/discussions/32815) - This discussion is open and might provide insights into handling CSRF token issues. 2. [Superset redirecting to login page very Frequently](https://github.com/apache/superset/discussions/30707) - This is another open discussion that could be relevant if you're experiencing frequent redirects. 3. [[QA][superset & keycloak] flask_wtf.csrf.CSRFError: 400 Bad Request: The CSRF token is missing.](https://github.com/apache/superset/discussions/28250) - This open discussion also deals with CSRF token issues. To resolve the issue of not being able to logout after implementing OAUTH with Azure and using CookieSession, ensure that the CSRF token is properly fetched and included in the headers for requests that require it. Here are some steps you can follow: 1. Ensure that the `getCSRFToken()` method is called before the logout request to fetch and set the CSRF token in the headers. 2. Verify that the CSRF token is included in the headers of the logout request. The headers should include `'X-CSRFToken': this.csrfToken`. 3. Check if the session is properly maintained and that the CSRF token is not being cleared or invalidated prematurely <sup>[[1]](https://github.com/apache/superset/blob/master/superset-frontend/packages/superset-ui-core/src/connection/SupersetClientClass.ts)</sup>. <!-- Dosu Comment Footer --> *To continue talking to [Dosu](https://dosu.dev), mention @dosu.* --- <sup>Help Dosu learn! Give it feedback: [Great Response](https://app.dosu.dev/response-feedback/0aeba39a-c603-442a-8eb2-010197377d60?feedback_type=great_response) | [Irrelevant Answer](https://app.dosu.dev/response-feedback/0aeba39a-c603-442a-8eb2-010197377d60?feedback_type=irrelevant_answer) | [Incorrect Sources](https://app.dosu.dev/response-feedback/0aeba39a-c603-442a-8eb2-010197377d60?feedback_type=incorrect_sources) | [Too Verbose](https://app.dosu.dev/response-feedback/0aeba39a-c603-442a-8eb2-010197377d60?feedback_type=too_verbose) | [Hallucination](https://app.dosu.dev/response-feedback/0aeba39a-c603-442a-8eb2-010197377d60?feedback_type=hallucination) | [Bug Report](https://app.dosu.dev/response-feedback/0aeba39a-c603-442a-8eb2-010197377d60?feedback_type=bug_report) | [Other](https://app.dosu.dev/response-feedback/0aeba39a-c603-442a-8eb2-010197377d60?feedback_type=other)</sup> -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: notifications-unsubscr...@superset.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org --------------------------------------------------------------------- To unsubscribe, e-mail: notifications-unsubscr...@superset.apache.org For additional commands, e-mail: notifications-h...@superset.apache.org
