Skip to content

Comments

Allow passing custom headers to metadata request in authorize_redirect#710

Open
AlexandrosMaragkakis wants to merge 1 commit intoauthlib:mainfrom
AlexandrosMaragkakis:feat/authorize_redirect-headers
Open

Allow passing custom headers to metadata request in authorize_redirect#710
AlexandrosMaragkakis wants to merge 1 commit intoauthlib:mainfrom
AlexandrosMaragkakis:feat/authorize_redirect-headers

Conversation

@AlexandrosMaragkakis
Copy link

@AlexandrosMaragkakis AlexandrosMaragkakis commented Feb 20, 2025

This pull request implements a feature to allow custom HTTP headers to be passed to the metadata request made by authorize_redirect().

Previously (#633), when calling authorize_redirect(redirect_uri, headers=headers), the custom headers were not forwarded to the GET request for server metadata, causing a 401 Unauthorized error when the endpoint was protected by a security gateway.

What kind of change does this PR introduce? (check at least one)

  • Bugfix
  • Feature
  • Code style update
  • Refactor
  • Other, please describe:

Does this PR introduce a breaking change? (check one)

  • Yes
  • No
  • You consent that the copyright of your pull request source code belongs to Authlib's author.

@azmeuk azmeuk added the role:client Concerns a client implementation label Feb 21, 2025
@azmeuk
Copy link
Member

azmeuk commented Feb 21, 2025

Hello. Thank you for your contribution. Would you consider adding some unit tests?

@AlexandrosMaragkakis
Copy link
Author

AlexandrosMaragkakis commented Feb 21, 2025

Hello. Unfortunately I don't have any experience in unit testing. Having said that, I am willing to give it a try. Perhaps you could suggest a file from the tests of the project, to serve as an example for me?

@azmeuk
Copy link
Member

azmeuk commented Feb 21, 2025

You could take inspiration from this test, register a client with custom headers, and then check if the mocked send method is called with your custom headers.
If you are not familiar with mock, I guess the subject is pretty well covered on the internet.

azmeuk
azmeuk reviewed Feb 21, 2025
View reviewed changes
authlib/integrations/base_client/sync_app.py Outdated
Comment on lines 346 to 347
if self.client_kwargs is None:
self.client_kwargs = {}
Copy link
Member

@azmeuk azmeuk Feb 21, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Is this needed as client_kwargs is automatically initialized as an empty dict when a None value is passed?
https://github.com/lepture/authlib/blob/da87c8b2ec35af9ddd3b621e2e8245102018f878/authlib/integrations/base_client/sync_app.py#L217

Copy link
Author

@AlexandrosMaragkakis AlexandrosMaragkakis Feb 22, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

You are correct, thanks for pointing it out. I also cleaned the other changes a bit.

@AlexandrosMaragkakis AlexandrosMaragkakis force-pushed the feat/authorize_redirect-headers branch from 58f6776 to eaf1e5a Compare February 22, 2025 08:54
@AlexandrosMaragkakis
Copy link
Author

AlexandrosMaragkakis commented Feb 22, 2025

I appreciate the guidance. I'll get on with adding the tests.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@azmeuk azmeuk azmeuk left review comments

Assignees

No one assigned

Labels

role:client Concerns a client implementation

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@AlexandrosMaragkakis @azmeuk