Merge pull request #1728 from pi-hole/tweak/query_auth

Add authentication via query string
2025-12-20 04:18:25 +00:00 · 2024-01-07 07:50:58 +01:00
parent 34464923cf a96c283c0c
commit 933e6f605f
2 changed files with 26 additions and 3 deletions
--- a/test/api/libs/FTLAPI.py
+++ b/test/api/libs/FTLAPI.py
@@ -15,6 +15,7 @@ import requests
 from typing import List
 import json
 from hashlib import sha256
+import urllib.parse

 url = "http://pi.hole/api/auth"

@@ -23,6 +24,7 @@ class AuthenticationMethods(Enum):
 	HEADER = 1
 	BODY = 2
 	COOKIE = 3
+	QUERY_STR = 4

 # Class to query the FTL API
 class FTLAPI():
@@ -103,13 +105,18 @@ class FTLAPI():
 	def GET(self, uri: str, params: List[str] = [], expected_mimetype: str = "application/json", authenticate: AuthenticationMethods = AuthenticationMethods.BODY):
 		self.errors = []
 		try:
+			# Get json_data, headers and cookies
+			json_data, headers, cookies = self.get_jsondata_headers_cookies(authenticate)
+
+			# Add session ID to the request if authenticating via query string
+			if self.auth_method == AuthenticationMethods.QUERY_STR.name:
+				encoded_sid = urllib.parse.quote(self.session['sid'], safe='')
+				params.append("sid=" + encoded_sid)
+
 			# Add parameters to the URI (if any)
 			if len(params) > 0:
 				uri = uri + "?" + "&".join(params)

-			# Get json_data, headers and cookies
-			json_data, headers, cookies = self.get_jsondata_headers_cookies(authenticate)
-
 			if self.verbose:
 				print("GET " + self.api_url + uri + " with json_data: " + json.dumps(json_data))