Skip to content

feat(snapshots): Authenticate with Objectstore#3258

Open
lcian wants to merge 5 commits intomasterfrom
lcian/objectstore-auth-token
Open

feat(snapshots): Authenticate with Objectstore#3258
lcian wants to merge 5 commits intomasterfrom
lcian/objectstore-auth-token

Conversation

@lcian
Copy link
Copy Markdown
Member

@lcian lcian commented Apr 9, 2026
edited
Loading

Bump objectstore-client to 0.1.6 and use the dedicated auth token now returned by ObjectstoreUploadOptions.
.token in the newest version of Objectstore client passes it in the X-Os-Auth header.
The Sentry auth token is still passed through the standard Authorization header for auth with Django.

#skip-changelog

@lcian @claude
feat(snapshots): Support dedicated objectstore auth token
35d2923 
Bump objectstore-client to 0.1.6 and use the dedicated auth token
from ObjectstoreUploadOptions when available, instead of always reusing
the Sentry auth token. The Sentry token is now passed as a Bearer
authorization header via configure_reqwest for request verification.

This resolves the TODO in the previous implementation and decouples
objectstore authentication from Sentry authentication.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
@lcian lcian changed the title feat(snapshots): Support dedicated objectstore auth token feat(snapshots): Authenticate with Objectstore Apr 9, 2026
@github-actions
Copy link
Copy Markdown
Contributor

github-actions bot commented Apr 9, 2026
edited
Loading

Messages
📖 Do not forget to update Sentry-docs with your feature once the pull request gets approved.

Generated by 🚫 dangerJS against 96ab303

@lcian lcian added the skip-changelog Apply this label to PRs that do not contain any user-facing changes label Apr 9, 2026
lcian and others added 2 commits April 9, 2026 10:36
@lcian @claude
fix(snapshots): Await send() before calling error_for_failures
0dbd02b 
The objectstore-client 0.1.6 upgrade changed send() to return a
Future, so it needs to be awaited before calling error_for_failures().
Also add changelog entry for the PR.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
@lcian @claude
ref: Remove changelog entry
d40bd12 
Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
@lcian lcian marked this pull request as ready for review April 9, 2026 08:44
@lcian lcian requested review from a team and szokeasaurusrex as code owners April 9, 2026 08:44
sentry[bot]
sentry bot reviewed Apr 9, 2026
View reviewed changes
lcian and others added 2 commits April 9, 2026 10:49
@lcian @claude
ref(api): Use SecretString for objectstore auth token
b0b0a6e 
Enable the serde feature on secrecy and use SecretString instead of
plain String for the auth_token field in ObjectstoreUploadOptions. This
prevents accidental logging of the token.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
@lcian @claude
style(api): Import SecretString instead of using inline path
96ab303 
Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@sentry sentry[bot] sentry[bot] left review comments

@szokeasaurusrex szokeasaurusrex Awaiting requested review from szokeasaurusrex szokeasaurusrex is a code owner

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

skip-changelog Apply this label to PRs that do not contain any user-facing changes

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@lcian