Skip to content

fix(GithubEnterpriseIntegration): Adding Authorization-header for installations-request #26281

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 7 commits into from
Jun 1, 2021
Merged

fix(GithubEnterpriseIntegration): Adding Authorization-header for installations-request #26281

merged 7 commits into from
Jun 1, 2021

Conversation

itssimple
Copy link
Contributor

@itssimple itssimple commented May 28, 2021
edited by BYK
Loading

GitHub Enterprise has deprecated using access_token only in querystring.

Response from newer versions:

{
    "message": "Must specify access token via Authorization header",
    "documentation_url": "https://docs.github.com/enterprise/3.0/v3/#oauth2-token-sent-in-a-header"
}

@itssimple
fix(GithubEnterpriseIntegration): Adding Authorization-header for ins…
be39528 
…tallations-request

GitHub Enterprise has deprecated using `access_token` only in querystring.

Response from newer versions:
```json
{
    "message": "Must specify access token via Authorization header",
    "documentation_url": "https://docs.github.com/enterprise/3.0/v3/#oauth2-token-sent-in-a-header"
}
```
@itssimple itssimple requested a review from a team May 28, 2021 14:34
@itssimple itssimple changed the title Adding Authorization-header for installations-request fix(GithubEnterpriseIntegration): Adding Authorization-header for installations-request May 29, 2021
@BYK
Copy link
Member

BYK commented May 30, 2021

/gcbrun

@BYK
Copy link
Member

BYK commented May 30, 2021

Thanks a lot @itssimple! I think this was overlooked when fixing the main GitHub auth a while ago.

Pinging the @getsentry/ecosystem team for a review and merge.

MeredithAnya
MeredithAnya requested changes Jun 1, 2021
View reviewed changes
Copy link
Member

@MeredithAnya MeredithAnya left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@itssimple Thank you putting up this PR !

Just a couple of things:

I would recommend adding match_querystring=True to the responses made to the /user endpoints in the GHE tests to just verify that we are making requests without the access token in the query param. (even though we are mocking out the response)

Here is one of the requests, the other is some lines above:

sentry/tests/sentry/integrations/github_enterprise/test_integration.py

Lines 97 to 101 in 1bd0ad9

responses.add(
responses.GET,
self.base_url + "/user/installations",
json={"installations": [{"id": installation_id}]},
)

Additionally, can you tell me which version of GHE you tested this out on?

src/sentry/integrations/github_enterprise/integration.py Outdated

resp = session.get(
"https://{}/api/v3/user/installations".format(installation_data["url"]),
params={"access_token": access_token},
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Let's remove the params here since you are adding the access_token to the headers now

@itssimple
Copy link
Contributor Author

@MeredithAnya Thanks for checking the PR!

I have committed the changes requested by adding the match_querystring=True to the test, and removing the params from the actual request.

I'm testing this against a 3.0.7 version of GHE.

@BYK
Copy link
Member

BYK commented Jun 1, 2021

/gcbrun

@MeredithAnya
Copy link
Member

@MeredithAnya Thanks for checking the PR!

I have committed the changes requested by adding the match_querystring=True to the test, and removing the params from the actual request.

I'm testing this against a 3.0.7 version of GHE.

Thanks for removing the params ! The match_querystring=True is a new arg, not part of the json so i think needs to be like the following

responses.add(
    responses.GET,
    self.base_url + "/user/installations",
    json={"installations": [{"id": installation_id}]},
    match_querystring=True,
)

after that I think things should be good

@itssimple
Copy link
Contributor Author

Ah, sorry. It's my first time modifying Python. :)

@BYK
Copy link
Member

BYK commented Jun 1, 2021

/gcbrun

MeredithAnya
MeredithAnya reviewed Jun 1, 2021
View reviewed changes
@BYK @MeredithAnya
Fix lint
e292f15 
Co-authored-by: MeredithAnya <meredith.a.heller@gmail.com>
@BYK
Copy link
Member

BYK commented Jun 1, 2021

/gcbrun

BYK
BYK reviewed Jun 1, 2021
View reviewed changes
@BYK
Copy link
Member

BYK commented Jun 1, 2021

/gcbrun

BYK
BYK reviewed Jun 1, 2021
View reviewed changes
@BYK
Copy link
Member

BYK commented Jun 1, 2021

/gcbrun

@MeredithAnya
Copy link
Member

we got this team !

fix lint once and for all

@BYK BYK enabled auto-merge (squash) June 1, 2021 22:01
@BYK BYK merged commit dbda812 into getsentry:master Jun 1, 2021
@itssimple itssimple deleted the patch-1 branch June 2, 2021 05:13
@github-actions github-actions bot locked and limited conversation to collaborators Jun 17, 2021
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

@BYK BYK BYK left review comments

@MeredithAnya MeredithAnya MeredithAnya approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@itssimple @BYK @MeredithAnya