Changelogs + fmt

renaudhartert-db · renaudhartert-db · commit 6ba5ef9c8cfc · 2025-10-16T17:29:49.000Z
diff --git a/NEXT_CHANGELOG.md b/NEXT_CHANGELOG.md
@@ -1,9 +1,13 @@
 # NEXT CHANGELOG
 
-## Release v0.68.0
+## Release v0.67.1
 
 ### New Features and Improvements
 
+* Add a new config attribute `DATABRICKS_DISABLE_OAUTH_REFRESH_TOKEN` to disable requesting
+  refresh tokens by default (by adding the `offline_access` scope) in OAuth exchanges. This 
+  option does not remove the scope from the user provided scopes if present.
+
 ### Bug Fixes
 
 ### Documentation
diff --git a/databricks-sdk-java/src/main/java/com/databricks/sdk/core/DatabricksConfig.java b/databricks-sdk-java/src/main/java/com/databricks/sdk/core/DatabricksConfig.java
@@ -176,9 +176,9 @@ public class DatabricksConfig {
   private Duration oauthBrowserAuthTimeout;
 
   /**
-   * Disable automatically adding the offline_access scope to the OAuth authentication
-   * request to request refresh tokens. Note that this does not remove the scope if it 
-   * is explicitly provided by the user.
+   * Disable automatically adding the offline_access scope to the OAuth authentication request to
+   * request refresh tokens. Note that this does not remove the scope if it is explicitly provided
+   * by the user.
    */
   @ConfigAttribute(env = "DATABRICKS_DISABLE_OAUTH_REFRESH_TOKEN")
   private Boolean disableOauthRefreshToken;
diff --git a/databricks-sdk-java/src/main/java/com/databricks/sdk/core/oauth/ExternalBrowserCredentialsProvider.java b/databricks-sdk-java/src/main/java/com/databricks/sdk/core/oauth/ExternalBrowserCredentialsProvider.java
@@ -7,9 +7,9 @@
 import java.nio.file.Path;
 import java.util.ArrayList;
 import java.util.HashSet;
+import java.util.List;
 import java.util.Objects;
 import java.util.Optional;
-import java.util.List;
 import java.util.Set;
 import org.slf4j.Logger;
 import org.slf4j.LoggerFactory;
@@ -110,7 +110,7 @@ protected List<String> getScopes(DatabricksConfig config) {
     // Get user-provided scopes and add required default scopes.
     Set<String> scopes = new HashSet<>(config.getScopes());
     // Requesting a refresh token is most of the time the right thing to do to enable
-    // long-lived access to the API. However, some Identity Providers do not support 
+    // long-lived access to the API. However, some Identity Providers do not support
     // refresh tokens.
     if (!config.getDisableOauthRefreshToken()) {
       scopes.add("offline_access");
