Add response error message output to HTTP Status 401 Errors in FileDownloader #15983
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
|
|
memsharded
approved these changes
Mar 28, 2024
Also change the TestFileServer to distinguish between the two cases so that we can test them by replacing the bad credentials error message "Not authorized" with "Bad credentials".
The source download step attempts to load source_credentials.json when it is present.
When following the recommended steps of passing credentials to the source_credentials.json via
os.getenv('BACKUP_USER') etc., this can result in the json string "None" when
no authentication is provided.
This effectively gets translated to the curl call when being read:
curl -i -u None:None https://artifactory.example.org/artifactory/source-backup/
This causes an error with status code 401, which currently does not propagate
the error message and is slightly misleading, as a source_credentials.json is
provided but the content is wrong:
ERROR: conanfile.py (example/1.0): Error in source() method, line 17
get(self, self.url, sha256=sha256, strip_root=True)
ConanException: The source backup server 'https://artifactory.example.org/artifactory/source-backup/' needs authentication: . Please provide 'source_credentials.json'
With this fix, the error message is propagated in the same way others in the
same block, resulting in a more useful message, although the "please provide"
is still misleading.
ERROR: conanfile.py (example/1.0): Error in source() method, line 17
get(self, self.url, sha256=sha256, strip_root=True)
ConanException: The source backup server 'https://artifactory.example.org/artifactory/source-backup/' needs authentication: {
"errors" : [ {
"status" : 401,
"message" : "Bad credentials"
} ]
}. Please provide 'source_credentials.json'
|
I sorted the commits in the following order:
I am also fighting with my git settings, hence the "unverified" commits in between... Now they should all be signed properly. |
memsharded
approved these changes
Mar 29, 2024
| @@ -4,3 +4,5 @@ parameterized>=0.6.3 | |||
| mock>=1.3.0, <1.4.0 | |||
| WebTest>=2.0.18, <2.1.0 | |||
| bottle | |||
| PyJWT | |||
There was a problem hiding this comment.
Good, we used to install requirements_server.txt for this, but I agree that this shouldn't be necessary and installing the dev requirements should be enough to run the tests too.
| @@ -77,6 +77,27 @@ def test_download_forbidden(self, _manual): | |||
| download(conanfile, file_server.fake_url + "/forbidden", dest) | |||
| assert "403 Forbidden" in str(exc.value) | |||
|
|
|||
| def test_download_unauthorized_no_credentials(self, _manual): | |||
There was a problem hiding this comment.
Excellent. Adding a new test instead of modifying existing ones is generally better, nice one.
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Changelog: Fix: Add response error message output to HTTP Status 401 Errors in FileDownloader.
Docs: Omit
(was #15981, but I committed with the wrong mail address so the GPG signatures were broken)
The source download step attempts to load source_credentials.json when it is present. When following the recommended steps of passing credentials to the source_credentials.json via os.getenv('BACKUP_USER') etc., this can result in the json string "None" when no authentication is provided.
This effectively gets translated to the curl call when being read:
This causes an error with status code 401, which currently does not propagate the error message and is slightly misleading, as a source_credentials.json is provided but the content is wrong:
With this fix, the error message is propagated in the same way others in the same block, resulting in a more useful message, although the "please provide" is still misleading.
(after creating the PR... sorry for not following the exact procedure of waiting for feedback etc.)
developbranch, documenting this one.