From 583c62fabb944af81fd3fdf0da31cd3ba5d51006 Mon Sep 17 00:00:00 2001
From: Adam Williamson <awilliam@redhat.com>
Date: Thu, 1 Aug 2024 00:04:20 -0700
Subject: [PATCH] Use authlib #662 branch to fix token introspection endpoint
 (#219) (#223)

Signed-off-by: Adam Williamson <awilliam@redhat.com>
---
 Dockerfile     |  1 +
 poetry.lock    | 18 +++++++++++-------
 pyproject.toml |  6 ++++++
 3 files changed, 18 insertions(+), 7 deletions(-)

diff --git a/Dockerfile b/Dockerfile
index 461ce2df..dba8dc7c 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -10,6 +10,7 @@ RUN set -exo pipefail \
         --disablerepo=* \
         --enablerepo=fedora,updates \
         gcc \
+        git-core \
         krb5-devel \
         openldap-devel \
         python3 \
diff --git a/poetry.lock b/poetry.lock
index f31b51ea..0290f565 100644
--- a/poetry.lock
+++ b/poetry.lock
@@ -1,4 +1,4 @@
-# This file is automatically @generated by Poetry 1.8.3 and should not be changed by hand.
+# This file is automatically @generated by Poetry 1.7.1 and should not be changed by hand.
 
 [[package]]
 name = "alabaster"
@@ -80,19 +80,23 @@ tests-mypy = ["mypy (>=1.6)", "pytest-mypy-plugins"]
 tests-no-zope = ["attrs[tests-mypy]", "cloudpickle", "hypothesis", "pympler", "pytest (>=4.3.0)", "pytest-xdist[psutil]"]
 
 [[package]]
-name = "authlib"
+name = "Authlib"
 version = "1.3.1"
 description = "The ultimate Python library in building OAuth and OpenID Connect servers and clients."
 optional = false
 python-versions = ">=3.8"
-files = [
-    {file = "Authlib-1.3.1-py2.py3-none-any.whl", hash = "sha256:d35800b973099bbadc49b42b256ecb80041ad56b7fe1216a362c7943c088f377"},
-    {file = "authlib-1.3.1.tar.gz", hash = "sha256:7ae843f03c06c5c0debd63c9db91f9fda64fa62a42a77419fa15fbb7e7a58917"},
-]
+files = []
+develop = false
 
 [package.dependencies]
 cryptography = "*"
 
+[package.source]
+type = "git"
+url = "https://github.com/AdamWill/authlib.git"
+reference = "oauth2-fix-introspect-endpoint"
+resolved_reference = "7cadb793637dc2ddd74da989eda727485d952ce7"
+
 [[package]]
 name = "automat"
 version = "22.10.0"
@@ -2932,4 +2936,4 @@ test = ["mock", "pytest", "pytest-cov"]
 [metadata]
 lock-version = "2.0"
 python-versions = ">=3.8,<3.13"
-content-hash = "1df63f7713e001dfa07e6c0120a1979c1a768d6975eaa775565b55582bf03c4b"
+content-hash = "d2cdb0c334ca8b1fbea31eb6fbe9d05d0ba6f47eafda2e30b4f0c9694d9cff16"
diff --git a/pyproject.toml b/pyproject.toml
index d09f42d7..5325ed49 100644
--- a/pyproject.toml
+++ b/pyproject.toml
@@ -38,6 +38,12 @@ include = [
 [tool.poetry.dependencies]
 python = ">=3.8,<3.13"
 
+# https://github.com/lepture/authlib/pull/662
+# fix authlib to use correct auth method for token introspection
+# fixes submitting waivers with Bodhi. remove this when there is
+# a fixed stable authlib release
+authlib = {git = "https://github.com/AdamWill/authlib.git", branch = "oauth2-fix-introspect-endpoint"}
+
 flask = "^2.2.5"
 flask-oidc = "^2.2.0"
 flask-session = ">=0.6.0"