Skip to content

fix(roles): Add missing SQLLab permissions for estimate and format #36263

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

fix(roles): Add missing SQLLab permissions for estimate and format #36263

wants to merge 1 commit into from
+2 −1

Conversation

@shunki-fujita
Copy link

@shunki-fujita shunki-fujita commented Nov 25, 2025
edited
Loading

Signed-off-by: shunki-fujita [email protected]

Close: #36261

SUMMARY

In Superset 5.0.0, the built-in sql_lab role does not include the required SQL Lab permissions:

  • can estimate query cost on SQLLab
  • can format sql on SQLLab

BEFORE/AFTER SCREENSHOTS OR ANIMATED GIF

TESTING INSTRUCTIONS

ADDITIONAL INFORMATION

  • Has associated issue:
  • Required feature flags:
  • Changes UI
  • Includes DB Migration (follow approval process in SIP-59)
    • Migration is atomic, supports rollback & is backwards-compatible
    • Confirm DB migration upgrade and downgrade tested
    • Runtime estimates and downtime expectations provided
  • Introduces new feature or API
  • Removes existing feature or API

@bito-code-review
Copy link
Contributor

bito-code-review bot commented Nov 25, 2025
edited
Loading

Code Review Agent Run #7faa80

Actionable Suggestions - 0
Review Details
  • Files reviewed - 1 · Commit Range: 2aa3f8c..2aa3f8c
    • superset/security/manager.py
  • Files skipped - 0
  • Tools
    • Whispers (Secret Scanner) - ✔︎ Successful
    • Detect-secrets (Secret Scanner) - ✔︎ Successful
    • MyPy (Static Code Analysis) - ✔︎ Successful
    • Astral Ruff (Static Code Analysis) - ✔︎ Successful
Bito Usage Guide

Commands

Type the following command in the pull request comment and save the comment.

  • /review - Manually triggers a full AI review.

  • /pause - Pauses automatic reviews on this pull request.

  • /resume - Resumes automatic reviews.

  • /resolve - Marks all Bito-posted review comments as resolved.

  • /abort - Cancels all in-progress reviews.

Refer to the documentation for additional commands.

Configuration

This repository uses Default Agent You can customize the agent settings here or contact your Bito workspace admin at [email protected].

Documentation & Help

AI Code Review powered by Bito Logo

@shunki-fujita shunki-fujita force-pushed the fix-sql-lab-permissions branch from e7b2877 to 1b0a17f Compare November 25, 2025 09:23
@shunki-fujita shunki-fujita force-pushed the fix-sql-lab-permissions branch from 1b0a17f to 2aa3f8c Compare November 25, 2025 09:23
@shunki-fujita shunki-fujita marked this pull request as ready for review November 25, 2025 09:25
@dosubot dosubot bot added the authentication:access-control Rlated to access control label Nov 25, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

authentication:access-control Rlated to access control size/XS

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

sql_lab role does not include can_estimate_query_cost and can_format_sql permissions

1 participant

@shunki-fujita