feat(auth): OAuth/PCKE callers #470

Integralist · 2023-09-04T12:56:30Z

In a future world, callers (such as the Fastly CLI) will authenticate using OAuth (specifically the PKCE extension flow) and so the token that is provided will need to be used with the Authentication HTTP request header.

phamann · 2023-11-09T11:47:15Z

fastly/request.go

@@ -54,6 +55,7 @@ func (c *Client) RawRequest(verb, p string, ro *RequestOptions) (*http.Request,
 	// Set the API key.
 	if len(c.apiKey) > 0 {
 		request.Header.Set(APIKeyHeader, c.apiKey)
+		request.Header.Set("Authorization", fmt.Sprintf("Bearer %s", c.apiKey))


Should this be c.apiKey? That would set the value of the bearer to the API token and not the desired OAuth JWT access_token,

Integralist · 2023-11-09T14:52:58Z

@phamann I've pinged you internally to explain my thought process. I'm going to close this PR as I think it's premature.

feat(auth): OAuth/PCKE callers

84f1742

Integralist added the enhancement New feature or request label Sep 4, 2023

Integralist requested a review from phamann September 4, 2023 12:56

Integralist mentioned this pull request Sep 13, 2023

feat: support SSO (Single Sign-On) fastly/cli#1010

Merged

phamann requested changes Nov 9, 2023

View reviewed changes

Integralist closed this Nov 9, 2023

Integralist deleted the integralist/bearer branch November 9, 2023 14:53

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

feat(auth): OAuth/PCKE callers #470

feat(auth): OAuth/PCKE callers #470

Integralist commented Sep 4, 2023 •

edited

Loading

phamann Nov 9, 2023

Integralist commented Nov 9, 2023

feat(auth): OAuth/PCKE callers #470

feat(auth): OAuth/PCKE callers #470

Conversation

Integralist commented Sep 4, 2023 • edited Loading

phamann Nov 9, 2023

Choose a reason for hiding this comment

Integralist commented Nov 9, 2023

Integralist commented Sep 4, 2023 •

edited

Loading