fmannhardt commented on issue #28188: URL: https://github.com/apache/superset/issues/28188#issuecomment-2569824436
Encountering this as well. I think this should not be closed but reported to FAB since it seems to be an issue with FAB and Flask Login here: https://github.com/maxcountryman/flask-login/blob/019dbe3ae0fb95966682e769280722afb0a6b904/src/flask_login/login_manager.py#L375 and https://github.com/dpgaspar/Flask-AppBuilder/blob/418ab8a93907669be4ccbb99d7aefa5283f3e013/flask_appbuilder/security/manager.py#L2165 FAB seems to just assume that whatever user is provided can be loaded but if the user is read by Flask Login from a cookie, then `user` will be None -> NPE. So, FAB should really check for the user to exist before trying to access anything on it. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected] --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
