Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

implement SHA fallback behaviour #1678

Merged
merged 5 commits into from
Jun 29, 2023
Merged

implement SHA fallback behaviour #1678

Changes from all commits
Commits
Show all changes
5 commits
Select commit Hold shift + click to select a range
2ab4338
implement SHA fallback behaviour
adehad Jun 6, 2023
6c65660
use SIGNATURE_RSA for better compatibility
adehad Jun 26, 2023
bc7632d
ensure exception re-raised if we exhaust all options
adehad Jun 26, 2023
fc6ffd7
[pre-commit.ci] auto fixes from pre-commit.com hooks
pre-commit-ci[bot] Jun 26, 2023
dd4c12d
improve log message
adehad Jun 28, 2023
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
39 changes: 30 additions & 9 deletions jira/client.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -3689,17 +3689,38 @@ def _create_http_basic_session(self, username: str, password: str):
self._session.auth = (username, password)

def _create_oauth_session(self, oauth: dict[str, Any]):
from oauthlib.oauth1 import SIGNATURE_HMAC_SHA1
from oauthlib.oauth1 import SIGNATURE_HMAC_SHA1 as DEFAULT_SHA
from requests_oauthlib import OAuth1

oauth_instance = OAuth1(
oauth["consumer_key"],
rsa_key=oauth["key_cert"],
signature_method=oauth.get("signature_method", SIGNATURE_HMAC_SHA1),
resource_owner_key=oauth["access_token"],
resource_owner_secret=oauth["access_token_secret"],
)
self._session.auth = oauth_instance
try:
from oauthlib.oauth1 import SIGNATURE_RSA as FALLBACK_SHA
except ImportError:
FALLBACK_SHA = DEFAULT_SHA
_logging.debug("Fallback SHA 'SIGNATURE_RSA_SHA1' could not be imported.")

for sha_type in (oauth.get("signature_method"), DEFAULT_SHA, FALLBACK_SHA):
if sha_type is None:
continue
oauth_instance = OAuth1(
oauth["consumer_key"],
rsa_key=oauth["key_cert"],
signature_method=sha_type,
resource_owner_key=oauth["access_token"],
resource_owner_secret=oauth["access_token_secret"],
)
self._session.auth = oauth_instance
try:
self.myself()
_logging.debug(f"OAuth1 succeeded with signature_method={sha_type}")
return # successful response, return with happy session
except JIRAError:
_logging.exception(
f"Failed to create OAuth session with signature_method={sha_type}.\n"
+ "Attempting fallback method(s)."
+ "Consider specifying the signature via oauth['signature_method']."
)
if sha_type is FALLBACK_SHA:
raise # We have exhausted our options, bubble up exception

def _create_kerberos_session(
self,
Expand Down