New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
enable_framed_allow_write_admin_token_auth not working #16993
Comments
@jisse44 I just tried to reproduce this. I think it's actually supposed to work like this that it only allows embedding widgets for write and admin access, but never for super user access. Are the websites all using the same user? Would it be easily possible to change that user to an admin maybe? |
OK, that is the trick, my user is "super user", not "admin" ... Is it possible to create and get token for user from console ? |
Hi @jisse44 It's currently only possible through the |
Hi, sorry for the delay, but yes I finally managed migration with a bash script, by getting read only user token_auth in DB before the upgrade. |
Great to hear @jisse44 thanks for letting us know 👍 |
Matomo 3.14.1 to 4.0.5 :
We have hundreds of Wordpress websites using Matomo 3.14.1, with a custom plugin displaying an iFrame in dashboard with Widget iframed:
https://website.url/piwik/index.php?module=Widgetize&action=iframe&widget=1&moduleToWidgetize=VisitsSummary&actionToWidgetize=getSparklines&idSite=1&period=day&date=2020-12-20&disableLink=1&widget=1&token_auth=xxxxx
With the update to 4.0.5, we have the error message
"This user has super user access. For embedding widgets super user token auths are not allowed. See our faq for more information."
OK, so the FAQ says:
But when configured to 1 , enable_framed_allow_write_admin_token_auth doesn't seems to work.
I know it's not recommended, and for new installations we will create special user with view only, but as I said, we don't want to do this for the hundred existing sites.
The text was updated successfully, but these errors were encountered: