GitHub user dosubot[bot] added a comment to the discussion: Multi-Tenant User management
<!-- Answer --> When FAB_ADD_SECURITY_API = True, Superset enables the Flask AppBuilder (FAB) Security REST API, which exposes endpoints for user and role CRUD operations. This makes additional "Security" endpoints available in the API (and visible in Swagger if you also set FAB_API_SWAGGER_UI = True) for programmatic management of users and roles. These endpoints are not enabled by default and are not available if the flag is absent or set to False. The UI for user/role management is not affected—this flag only controls API/programmatic access, not the regular admin screens or dropdowns in the frontend. Note that these APIs are sensitive, so only trusted users should have access to them. After changing this flag, you need to run superset init and restart the server for it to take effect. More details: [docs](https://github.com/apache/superset/blob/050ccdcb3dd84f3ae6e301d61021e72474e754d7/docs/docs/security/security.mdx), [issue thread](https://github.com/apache/superset/issues/33925), [UPDATING.m d](https://github.com/apache/superset/blob/050ccdcb3dd84f3ae6e301d61021e72474e754d7/UPDATING.md). <!-- Dosu Comment Footer --> *To reply, just mention [@dosu](https://go.dosu.dev/dosubot).* --- <sup>How did I do? [Good](https://app.dosu.dev/response-feedback/fc42a727-6d93-42f4-be77-3b6a106d0ce2?feedback_type=great_response) | [Irrelevant](https://app.dosu.dev/response-feedback/fc42a727-6d93-42f4-be77-3b6a106d0ce2?feedback_type=irrelevant_answer) | [Incorrect](https://app.dosu.dev/response-feedback/fc42a727-6d93-42f4-be77-3b6a106d0ce2?feedback_type=incorrect_sources) | [Verbose](https://app.dosu.dev/response-feedback/fc42a727-6d93-42f4-be77-3b6a106d0ce2?feedback_type=too_verbose) | [Hallucination](https://app.dosu.dev/response-feedback/fc42a727-6d93-42f4-be77-3b6a106d0ce2?feedback_type=hallucination) | [Report 🐛](https://app.dosu.dev/response-feedback/fc42a727-6d93-42f4-be77-3b6a106d0ce2?feedback_type=bug_report) | [Other](https://app.dosu.dev/response-feedback/fc42a727-6d93-42f4-be77-3b6a106d0ce2?feedback_type=other)</sup> [](https://go.dosu.dev/discord-bot) [](https://twitter.com/intent/tweet?text=%40dosu_ai%20helped%20me%20solve%20this%20issue!&url=https%3A//github.com/apache/superset/discussions/33877) GitHub link: https://github.com/apache/superset/discussions/33877#discussioncomment-13627850 ---- This is an automatically sent email for [email protected]. To unsubscribe, please send an email to: [email protected] --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
