Update expiry threshold and field names

Author: Claimundefine

src/confluent_kafka/schema_registry/schema_registry_client.py

@@ -71,9 +71,10 @@ def __init__(self, client_id: str, client_secret: str, scope: str, token_endpoin
         self.max_retries = max_retries
         self.retries_wait_ms = retries_wait_ms
         self.retries_max_wait_ms = retries_max_wait_ms
+        self.token_expiry_threshold = 0.8
 
     def token_expired(self):
-        expiry_window = self.token['expires_in'] * 0.7
+        expiry_window = self.token['expires_in'] * self.token_expiry_threshold
 
         return self.token['expires_at'] < time.time() + expiry_window
 
@@ -206,25 +207,24 @@ def __init__(self, conf: dict):
             self.retries_max_wait_ms = retries_max_wait_ms
 
         self.oauth_client = None
-        self.bearer_auth_credentials_source = None
-        if 'bearer.auth.credentials.source' in conf_copy:
+        self.bearer_auth_credentials_source = conf_copy.pop('bearer.auth.credentials.source', None)
+        if self.bearer_auth_credentials_source is not None:
             self.auth = None
-            headers = ['logical.cluster', 'identity.pool.id']
+            headers = ['bearer.auth.logical.cluster', 'bearer.auth.identity.pool.id']
             missing_headers = [header for header in headers if header not in conf_copy]
             if missing_headers:
                 raise ValueError("Missing required bearer configuration properties: {}"
                                  .format(", ".join(missing_headers)))
 
-            self.logical_cluster = conf_copy.pop('logical.cluster')
+            self.logical_cluster = conf_copy.pop('bearer.auth.logical.cluster')
             if not isinstance(self.logical_cluster, str):
                 raise TypeError("logical cluster must be a str, not " + str(type(self.logical_cluster)))
 
-            self.identity_pool_id = conf_copy.pop('identity.pool.id')
+            self.identity_pool_id = conf_copy.pop('bearer.auth.identity.pool.id')
             if not isinstance(self.identity_pool_id, str):
                 raise TypeError("identity pool id must be a str, not " + str(type(self.identity_pool_id)))
 
-            if conf_copy['bearer.auth.credentials.source'] == 'OAUTHBEARER':
-                self.bearer_auth_credentials_source = conf_copy.pop('bearer.auth.credentials.source')
+            if self.bearer_auth_credentials_source == 'OAUTHBEARER':
                 properties_list = ['bearer.auth.client.id', 'bearer.auth.client.secret', 'bearer.auth.client.scope',
                                    'bearer.auth.issuer.endpoint.url']
                 missing_properties = [prop for prop in properties_list if prop not in conf_copy]
@@ -252,7 +252,7 @@ def __init__(self, conf: dict):
                 self.oauth_client = _OAuthClient(self.client_id, self.client_secret, self.scope, self.token_endpoint,
                                                  self.max_retries, self.retries_wait_ms, self.retries_max_wait_ms)
 
-            elif conf_copy['bearer.auth.credentials.source'] == 'STATIC_TOKEN':
+            elif self.bearer_auth_credentials_source == 'STATIC_TOKEN':
                 if 'bearer.auth.token' not in conf_copy:
                     raise ValueError("Missing bearer.auth.token")
                 self.bearer_token = conf_copy.pop('bearer.auth.token')

tests/schema_registry/test_config.py

@@ -127,8 +127,8 @@ def test_bearer_config():
 def test_oauth_bearer_config_missing():
     conf = {'url': TEST_URL,
             'bearer.auth.credentials.source': "OAUTHBEARER",
-            'logical.cluster': TEST_CLUSTER,
-            'identity.pool.id': TEST_POOL}
+            'bearer.auth.logical.cluster': TEST_CLUSTER,
+            'bearer.auth.identity.pool.id': TEST_POOL}
 
     with pytest.raises(ValueError, match=r"Missing required OAuth configuration properties: (.*)"):
         SchemaRegistryClient(conf)
@@ -137,24 +137,24 @@ def test_oauth_bearer_config_missing():
 def test_oauth_bearer_config_invalid():
     conf = {'url': TEST_URL,
             'bearer.auth.credentials.source': "OAUTHBEARER",
-            'logical.cluster': TEST_CLUSTER,
-            'identity.pool.id': 1}
+            'bearer.auth.logical.cluster': TEST_CLUSTER,
+            'bearer.auth.identity.pool.id': 1}
 
