Allow custom authorization mechanisms. #139
Conversation
The auth keyword argument now takes a callable accepts an IAgent and returns an IAgent. The returned IAgent can then implement whatever authorization scheme the human mind can imagine.
Codecov Report@@ Coverage Diff @@
## master #139 +/- ##
==========================================
+ Coverage 94.25% 94.42% +0.17%
==========================================
Files 19 19
Lines 1705 1758 +53
Branches 145 148 +3
==========================================
+ Hits 1607 1660 +53
Misses 62 62
Partials 36 36
Continue to review full report at Codecov.
|
There was a problem hiding this comment.
Thanks for the PR.
This strikes me as somewhat over-general for just "auth" though. The example doesn't actually do any auth (what's the recommendation? modify the headers object? create a new one? at what phase does this run? what about redirects? how long does the "auth" object live - can it store state for challenge response?
I'd suggest - although I'm not adamant - that this should be a new argument, "customize", or somesuch. But, for the use-case of auth, the thing this really needs is a clear example of how you implement a real auth mechanism (ideally one with more than one round trip).
Thanks again!
|
ping |
|
@glyph Thanks for the review, and sorry for the silence.
Agreed.
This PR's real goal is to enable an entirely external digest authentication implementation for treq. Certainly that will have a request-response loop. I purposely omitted such a loop here because I expected to follow up with a real example there. I'm happy to admit I wasn't imaginative enough to come up with a simpler but useful example :)
The proposed API's breadth made me think the same thing. Also a "customize" argument would make a toy redirect-following function relevant as an example. If it's OK with you and @dreid I'm happy to change this over to "customize" and write the redirect follower as an example of how to use it.
Thanks for the review!! |
|
These are the relevant bits of requests documentation: |
|
@glyph After talking with @dreid this morning, I decided not to do what I said I would in the previous comment. This should be explicitly for authorization, though its interface is broad, because of where it sits in the Agent composition chain (e.g., it wraps the I'll note that the requests documentation that @dreid links too shows that their custom auth example is no better than the one originally in this PR*. However I went ahead and implemented a more meaningful, if still silly, example. I'm not sure if the code's as clear as it could be, so please take a look! EDIT *Whoops, missed PizzaAuth the first read through the requests links. What a delicious example! |
|
@markrwilliams I spoke with @Lukasa on IRC about requests' behavior and he pointed me to https://github.com/kennethreitz/requests/blob/master/requests/sessions.py#L198-L220 We should probably match this behavior. The easiest implementation of this is probably an Agent that takes two agents, and uses the first if the host matches the first host it sees a request for, the second agent is used when the host doesn't match. (this is just an example of the composition hierarchy if it is being done manually, probably each auth method should be in charge of determining the pinning behavior, and PinToFirstHost is just a convenient container for the default behavior implemented by the HTTPBasicAuth and friends.) requests does not currently support the ability to specify credentials per-host (unless using netrc), but since treq's "credential" objects are callables that return Agents they have full access to the request so implementing this is at least possible as a third party. |
This prevents treq from leaking authorization headers to unrelated hosts via redirects.
There was a problem hiding this comment.
The general idea behind the implementation seems pretty solid here, but I'd feel a lot better if you could address my nitpicking before we merge it ;). I particularly would like to see narrative docstrings for the tests and the removal of the word "silly" from the docs.
docs/examples/custom_auth.py
Outdated
| import treq | ||
|
|
||
|
|
||
| class SillyAuthResource(Resource): |
There was a problem hiding this comment.
type(Resource) is ClassType so this should be Resource, object.
| """ | ||
| isLeaf = True | ||
|
|
||
| def __init__(self, header, secret): |
There was a problem hiding this comment.
Perhaps it's time to start using attrs? :)
docs/examples/custom_auth.py
Outdated
|
|
||
| class SillyAuthResource(Resource): | ||
| """ | ||
| A resource that uses a silly, header-based authentication |
There was a problem hiding this comment.
Thinking from the perspective of a non-native English speaker for a moment - the "silliness" here is not obvious, so perhaps it would be better to use a word like "custom"?
There was a problem hiding this comment.
hm, what about "trivial"?
| @@ -26,6 +27,31 @@ def request(self, method, uri, headers=None, bodyProducer=None): | |||
| method, uri, headers=headers, bodyProducer=bodyProducer) | |||
|
|
|||
|
|
|||
| class _PinToFirstHostAgent(object): | |||
| """ | |||
| An {twisted.web.iweb.IAgent} implementing object that takes two | |||
There was a problem hiding this comment.
"implementing object" is really a content-free phrase here; those words could just be deleted with no loss of meaning.
| @@ -42,6 +48,61 @@ def test_overrides_per_request_headers(self): | |||
| ) | |||
|
|
|||
|
|
|||
| class PinToFirstHostAgentTests(TestCase): | |||
| def setUp(self): | |||
| self.first_agent = mock.Mock(Agent) | |||
There was a problem hiding this comment.
I really dislike mock. Sometimes it's necessary for expedience here, but given that we already have treq.testing, couldn't we use that instead?
There was a problem hiding this comment.
I may like mock less than any other person on the planet. I chose it here to stay consistent with the existing test case, since a person wandering in would wonder why one used mock and the others treq.testing. I'd be happy to do a follow up PR that switched things over to treq.testing.
| @@ -42,6 +48,61 @@ def test_overrides_per_request_headers(self): | |||
| ) | |||
|
|
|||
|
|
|||
| class PinToFirstHostAgentTests(TestCase): | |||
There was a problem hiding this comment.
These tests should really have docstrings.
| """ | ||
|
|
||
| def __init__(self, first_agent, second_agent): | ||
| self._first_agent = first_agent |
There was a problem hiding this comment.
I'm inclined to suggest Twisted coding-standard names rather than pep8, which seems to be the standard in this repo https://github.com/twisted/treq/blob/master/src/treq/testing.py#L45-L46 and is officially the standard in Klein (despite a few lapses there)
There was a problem hiding this comment.
Lots of treq.client, for example, prefers underscore_names. I'd rather confront naming consistency in a subsequent PR and stick with pep8 names in this one, since the API I'm extending prefers underscores
|
Can you resolve the conflicts which have crept in? |
|
I'm definitely interested in this. Today I wrote https://github.com/ktdreyer/treq-kerberos to make treq work with HTTP Negotiate authentication (similar to requests-kerberos). I think treq-kerberos could be another authentication provider. |
|
@ktdreyer That would be awesome. |
|
@markrwilliams bump |
|
@ktdreyer @markrwilliams any chance of updating this? |
|
I'm going to close this since it is accumulating conflicts and hasn't been updated in a year. Feel free to resurrect this contribution and reopen. |
The auth keyword argument now takes a callable accepts an IAgent and
returns an IAgent. The returned IAgent can then implement whatever
authorization scheme the human mind can imagine.