Skip to content

fix: do not require a 200 from the auth endpoint #44

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 1 commit into from
Closed

fix: do not require a 200 from the auth endpoint #44

wants to merge 1 commit into from

Conversation

@achingbrain
Copy link
Member

@achingbrain achingbrain commented Oct 29, 2024

Some endpoints may require other fields to be passed to the auth endpoint which may result in a non-200 response.

Others may send a different success code (such as 204) so be less strict about the response code, as long as they've sent us the Authentication-Info header.

Change checklist

  • I have performed a self-review of my own code
  • I have made corresponding changes to the documentation if necessary (this includes comments as well)
  • I have added tests that prove my fix is effective or that my feature works

@achingbrain
fix: do not require a 200 from the auth endpoint
723690f 
Some endpoints may require other fields to be passed to the auth
endpoint which may result in a non-200 response.

Others may send a different success code (such as 204) so be less
strict about the response code, as long as they've sent us the
`Authentication-Info` header.
@achingbrain
Copy link
Member Author

achingbrain commented Oct 29, 2024

This came up when trying to integrate with p2p-forge which currently does auth on an endpoint that requires additional arguments and doesn't publish an alternative under /.well-known/libp2p/protocols.

The 200 vs 204 (etc) use case is probably worth handling though.

@achingbrain achingbrain requested a review from MarcoPolo October 29, 2024 17:50
@MarcoPolo
Copy link
Collaborator

MarcoPolo commented Oct 29, 2024

Should this check for 2xx instead?

@achingbrain
Copy link
Member Author

achingbrain commented Oct 29, 2024

That would be slightly more flexible but it wouldn't solve the problem with p2p-forge as it's returning a 400, albeit with a valid Authentication-Info header.

@achingbrain
Copy link
Member Author

achingbrain commented Oct 31, 2024

Closing in favour of #45

@achingbrain achingbrain deleted the fix/do-not-require-200-from-auth-endpoint branch October 31, 2024 17:14
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@MarcoPolo MarcoPolo Awaiting requested review from MarcoPolo

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@achingbrain @MarcoPolo