fix: terminate after success for force auth

Author: pfitzseb

src/PkgAuthentication.jl

@@ -118,7 +118,7 @@ function authenticate(;
 
     local state
 
-    for i in 1:tries
+    for _ in 1:tries
         initial = force ? NoAuthentication : NeedAuthentication
 
         state = initial(server, auth_suffix)
@@ -131,7 +131,7 @@ function authenticate(;
             state = GenericError((err, catch_backtrace()))
         end
         if state isa Success
-            continue
+            break
         end
     end
 
@@ -766,7 +766,7 @@ function get_server_dir(
     server_dir_pkg = Pkg.PlatformEngines.get_server_dir(url, server)
     if server_dir_pkgauth != server_dir_pkg
         msg =
-            "The PkgAuthentication server directory is not equal to the Pkg server directory." *
+            "The PkgAuthentication server directory is not equal to the Pkg server directory. " *
             "Unexpected behavior may occur."
         @warn msg server_dir_pkgauth server_dir_pkg
     end

test/authserver.jl

@@ -6,10 +6,14 @@ const CHALLENGE_EXPIRY = 10
 const PORT = 8888
 @enum AuthFlowMode CLASSIC_MODE DEVICE_FLOW_MODE DEVICE_FLOW_NO_SCOPE_MODE
 
-const ID_TOKEN = Random.randstring(100)
 const TOKEN = Ref(Dict())
 const MODE = Ref(CLASSIC_MODE)
 
+const TOKEN_COUNTER = Ref(0)
+function id_token()
+    return string(TOKEN_COUNTER[] += 1)
+end
+
 challenge_response_map = Dict()
 challenge_timeout = Dict()
 response_challenge_map = Dict()
@@ -42,8 +46,8 @@ function response_handler(req)
     TOKEN[] = Dict(
         "user_name" => "firstname lastname",
         "user_email" => "[email protected]",
-        "id_token" => "full-" * ID_TOKEN,
-        "access_token" => "full-" * ID_TOKEN,
+        "id_token" => "full-" * id_token(),
+        "access_token" => "full-" * id_token(),
         "refresh_token" => refresh_token,
         "refresh_url" => "http://localhost:$(PORT)/auth/renew/token.toml/v2/",
         "expires_in" => EXPIRY,
@@ -89,8 +93,8 @@ function renew_handler(req)
 
     TOKEN[]["refresh_token"] = Random.randstring(10)
     TOKEN[]["expires_at"] = ceil(Int, time() + EXPIRY)
-    TOKEN[]["id_token"] = "refresh-" * ID_TOKEN
-    TOKEN[]["access_token"] = "refresh-" * ID_TOKEN
+    TOKEN[]["id_token"] = "refresh-" * id_token()
+    TOKEN[]["access_token"] = "refresh-" * id_token()
 
     return HTTP.Response(200, sprint(TOML.print, TOKEN[]))
 end
@@ -167,11 +171,11 @@ function auth_device(req)
     end
     authenticated[device_code] = true
     refresh_token = Random.randstring(10)
-    TOKEN[]["access_token"] = "device-$ID_TOKEN"
+    TOKEN[]["access_token"] = "device-$(id_token())"
     TOKEN[]["token_type"] = "bearer"
     TOKEN[]["expires_in"] = EXPIRY
     TOKEN[]["refresh_token"] = refresh_token
-    TOKEN[]["id_token"] = "device-$ID_TOKEN"
+    TOKEN[]["id_token"] = "device-$(id_token())"
     return HTTP.Response(200)
 end
 

test/tests.jl

@@ -175,4 +175,24 @@ end
     @test result == (true, true)
 end
 
+@testset "no retries" begin
+    delete_token()
+
+    success = PkgAuthentication.authenticate(test_pkg_server)
+    @test success isa PkgAuthentication.Success
+    m = match(r"^\w+\-(\d+)$", success.token["id_token"])
+    @test !isnothing(m)
+    id1 = tryparse(Int, m.captures[1])
+    @test id1 !== nothing
+
+    success2 = PkgAuthentication.authenticate(test_pkg_server)
+    @test success2 isa PkgAuthentication.Success
+    m2 = match(r"^\w+\-(\d+)$", success2.token["id_token"])
+    @test !isnothing(m2)
+    id2 = tryparse(Int, m2.captures[1])
+
+    @test id2 !== nothing
+    @test id2 == id1 + 1
+end
+
 kill(p)