Add optional API user support for token authentication

- Add user field to apiTokenAuth struct - Add WithAPITokenUser(token, user) method for custom username - Default to "jsonrpc" when no user specified (backward compatible) - Add tests for custom user and empty user scenarios Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2026-01-23 17:55:31 +01:00 · 2026-01-23 17:55:31 +01:00 · 10e2ecf47e
commit 10e2ecf47e
parent ef7bd74e4a
4 changed files with 93 additions and 2 deletions
--- a/auth_test.go
+++ b/auth_test.go
@ -43,6 +43,77 @@ func TestAPITokenAuth_Apply(t *testing.T) {
 	}
 }

+func TestAPITokenAuth_CustomUser(t *testing.T) {
+	server := httptest.NewServer(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+		username, password, ok := r.BasicAuth()
+		if !ok {
+			t.Error("expected Basic Auth header")
+			w.WriteHeader(http.StatusUnauthorized)
+			return
+		}
+		if username != "custom-user" {
+			t.Errorf("expected username=custom-user, got %s", username)
+		}
+		if password != "my-api-token-12345" {
+			t.Errorf("expected password=my-api-token-12345, got %s", password)
+		}
+
+		var req JSONRPCRequest
+		json.NewDecoder(r.Body).Decode(&req)
+		resp := JSONRPCResponse{
+			JSONRPC: "2.0",
+			ID:      req.ID,
+			Result:  json.RawMessage(`true`),
+		}
+		json.NewEncoder(w).Encode(resp)
+	}))
+	defer server.Close()
+
+	client := NewClient(server.URL).WithAPITokenUser("my-api-token-12345", "custom-user")
+
+	var result bool
+	err := client.call(context.Background(), "getVersion", nil, &result)
+	if err != nil {
+		t.Fatalf("unexpected error: %v", err)
+	}
+}
+
+func TestAPITokenAuth_EmptyUserDefaultsToJsonrpc(t *testing.T) {
+	server := httptest.NewServer(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+		username, password, ok := r.BasicAuth()
+		if !ok {
+			t.Error("expected Basic Auth header")
+			w.WriteHeader(http.StatusUnauthorized)
+			return
+		}
+		if username != "jsonrpc" {
+			t.Errorf("expected username=jsonrpc (default), got %s", username)
+		}
+		if password != "my-api-token-12345" {
+			t.Errorf("expected password=my-api-token-12345, got %s", password)
+		}
+
+		var req JSONRPCRequest
+		json.NewDecoder(r.Body).Decode(&req)
+		resp := JSONRPCResponse{
+			JSONRPC: "2.0",
+			ID:      req.ID,
+			Result:  json.RawMessage(`true`),
+		}
+		json.NewEncoder(w).Encode(resp)
+	}))
+	defer server.Close()
+
+	// Using WithAPITokenUser with empty user should default to "jsonrpc"
+	client := NewClient(server.URL).WithAPITokenUser("my-api-token-12345", "")
+
+	var result bool
+	err := client.call(context.Background(), "getVersion", nil, &result)
+	if err != nil {
+		t.Fatalf("unexpected error: %v", err)
+	}
+}
+
 func TestBasicAuth_Apply(t *testing.T) {
 	server := httptest.NewServer(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
 		username, password, ok := r.BasicAuth()
@ -125,6 +196,11 @@ func TestClient_FluentAuthConfiguration(t *testing.T) {
 	if client != client3 {
 		t.Error("WithBasicAuth should return the same client instance")
 	}
+
+	client4 := client.WithAPITokenUser("token", "custom-user")
+	if client != client4 {
+		t.Error("WithAPITokenUser should return the same client instance")
+	}
 }

 func TestAuthOverwrite(t *testing.T) {