GitHub user dosubot[bot] added a comment to the discussion: Regarding the issues related to the homepage in Superset version 5.0.0
<!-- Answer --> Superset 5.0 does not provide a public API endpoint for external applications to submit username/password credentials for login. The standard login flow is protected by CSRF and session management, so simply POSTing credentials from an external app will not work without handling CSRF tokens and cookies as a browser would. After a user logs in through the normal Superset login page, you can redirect them to a specific dashboard using the `next` parameter in the login URL (e.g., `/login/?next=/dashboard/<slug>/`)—this works for redirecting users after authentication, but not for bypassing the login form with external credential submission [source](https://github.com/apache/superset/blob/829e4d92d91ceae4b43b1ed3b063ffe45377799c/superset/views/core.py#L122-L930). If you want to automate login or integrate with an external authentication system, consider using SSO (OAuth, OpenID, SAML) or the guest token mechanism for embedding dashboards [source](https://github.com/apache/superset/blob/master/superset/security/api.py#L82-L197). For per-user dashboard redirects after login, you can customize the Superset home page using the `FLASK_APP_MUTATOR` config to set a custom IndexView that redirects users to their assigned dashboard [example](https://github.com/apache/superset/issues/34575). Directly passing credentials from an external app to Superset for login is not supported out of the box and would require custom authentication logic or a proxy that fully emulates browser login, including CSRF handling. <!-- Dosu Comment Footer --> *To reply, just mention [@dosu](https://go.dosu.dev/dosubot).* --- <sup>How did I do? [Good](https://app.dosu.dev/response-feedback/375321a2-ecf7-4669-929e-f6faef659af9?feedback_type=great_response) | [Irrelevant](https://app.dosu.dev/response-feedback/375321a2-ecf7-4669-929e-f6faef659af9?feedback_type=irrelevant_answer) | [Incorrect](https://app.dosu.dev/response-feedback/375321a2-ecf7-4669-929e-f6faef659af9?feedback_type=incorrect_sources) | [Verbose](https://app.dosu.dev/response-feedback/375321a2-ecf7-4669-929e-f6faef659af9?feedback_type=too_verbose) | [Hallucination](https://app.dosu.dev/response-feedback/375321a2-ecf7-4669-929e-f6faef659af9?feedback_type=hallucination) | [Report 🐛](https://app.dosu.dev/response-feedback/375321a2-ecf7-4669-929e-f6faef659af9?feedback_type=bug_report) | [Other](https://app.dosu.dev/response-feedback/375321a2-ecf7-4669-929e-f6faef659af9?feedback_type=other)</sup> [](https://app.dosu.dev/a28d3c7e-a9d3-459e-9fb6-3a6f9ff4f357/ask?utm_source=github)& nbsp;[](https://go.dosu.dev/discord-bot) [](https://twitter.com/intent/tweet?text=%40dosu_ai%20helped%20me%20solve%20this%20issue!&url=https%3A//github.com/apache/superset/discussions/36221) GitHub link: https://github.com/apache/superset/discussions/36221#discussioncomment-15036326 ---- This is an automatically sent email for [email protected]. To unsubscribe, please send an email to: [email protected] --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
