enable_framed_allow_write_admin_token_auth not working #16993
Comments
|
@jisse44 I just tried to reproduce this. I think it's actually supposed to work like this that it only allows embedding widgets for write and admin access, but never for super user access. Are the websites all using the same user? Would it be easily possible to change that user to an admin maybe? |
tsteur
added
the
Waiting for user feedback
|
OK, that is the trick, my user is "super user", not "admin" ... Is it possible to create and get token for user from console ? |
|
Hi @jisse44 It's currently only possible through the |
|
Hi, sorry for the delay, but yes I finally managed migration with a bash script, by getting read only user token_auth in DB before the upgrade. |
tsteur
added
answered
|
Great to hear @jisse44 thanks for letting us know 👍 |
Matomo 3.14.1 to 4.0.5 :
We have hundreds of Wordpress websites using Matomo 3.14.1, with a custom plugin displaying an iFrame in dashboard with Widget iframed:
https://website.url/piwik/index.php?module=Widgetize&action=iframe&widget=1&moduleToWidgetize=VisitsSummary&actionToWidgetize=getSparklines&idSite=1&period=day&date=2020-12-20&disableLink=1&widget=1&token_auth=xxxxxWith the update to 4.0.5, we have the error message
"This user has super user access. For embedding widgets super user token auths are not allowed. See our faq for more information."OK, so the FAQ says:
But when configured to 1 , enable_framed_allow_write_admin_token_auth doesn't seems to work.
I know it's not recommended, and for new installations we will create special user with view only, but as I said, we don't want to do this for the hundred existing sites.
The text was updated successfully, but these errors were encountered: