dosubot[bot] commented on issue #34905: URL: https://github.com/apache/superset/issues/34905#issuecomment-3237193239
<!-- Answer --> The `'can get column values on datasource'` permission controls whether a user can fetch distinct values for a column, which is what powers the filter drop-down lists in Superset. If a user (like Gamma) lacks this permission or access to the datasource, the API returns a 403 error and the dropdown can't be populatedāusers can only enter values manually. This is intentional and part of Superset's security model, designed to limit data exposure and control access to potentially sensitive metadata or large data scans for performance reasons. The frontend simply tries to fetch values; if the API call fails due to missing permissions, it falls back to manual entry. If you want Gamma users to use filter dropdowns, you can safely grant them the `'can get column values on datasource'` permission and ensure they have access to the relevant datasources. Removing this permission requirement is not recommended, as it's a deliberate part of Superset's granular role-based access control. More details are in the code and tests that enforce this behavior ([API implementation](https://github.com/apache/superset/blob/829e4d92d91ceae4b43b1ed3b063ffe45377799c/superset/datasource/api.py), [permission tests](https://github.com/apache/superset/blob/829e4d92d91ceae4b43b1ed3b063ffe45377799c/tests/integration_tests/datasource/api_tests.py)). <!-- Dosu Comment Footer --> *To reply, just mention [@dosu](https://go.dosu.dev/dosubot).* --- <sup>How did I do? [Good](https://app.dosu.dev/response-feedback/8e3e98c4-99d3-444c-b2f2-8e43b3c65ca2?feedback_type=great_response) | [Irrelevant](https://app.dosu.dev/response-feedback/8e3e98c4-99d3-444c-b2f2-8e43b3c65ca2?feedback_type=irrelevant_answer) | [Incorrect](https://app.dosu.dev/response-feedback/8e3e98c4-99d3-444c-b2f2-8e43b3c65ca2?feedback_type=incorrect_sources) | [Verbose](https://app.dosu.dev/response-feedback/8e3e98c4-99d3-444c-b2f2-8e43b3c65ca2?feedback_type=too_verbose) | [Hallucination](https://app.dosu.dev/response-feedback/8e3e98c4-99d3-444c-b2f2-8e43b3c65ca2?feedback_type=hallucination) | [Report š](https://app.dosu.dev/response-feedback/8e3e98c4-99d3-444c-b2f2-8e43b3c65ca2?feedback_type=bug_report) | [Other](https://app.dosu.dev/response-feedback/8e3e98c4-99d3-444c-b2f2-8e43b3c65ca2?feedback_type=other)</sup> [](https://app.dosu.dev/a28d3c7e-a9d3-459e-9fb6-3a6f9ff4f357/ask?utm_source=githu b) [](https://go.dosu.dev/discord-bot) [](https://twitter.com/intent/tweet?text=%40dosu_ai%20helped%20me%20solve%20this%20issue!&url=https%3A//github.com/apache/superset/issues/34905) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected] --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
