GitHub user dosubot[bot] added a comment to the discussion: embedding problem
<!-- Greeting --> Hi @Diwash-Mishra! I'm [Dosu](https://go.dosu.dev/dosubot) and I’m helping the superset team. <!-- Answer --> Superset requires a special guest token for embedded dashboards, which is separate from regular authentication like SSO or one-tap login. If you embed Superset after a one-tap login but do not provide a guest token scoped to the dashboard and its datasets, Superset will deny access to datasets, databases, and charts—even if the dashboard frame loads. The guest token must include user info, resources (dashboard IDs), and any row-level security rules, and be passed to Superset (usually as a header) during embedding. Make sure the EMBEDDED_SUPERSET feature flag is enabled, the dashboard is published for embedding, your embedding domain is in allowed_domains, and CORS settings are correct. If you skip the guest token step, users will only have access to resources allowed by their RBAC roles or the public role, which usually means no data access in embedded views. See more details in the [code and docs](https://github.com/apache/superset/blob/829e4d92d91ceae4b43b1ed3b063ffe45377799c/sup erset/security/manager.py). <!-- Dosu Comment Footer --> *To reply, just mention [@dosu](https://go.dosu.dev/dosubot).* --- <sup>How did I do? [Good](https://app.dosu.dev/response-feedback/31203010-f474-4f5d-8a0e-787bc3e48f14?feedback_type=great_response) | [Irrelevant](https://app.dosu.dev/response-feedback/31203010-f474-4f5d-8a0e-787bc3e48f14?feedback_type=irrelevant_answer) | [Incorrect](https://app.dosu.dev/response-feedback/31203010-f474-4f5d-8a0e-787bc3e48f14?feedback_type=incorrect_sources) | [Verbose](https://app.dosu.dev/response-feedback/31203010-f474-4f5d-8a0e-787bc3e48f14?feedback_type=too_verbose) | [Hallucination](https://app.dosu.dev/response-feedback/31203010-f474-4f5d-8a0e-787bc3e48f14?feedback_type=hallucination) | [Report 🐛](https://app.dosu.dev/response-feedback/31203010-f474-4f5d-8a0e-787bc3e48f14?feedback_type=bug_report) | [Other](https://app.dosu.dev/response-feedback/31203010-f474-4f5d-8a0e-787bc3e48f14?feedback_type=other)</sup> [](https://app.dosu.dev/a28d3c7e-a9d3-459e-9fb6-3a6f9ff4f357/ask?utm_source=github)& nbsp;[](https://go.dosu.dev/discord-bot) [](https://twitter.com/intent/tweet?text=%40dosu_ai%20helped%20me%20solve%20this%20issue!&url=https%3A//github.com/apache/superset/discussions/35229) GitHub link: https://github.com/apache/superset/discussions/35229#discussioncomment-14475901 ---- This is an automatically sent email for [email protected]. To unsubscribe, please send an email to: [email protected] --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
