Handle ERR-INVALID-AUTH responses from Conduit in patch workflow

Summary: Conduit responds to requests with either `ERR-INVALID-SESSION` or `ERR-INVALID-AUTH` if the request wasn't sufficiently authenticated. Arcanist's `patch` workflow can automatically attempt to recover from situations in which Conduit responds to unauthenticated requests with `ERR-INVALID-SESSION` (by resending an authenticated version of the request), but not `ERR-INVALID-AUTH` - recover from `ERR-INVALID-AUTH` in the same way. Closes T15333 Test Plan: The company I work for has been running a local clone of Arcanist containing this change in production for over 18 months now with no problems. Reviewers: #blessed_committers, O1 Blessed Committers, valerio.bozzolan, avivey Reviewed By: #blessed_committers, O1 Blessed Committers, valerio.bozzolan, avivey Subscribers: speck, tobiaswiese, valerio.bozzolan, Matthew, Cigaryno Maniphest Tasks: T15333 Differential Revision: https://we.phorge.it/D25178
2024-11-24 15:52:40 +01:00 · 2021-09-13 13:19:15 +01:00 · 2021-09-13 13:19:15 +01:00 · 12484acfc8
commit 12484acfc8
parent 82d1abd4ed
1 changed files with 2 additions and 1 deletions
--- a/src/workflow/ArcanistPatchWorkflow.php
+++ b/src/workflow/ArcanistPatchWorkflow.php
@ -391,7 +391,8 @@ EOTEXT
          break;
      }
    } catch (ConduitClientException $ex) {
-      if ($ex->getErrorCode() == 'ERR-INVALID-SESSION') {
+      if ($ex->getErrorCode() == 'ERR-INVALID-SESSION' ||
+           $ex->getErrorCode() == 'ERR-INVALID-AUTH') {
        // Phabricator is not configured to allow anonymous access to
        // Differential.
        $this->authenticateConduit();