Deprecate the 'http_auth' parameter

[sethmlarson]

This parameter is deprecated in favor of basic_auth.

[sim0nx]

Hi, having opened issue #209 (#210) long time ago, I am wondering if this means that I can no longer pass a custom auth handler ?
basic_auth sounds like it would only support basic authentication ;-)

[sethmlarson]

@sim0nx Hello! Thanks for commenting here, the current plan is to only support Basic, Bearer, and API Keys for authentication. What is your use-case for custom HTTP authentication specifically for Requests?

[sim0nx]

My long time use case is supporting kerberos/gsaapi authentication. I would thus highly appreciate it if you could leave support in there for custom auth handlers :-)

[sethmlarson]

Gotcha! I'll leave the deprecation for Tuple[str, str] and str but keep the door open for custom HTTP authentication when using Requests specifically.

[sim0nx]

Great! Thank you! 👍

[sethmlarson]

Captured this use-case here: #1778 Sorry to have removed it at all, I didn't actually know there was a use-case for it beyond Basic as none were documented 😅. TIL!

[sim0nx]

Lucky me I by coincidence browsed this project because of various deprecation warnings and saw your commit :-D

Thanks again, much appreciated!

[sethmlarson]

@sim0nx Are your custom handlers available anywhere public? If so might be useful to make some sort of template available.

[sim0nx]

Sure, I currently use requests-gssapi (https://pypi.org/project/requests-gssapi/).
So that basically is

import requests
from requests_gssapi import HTTPSPNEGOAuth

conn = elasticsearch.Elasticsearch(...,
                                     connection_class=elasticsearch.RequestsHttpConnection,
                                     http_auth=HTTPSPNEGOAuth(),
                                     ...
                                     )