# frozen_string_literal: true module HTTPX module Plugins # # This plugin adds a shim +authorization+ method to the session, which will fill # the HTTP Authorization header, and another, +bearer_auth+, which fill the "Bearer " prefix # in its value. # # https://gitlab.com/os85/httpx/wikis/Auth#auth # module Auth def self.subplugins { retries: AuthRetries, } end # adds support for the following options: # # :auth_header_value :: the token to use as a string, or a callable which returns a string when called. # :auth_header_type :: the authentication type to use in the "authorization" header value (i.e. "Bearer", "Digest"...) # :generate_auth_value_on_retry :: callable which returns whether the request should regenerate the auth_header_value # when the request is retried (this option will only work if the session also loads the # :retries plugin). module OptionsMethods def option_auth_header_value(value) value end def option_auth_header_type(value) value end def option_generate_auth_value_on_retry(value) raise TypeError, "`:generate_auth_value_on_retry` must be a callable" unless value.respond_to?(:call) value end end module InstanceMethods def initialize(*) super @auth_header_value = nil @skip_auth_header_value = false end def authorization(token = nil, auth_header_type: nil, &blk) with(auth_header_type: auth_header_type, auth_header_value: token || blk) end def bearer_auth(token = nil, &blk) authorization(token, auth_header_type: "Bearer", &blk) end def skip_auth_header @skip_auth_header_value = true yield ensure @skip_auth_header_value = false end def reset_auth_header_value! @auth_header_value = nil end private def send_request(request, *) return super if @skip_auth_header_value || request.authorized? @auth_header_value ||= generate_auth_token request.authorize(@auth_header_value) if @auth_header_value super end def generate_auth_token return unless (auth_value = @options.auth_header_value) auth_value = auth_value.call(self) if dynamic_auth_token?(auth_value) auth_value end def dynamic_auth_token?(auth_header_value) auth_header_value&.respond_to?(:call) end end module RequestMethods def initialize(*) super @auth_token_value = nil end def authorized? !@auth_token_value.nil? end def unauthorize! return unless (auth_value = @auth_token_value) @headers.get("authorization").delete(auth_value) @auth_token_value = nil end def authorize(auth_value) if (auth_type = @options.auth_header_type) auth_value = "#{auth_type} #{auth_value}" end @headers.add("authorization", auth_value) @auth_token_value = auth_value end end module AuthRetries module InstanceMethods private def retryable_request?(request, response, options) super || auth_error?(response, options) end def retryable_response?(response, options) auth_error?(response, options) || super end def prepare_to_retry(request, response) super return unless auth_error?(response, request.options) || (@options.generate_auth_value_on_retry && @options.generate_auth_value_on_retry.call(response)) request.unauthorize! @auth_header_value = generate_auth_token end def auth_error?(response, options) response.is_a?(Response) && response.status == 401 && dynamic_auth_token?(options.auth_header_value) end end end end register_plugin :auth, Auth end end