Bitbucket API authentication with Python's HTTPBasicAuthHandler
https://stackoverflow.com/questions/2669147
-
28-09-2019 - |
italiano
english
français
española
中国
日本の
العربية
Deutsch
한국어
Português
RussianQuestion
I'm trying to get the list of issues on a private repository using bitbucket's API.
I have confirmed that HTTP Basic authentication works with hurl, but I am unable to authenticate in Python. Adapting the code from this tutorial, I have written the following script.
import cookielib
import urllib2
class API():
api_url = 'http://api.bitbucket.org/1.0/'
def __init__(self, username, password):
self._opener = self._create_opener(username, password)
def _create_opener(self, username, password):
cj = cookielib.LWPCookieJar()
cookie_handler = urllib2.HTTPCookieProcessor(cj)
password_manager = urllib2.HTTPPasswordMgrWithDefaultRealm()
password_manager.add_password(None, self.api_url, username, password)
auth_handler = urllib2.HTTPBasicAuthHandler(password_manager)
opener = urllib2.build_opener(cookie_handler, auth_handler)
return opener
def get_issues(self, username, repository):
query_url = self.api_url + 'repositories/%s/%s/issues/' % (username, repository)
try:
handler = self._opener.open(query_url)
except urllib2.HTTPError, e:
print e.headers
raise e
return handler.read()
api = API(username='my_username', password='XXXXXXXX')
api.get_issues('my_username', 'my_repository') results in:
>>>
Server: nginx/0.7.62
Date: Mon, 19 Apr 2010 16:15:06 GMT
Content-Type: text/plain
Connection: close
Vary: Authorization,Cookie
Content-Length: 9
Traceback (most recent call last):
File "C:/USERS/personal/bitbucket-burndown/bitbucket-api.py", line 29, in <module>
print api.get_issues('my_username', 'my_repository')
File "C:/USERS/personal/bitbucket-burndown/bitbucket-api.py", line 25, in get_issues
raise e
HTTPError: HTTP Error 401: UNAUTHORIZED
api.get_issues('jespern', 'bitbucket') works like a charm.
What's wrong with my code?
Solution
It looks like there is an issue with HTTPBasicAuthHandler. This works:
class API():
api_url = 'http://api.bitbucket.org/1.0/'
def __init__(self, username, password, proxy=None):
encodedstring = base64.encodestring("%s:%s" % (username, password))[:-1]
self._auth = "Basic %s" % encodedstring
self._opener = self._create_opener(proxy)
def _create_opener(self, proxy=None):
cj = cookielib.LWPCookieJar()
cookie_handler = urllib2.HTTPCookieProcessor(cj)
if proxy:
proxy_handler = urllib2.ProxyHandler(proxy)
opener = urllib2.build_opener(cookie_handler, proxy_handler)
else:
opener = urllib2.build_opener(cookie_handler)
return opener
def get_issues(self, username, repository):
query_url = self.api_url + 'repositories/%s/%s/issues/' % (username, repository)
try:
req = urllib2.Request(query_url, None, {"Authorization": self._auth })
handler = self._opener.open(req)
except urllib2.HTTPError, e:
print e.headers
raise e
return json.load(handler)
OTHER TIPS
I don't think there's an error in Python's HTTPBasicAuthHandler. Basic authentication usually follows this process:
- Client makes request without credentials;
- Server responds with 401 error;
- Client resends request with credentials;
- Server responds with content.
In the case of BitBucket, this happens:
- Client makes request without credentials;
- BitBucket responds with list of public repositories.
BitBucket never issues the 401, so Python never sends the credentials.
Have a look at this example for authenticating with BitBucket without using cookies:
Take a look at python-bitbucket, which is a python wrapper for Bitbucket's API. The original library only includes read access, but ericof included authentication and some write access, which I've pulled in and built upon here: https://bitbucket.org/bkmontgomery/python-bitbucket
You could retrieve Issues from a private repo as follows:
import bitbucket
bb = bitbucket.BitBucket(username='your-username', password='secret')
repo = bb.repository('your-username', 'your-private-repo')
issues = repo.issues()
You could try sub-classing HTTPPasswordMgr and overriding the find_user_password() method to see where your code is giving up on finding the password. My guess is that add_password() isn't doing exactly what you'd expect.
