fix(cfg): fix borked /v1/security/*token API endpoints by disabling verify sub claim in JWT to be string type in PyJWT >= 2.10

[hainenber]

fix(cfg): fix borked /v1/security/*token API endpoints by disabling verify sub claim in JWT to be string type in PyJWT >= 2.10

SUMMARY

Fixes #32241 by adding a sane default config while waiting for upstream packages to resolve breakages.

BEFORE/AFTER SCREENSHOTS OR ANIMATED GIF

Before

After

TESTING INSTRUCTIONS

1. Run Superset's Flask server
2. Call API /api/v1/security/csrf_token with proper Authorization header.

ADDITIONAL INFORMATION

• Has associated issue:
• Required feature flags:
• Changes UI
• Includes DB Migration (follow approval process in SIP-59)
  • Migration is atomic, supports rollback & is backwards-compatible
  • Confirm DB migration upgrade and downgrade tested
  • Runtime estimates and downtime expectations provided
• Introduces new feature or API
• Removes existing feature or API

[korbit-ai]

I've completed my review and didn't find any issues.

Files scanned

​

File Path	Reviewed
superset/config.py	✅

Explore our documentation to understand the languages and file types we support and the files we ignore.

Need a new review? Comment /korbit-review on this PR and I'll review your latest changes.

Korbit Guide: Usage and Customization

Interacting with Korbit

• You can manually ask Korbit to review your PR using the /korbit-review command in a comment at the root of your PR.
• You can ask Korbit to generate a new PR description using the /korbit-generate-pr-description command in any comment on your PR.
• Too many Korbit comments? I can resolve all my comment threads if you use the /korbit-resolve command in any comment on your PR.
• Chat with Korbit on issues we post by tagging @korbit-ai in your reply.
• Help train Korbit to improve your reviews by giving a 👍 or 👎 on the comments Korbit posts.

Customizing Korbit

• Check out our docs on how you can make Korbit work best for you and your team.
• Customize Korbit for your organization through the Korbit Console.

Current Korbit Configuration

General Settings

​

Setting	Value
Review Schedule	Automatic excluding drafts
Max Issue Count	10
Automatic PR Descriptions	❌

Issue Categories

​

Category	Enabled
Documentation	✅
Logging	✅
Error Handling	✅
Readability	✅
Design	✅
Performance	✅
Security	✅
Functionality	✅

Feedback and Support

• Tell us what you think of Korbit
• Schedule a call with our team
• Email us @ [email protected]

Note

Korbit Pro is free for open source projects 🎉

Looking to add Korbit to your team? Get started with a free 2 week trial here

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 83.45%. Comparing base (76d897e) to head (1ad857e).
Report is 1445 commits behind head on master.

Additional details and impacted files

@@             Coverage Diff             @@
##           master   #32244       +/-   ##
===========================================
+ Coverage   60.48%   83.45%   +22.96%     
===========================================
  Files        1931      546     -1385     
  Lines       76236    39098    -37138     
  Branches     8568        0     -8568     
===========================================
- Hits        46114    32630    -13484     
+ Misses      28017     6468    -21549     
+ Partials     2105        0     -2105     

Flag	Coverage Δ
hive	48.50% <100.00%> (-0.67%)	⬇️
javascript	?
mysql	75.85% <100.00%> (?)
postgres	75.92% <100.00%> (?)
presto	53.03% <100.00%> (-0.78%)	⬇️
python	83.45% <100.00%> (+19.96%)	⬆️
sqlite	75.43% <100.00%> (?)
unit	61.06% <100.00%> (+3.44%)	⬆️

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[rusackas]

I don't know the implications of this change, so I'll just tag @dpgaspar :)