adutra opened a new pull request, #14241: URL: https://github.com/apache/iceberg/pull/14241
As suggested [on the mailing list](https://lists.apache.org/thread/g3kbckxsjgb83ofh0n2p4rhjroff9yj0) and discussed at the last catalog sync, this PR introduces support for auth challenges in the `AuthSession` API. Whenever an auth session provokes a 401 response, it can now decide whether it makes sense to retry the request with renewed credentials. Existing implementations of `AuthSession` were modified to take the following decisions: * `NoopAuthManager`: never retries * `BasicAuthManager`: never retries * `RESTSigV4AuthManager`: never retries * `GoogleAuthManager`: attempts to refresh the credentials, if the challenge is `"Bearer"` * `OAuth2Manager`: attempts to refresh the credentials, if the challenge is `Bearer` and the `error` parameter is `invalid_token` (see [RFC 6750](https://datatracker.ietf.org/doc/html/rfc6750#section-3.1)) \cc @danielcweeks @rdblue @talatuyarer -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected] --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
