A few bugs in the Oauth Flow

Hi! Thanks again for the library. When trying to use the oath flow, I noticed a few bugs that I had to patch locally. I can upstream them here if you want, but its a bit of a refactor. They're listed below.

* The `OauthApi`  in the `AuthenticatedXrpcBlueskyApi` [shares the same `HttpClient`](https://github.com/christiandeange/ozone/blob/1015f1674e2a2578e6e903725d7beaac9ee64593/bluesky/src/commonMain/kotlin/sh/christian/ozone/api/AuthenticatedXrpcBlueskyApi.kt#L170) as the `AuthPlugin`. This causes circular loops for oauth flows when `use_dpop_nonce` is present in response headers.
* The `OauthApi` cannot parse the `AtpException` json response bc it's [private json](https://github.com/christiandeange/ozone/blob/1015f1674e2a2578e6e903725d7beaac9ee64593/oauth/src/commonMain/kotlin/sh/christian/ozone/oauth/OAuthApi.kt#L57) requires `explicitNulls`. It should probably inherit content negotiation from the `HttpClient` passed to it, and not set its own.
* The error response header when an oauth token lapses seems to be `invalid_token` not `ExpiredToken`.

I ended up going with an explicit [`SessionManager`](https://github.com/tunjid/heron/blob/main/data/core/src/commonMain/kotlin/com/tunjid/heron/data/network/SessionManager.kt#L90) to separate a few concerns.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

A few bugs in the Oauth Flow #21

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

A few bugs in the Oauth Flow #21

Description

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions