Bitbucket API authentication with Python's HTTPBasicAuthHandler
Asked Answered
H

4

3

I'm trying to get the list of issues on a private repository using bitbucket's API.

I have confirmed that HTTP Basic authentication works with hurl, but I am unable to authenticate in Python. Adapting the code from this tutorial, I have written the following script.

import cookielib
import urllib2

class API():
    api_url = 'http://api.bitbucket.org/1.0/'

    def __init__(self, username, password):
        self._opener = self._create_opener(username, password)

    def _create_opener(self, username, password):
        cj = cookielib.LWPCookieJar()
        cookie_handler = urllib2.HTTPCookieProcessor(cj)
        password_manager = urllib2.HTTPPasswordMgrWithDefaultRealm()
        password_manager.add_password(None, self.api_url, username, password)
        auth_handler = urllib2.HTTPBasicAuthHandler(password_manager)
        opener = urllib2.build_opener(cookie_handler, auth_handler)
        return opener

    def get_issues(self, username, repository):
        query_url = self.api_url + 'repositories/%s/%s/issues/' % (username, repository)
        try:
            handler = self._opener.open(query_url)
        except urllib2.HTTPError, e:
            print e.headers
            raise e
        return handler.read()

api = API(username='my_username', password='XXXXXXXX')

api.get_issues('my_username', 'my_repository') results in:

>>> 
Server: nginx/0.7.62
Date: Mon, 19 Apr 2010 16:15:06 GMT
Content-Type: text/plain
Connection: close
Vary: Authorization,Cookie
Content-Length: 9

Traceback (most recent call last):
  File "C:/USERS/personal/bitbucket-burndown/bitbucket-api.py", line 29, in <module>
    print api.get_issues('my_username', 'my_repository')
  File "C:/USERS/personal/bitbucket-burndown/bitbucket-api.py", line 25, in get_issues
    raise e
HTTPError: HTTP Error 401: UNAUTHORIZED

api.get_issues('jespern', 'bitbucket') works like a charm.

What's wrong with my code?

Humanitarian answered 19/4, 2010 at 16:36 Comment(0)
H
5

It looks like there is an issue with HTTPBasicAuthHandler. This works:

class API():
    api_url = 'http://api.bitbucket.org/1.0/'

    def __init__(self, username, password, proxy=None):
        encodedstring = base64.encodestring("%s:%s" % (username, password))[:-1]
        self._auth = "Basic %s" % encodedstring
        self._opener = self._create_opener(proxy)

    def _create_opener(self, proxy=None):
        cj = cookielib.LWPCookieJar()
        cookie_handler = urllib2.HTTPCookieProcessor(cj)
        if proxy:
            proxy_handler = urllib2.ProxyHandler(proxy)
            opener = urllib2.build_opener(cookie_handler, proxy_handler)
        else:
            opener = urllib2.build_opener(cookie_handler)
        return opener

    def get_issues(self, username, repository):
        query_url = self.api_url + 'repositories/%s/%s/issues/' % (username, repository)
        try:
            req = urllib2.Request(query_url, None, {"Authorization": self._auth })
            handler = self._opener.open(req)
        except urllib2.HTTPError, e:
            print e.headers
            raise e
        return json.load(handler)
Humanitarian answered 19/4, 2010 at 18:40 Comment(0)
T
2

I don't think there's an error in Python's HTTPBasicAuthHandler. Basic authentication usually follows this process:

  • Client makes request without credentials;
  • Server responds with 401 error;
  • Client resends request with credentials;
  • Server responds with content.

In the case of BitBucket, this happens:

  • Client makes request without credentials;
  • BitBucket responds with list of public repositories.

BitBucket never issues the 401, so Python never sends the credentials.

Have a look at this example for authenticating with BitBucket without using cookies:

Tameratamerlane answered 14/2, 2011 at 16:15 Comment(0)
C
1

Take a look at python-bitbucket, which is a python wrapper for Bitbucket's API. The original library only includes read access, but ericof included authentication and some write access, which I've pulled in and built upon here: https://bitbucket.org/bkmontgomery/python-bitbucket

You could retrieve Issues from a private repo as follows:

import bitbucket

bb = bitbucket.BitBucket(username='your-username', password='secret')
repo = bb.repository('your-username', 'your-private-repo')
issues = repo.issues()
Clothier answered 21/5, 2011 at 5:59 Comment(0)
P
0

You could try sub-classing HTTPPasswordMgr and overriding the find_user_password() method to see where your code is giving up on finding the password. My guess is that add_password() isn't doing exactly what you'd expect.

Pantheism answered 19/4, 2010 at 17:47 Comment(1)
I have tried this and it looks like find_user_password() was not being called, but I could not understand why. Thanks anyway :)Humanitarian

© 2022 - 2024 — McMap. All rights reserved.