Skip to content

Update refresh token flow #55506

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
vincbeck merged 1 commit into from
Oct 16, 2025
Merged

Update refresh token flow #55506

vincbeck merged 1 commit into from
Oct 16, 2025

Conversation

@vincbeck
Copy link
Contributor

@vincbeck vincbeck commented Sep 11, 2025
edited
Loading

The refresh token flow gets updated to make it simpler. Auth managers that need to refresh token periodically (e.g. Keycloak), need to implement the method refresh_token. This method is called before every request and check whether the token needs to be refreshed. If so, the token gets refreshed, is passed to the route implementation and saved as part of the response as cookie. This happens silently without the user noticing. Hence, we no longer need to have a refresh token public API.

^ Add meaningful description above
Read the Pull Request Guidelines for more information.
In case of fundamental code changes, an Airflow Improvement Proposal (AIP) is needed.
In case of a new dependency, check compliance with the ASF 3rd Party License Policy.
In case of backwards incompatible changes please leave a note in a newsfragment file, named {pr_number}.significant.rst or {issue_number}.significant.rst, in airflow-core/newsfragments.

@boring-cyborg boring-cyborg bot added area:API Airflow's REST/HTTP API area:providers area:UI Related to UI/UX. For Frontend Developers. kind:documentation provider:amazon AWS/Amazon - related issues provider:fab labels Sep 11, 2025
bugraoz93
bugraoz93 reviewed Sep 11, 2025
View reviewed changes
Copy link
Contributor

@bugraoz93 bugraoz93 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Overall, I like the approach. It is simple and extensible. It won't bring any complexity to create new auth managers. Thanks, Vincent!

LipuFei
LipuFei reviewed Sep 15, 2025
View reviewed changes
pierrejeambrun
pierrejeambrun reviewed Sep 18, 2025
View reviewed changes
Copy link
Member

@pierrejeambrun pierrejeambrun left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Nice, I like this approach too. 👍

@vincbeck vincbeck marked this pull request as ready for review September 23, 2025 18:42
jason810496
jason810496 reviewed Sep 28, 2025
View reviewed changes
Copy link
Member

@jason810496 jason810496 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Nice! Thanks for the PR!

@vincbeck vincbeck force-pushed the vincbeck/auth branch 2 times, most recently from b9ed97b to fc13ede Compare September 29, 2025 14:19
pierrejeambrun
pierrejeambrun reviewed Oct 1, 2025
View reviewed changes
Copy link
Member

@pierrejeambrun pierrejeambrun left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks good to me, just one remark

@vincbeck vincbeck changed the title Update UI authentication Update refresh token flow Oct 15, 2025
@vincbeck
Copy link
Contributor Author

vincbeck commented Oct 15, 2025

#56633 was merged so I rebased this PR to only include the refresh token change.

potiuk
potiuk approved these changes Oct 16, 2025
View reviewed changes
Copy link
Member

@potiuk potiuk left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@vincbeck vincbeck merged commit d58da15 into apache:main Oct 16, 2025
112 checks passed
@vincbeck vincbeck deleted the vincbeck/auth branch October 16, 2025 14:10
abdulrahman305 bot pushed a commit to abdulrahman305/airflow that referenced this pull request Oct 17, 2025
@vincbeck
Update refresh token flow (apache#55506)
f1bef73
abdulrahman305 bot pushed a commit to abdulrahman305/airflow that referenced this pull request Oct 19, 2025
@vincbeck
Update refresh token flow (apache#55506)
c5894d4
@pierrejeambrun pierrejeambrun mentioned this pull request Oct 20, 2025
Merged
@eladkal eladkal mentioned this pull request Oct 22, 2025
Closed
69 tasks
TyrellHaywood pushed a commit to TyrellHaywood/airflow that referenced this pull request Oct 22, 2025
@vincbeck @TyrellHaywood
Update refresh token flow (apache#55506)
ddfa050
@vincbeck vincbeck mentioned this pull request Nov 24, 2025
Closed
2 tasks
vincbeck added a commit to aws-mwaa/upstream-to-airflow that referenced this pull request Nov 24, 2025
@vincbeck
Update refresh token flow (apache#55506)
5d2077f
@vincbeck vincbeck mentioned this pull request Nov 24, 2025
Merged
vincbeck added a commit to aws-mwaa/upstream-to-airflow that referenced this pull request Nov 24, 2025
@vincbeck
Update refresh token flow (apache#55506)
1f656d4
potiuk pushed a commit that referenced this pull request Nov 25, 2025
@vincbeck
Update refresh token flow (#55506) (#58649)
6b9f3cd
@potiuk potiuk modified the milestones: Airflow 3.2.0, Airflow 3.1.4 Nov 25, 2025
ephraimbuddy pushed a commit that referenced this pull request Dec 3, 2025
@vincbeck @ephraimbuddy
Update refresh token flow (#55506) (#58649)
147eca0
@ephraimbuddy ephraimbuddy mentioned this pull request Dec 4, 2025
Closed
78 tasks
ephraimbuddy added a commit that referenced this pull request Dec 8, 2025
@ephraimbuddy
Revert "Update refresh token flow (#55506) (#58649)"
9aabbe5 
This reverts commit 147eca0.
This was referenced Jan 6, 2026
Open
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@potiuk potiuk potiuk approved these changes

@bugraoz93 bugraoz93 bugraoz93 approved these changes

@jason810496 jason810496 jason810496 approved these changes

@eladkal eladkal Awaiting requested review from eladkal

@o-nikolas o-nikolas Awaiting requested review from o-nikolas

@bbovenzi bbovenzi Awaiting requested review from bbovenzi bbovenzi is a code owner

@ryanahamilton ryanahamilton Awaiting requested review from ryanahamilton ryanahamilton is a code owner

@jscheffl jscheffl Awaiting requested review from jscheffl

@shubhamraj-git shubhamraj-git Awaiting requested review from shubhamraj-git shubhamraj-git is a code owner

@ephraimbuddy ephraimbuddy Awaiting requested review from ephraimbuddy ephraimbuddy is a code owner

@rawwar rawwar Awaiting requested review from rawwar rawwar is a code owner

@ashb ashb Awaiting requested review from ashb

@jedcunningham jedcunningham Awaiting requested review from jedcunningham

@gopidesupavan gopidesupavan Awaiting requested review from gopidesupavan

@amoghrajesh amoghrajesh Awaiting requested review from amoghrajesh

@pierrejeambrun pierrejeambrun Awaiting requested review from pierrejeambrun pierrejeambrun is a code owner

+1 more reviewer

@LipuFei LipuFei LipuFei left review comments

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

area:API Airflow's REST/HTTP API area:providers area:UI Related to UI/UX. For Frontend Developers. kind:documentation provider:amazon AWS/Amazon - related issues provider:fab

Projects

None yet

Milestone

Airflow 3.1.4

Development

Successfully merging this pull request may close these issues.

7 participants

@vincbeck @potiuk @LipuFei @bugraoz93 @pierrejeambrun @jason810496 @eladkal