403 Forbidden when API Admin requests

guiolmar · January 30, 2023, 3:48pm

Hi,

We have a problem when accessing the admin pages, all admin requests (only those) return a 403 error. For example: /api/admin/users/?page=1. Also, those requests are not found in the docker logs.

Our command that starts Baserow on all of our servers is:

sudo docker run \
  -d \
  --name baserow_version_1_14_0 \
  -e BASEROW_PUBLIC_URL=https://db.example.com \
  -e AWS_ACCESS_KEY_ID=example \
  -e AWS_SECRET_ACCESS_KEY=example \
  -e AWS_STORAGE_BUCKET_NAME=example \
  -e AWS_S3_REGION_NAME=example \
  -e AWS_S3_CUSTOM_DOMAIN=example \
  -e DATABASE_HOST=example.rds.amazonaws.com \
  -e DATABASE_NAME=example \
  -e DATABASE_USER=example \
  -e DATABASE_PASSWORD=example \
  -e DATABASE_PORT=5432 \
  -v baserow_data:/baserow/data \
  -p 80:80 \
  -p 443:443 \
  --restart unless-stopped \
  baserow/baserow:1.14.0

All the functionalities work perfectly, we can create, edit and access all the databases, but not access the admin pages.

nigel · January 31, 2023, 9:18am

Hi @guiolmar do you have an active premium seat or enterprise license? This endpoint is a premium one and requires a premium seat for your user to be assigned or an enterprise license which is active.

guiolmar · January 31, 2023, 10:39am

Hi @nigel Yes, we have an active premium license and assigned to this user.
The strangest of all is that the requests do not appear in the docker logs. All other requests can be found, except those in the admin panel.

guiolmar · January 31, 2023, 6:10pm

Fixed, it was a rule of our WAF, it was blocking the requests.