     with pytest.raises(TypeError, match=r"identity pool id must be a str, not (.*)"):
         SchemaRegistryClient(conf)
 
     conf = {'url': TEST_URL,
             'bearer.auth.credentials.source': "OAUTHBEARER",
-            'logical.cluster': 1,
-            'identity.pool.id': TEST_POOL}
+            'bearer.auth.logical.cluster': 1,
+            'bearer.auth.identity.pool.id': TEST_POOL}
 
     with pytest.raises(TypeError, match=r"logical cluster must be a str, not (.*)"):
         SchemaRegistryClient(conf)
 
     conf = {'url': TEST_URL,
             'bearer.auth.credentials.source': "OAUTHBEARER",
-            'logical.cluster': TEST_CLUSTER,
-            'identity.pool.id': TEST_POOL,
+            'bearer.auth.logical.cluster': TEST_CLUSTER,
+            'bearer.auth.identity.pool.id': TEST_POOL,
             'bearer.auth.client.id': 1,
             'bearer.auth.client.secret': TEST_USER_PASSWORD,
             'bearer.auth.client.scope': TEST_SCOPE,
@@ -165,8 +165,8 @@ def test_oauth_bearer_config_invalid():
 
     conf = {'url': TEST_URL,
             'bearer.auth.credentials.source': "OAUTHBEARER",
-            'logical.cluster': TEST_CLUSTER,
-            'identity.pool.id': TEST_POOL,
+            'bearer.auth.logical.cluster': TEST_CLUSTER,
+            'bearer.auth.identity.pool.id': TEST_POOL,
             'bearer.auth.client.id': TEST_USERNAME,
             'bearer.auth.client.secret': 1,
             'bearer.auth.client.scope': TEST_SCOPE,
@@ -177,8 +177,8 @@ def test_oauth_bearer_config_invalid():
 
     conf = {'url': TEST_URL,
             'bearer.auth.credentials.source': "OAUTHBEARER",
-            'logical.cluster': TEST_CLUSTER,
-            'identity.pool.id': TEST_POOL,
+            'bearer.auth.logical.cluster': TEST_CLUSTER,
+            'bearer.auth.identity.pool.id': TEST_POOL,
             'bearer.auth.client.id': TEST_USERNAME,
             'bearer.auth.client.secret': TEST_USER_PASSWORD,
             'bearer.auth.client.scope': 1,
@@ -189,8 +189,8 @@ def test_oauth_bearer_config_invalid():
 
     conf = {'url': TEST_URL,
             'bearer.auth.credentials.source': "OAUTHBEARER",
-            'logical.cluster': TEST_CLUSTER,
-            'identity.pool.id': TEST_POOL,
+            'bearer.auth.logical.cluster': TEST_CLUSTER,
+            'bearer.auth.identity.pool.id': TEST_POOL,
             'bearer.auth.client.id': TEST_USERNAME,
             'bearer.auth.client.secret': TEST_USER_PASSWORD,
             'bearer.auth.client.scope': TEST_SCOPE,
@@ -203,8 +203,8 @@ def test_oauth_bearer_config_invalid():
 def test_oauth_bearer_config_valid():
     conf = {'url': TEST_URL,
             'bearer.auth.credentials.source': "OAUTHBEARER",
-            'logical.cluster': TEST_CLUSTER,
-            'identity.pool.id': TEST_POOL,
+            'bearer.auth.logical.cluster': TEST_CLUSTER,
+            'bearer.auth.identity.pool.id': TEST_POOL,
             'bearer.auth.client.id': TEST_USERNAME,
             'bearer.auth.client.secret': TEST_USER_PASSWORD,
             'bearer.auth.client.scope': TEST_SCOPE,
@@ -223,8 +223,8 @@ def test_oauth_bearer_config_valid():
 def test_static_bearer_config():
     conf = {'url': TEST_URL,
             'bearer.auth.credentials.source': 'STATIC_TOKEN',
-            'logical.cluster': 'lsrc',
-            'identity.pool.id': 'pool_id'}
+            'bearer.auth.logical.cluster': 'lsrc',
+            'bearer.auth.identity.pool.id': 'pool_id'}
 
     with pytest.raises(ValueError, match='Missing bearer.auth.token'):
         SchemaRegistryClient(conf)