Use dedicated httpx Client

[jschlyter]

• Use a dedicated httpx.Client for each API
• Use shared httpx.Client when testing credentials, but remove all cookies after testing

Updates #272

Summary by CodeRabbit

• New Features

  • Introduced an asynchronous logout functionality for users.
  • Added a new constant for OIDC cookies to enhance API configuration.

• Bug Fixes

  • Improved error handling during credential validation and API client updates.

• Documentation

  • Updated documentation to reflect changes in authentication attributes and methods.

• Refactor

  • Streamlined the HTTP client creation process and restructured error handling in the Polestar API integration.

[coderabbitai]

Walkthrough

The pull request introduces enhancements to the Polestar API integration, focusing on improving error handling, resource management, and authentication processes. Changes span multiple files in the custom components, including modifications to the configuration flow, HTTP client creation, authentication mechanisms, and the addition of a logout functionality. The updates aim to make the API interaction more robust and provide better control over session management.

Changes

File	Change Summary
custom_components/polestar_api/config_flow.py	Enhanced error handling in _test_credentials method with improved resource management and try/finally block for API client logout
custom_components/polestar_api/polestar.py	Updated HTTP client creation method and refined error handling in async_update method with specific exception logging
custom_components/polestar_api/pypolestar/auth.py	Added async_logout method, renamed authentication-related attributes, and updated attribute usages
custom_components/polestar_api/pypolestar/const.py	Added new constant OIDC_COOKIES for tracking authentication cookies
custom_components/polestar_api/pypolestar/polestar.py	Introduced async_logout method in PolestarApi class

Sequence Diagram

sequenceDiagram
    participant User
    participant ConfigFlow
    participant PolestarApi
    participant PolestarAuth

    User->>ConfigFlow: Initiate Credential Test
    ConfigFlow->>PolestarApi: Create Client
    PolestarApi->>PolestarAuth: Authenticate
    alt Successful Authentication
        PolestarApi-->>ConfigFlow: Validation Success
    else Authentication Failure
        PolestarApi->>PolestarAuth: async_logout
        PolestarAuth-->>ConfigFlow: Return Error
    end
    ConfigFlow-->>User: Configuration Result

Loading

Poem

🚗 A Rabbit's Ode to Polestar's Might 🐰

With logout clean and errors tight,
Our API now dances with delight!
Cookies cleared, sessions neat,
Authentication's become a treat!
Hop along, code so bright! 🌟

---

Thank you for using CodeRabbit. We offer it for free to the OSS community and would appreciate your support in helping us grow. If you find it useful, would you consider giving us a shout-out on your favorite social media?

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

🪧 Tips

Chat

There are 3 ways to chat with CodeRabbit:

• Review comments: Directly reply to a review comment made by CodeRabbit. Example:
  • I pushed a fix in commit <commit_id>, please review it.
  • Generate unit testing code for this file.
  • Open a follow-up GitHub issue for this discussion.
• Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query. Examples:
  • @coderabbitai generate unit testing code for this file.
  • @coderabbitai modularize this function.
• PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
  • @coderabbitai gather interesting stats about this repository and render them as a table. Additionally, render a pie chart showing the language distribution in the codebase.
  • @coderabbitai read src/utils.ts and generate unit testing code.
  • @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.
  • @coderabbitai help me debug CodeRabbit configuration file.

Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments.

CodeRabbit Commands (Invoked using PR comments)

• @coderabbitai pause to pause the reviews on a PR.
• @coderabbitai resume to resume the paused reviews.
• @coderabbitai review to trigger an incremental review. This is useful when automatic reviews are disabled for the repository.
• @coderabbitai full review to do a full review from scratch and review all the files again.
• @coderabbitai summary to regenerate the summary of the PR.
• @coderabbitai generate docstrings to generate docstrings for this PR. (Beta)
• @coderabbitai resolve resolve all the CodeRabbit review comments.
• @coderabbitai configuration to show the current CodeRabbit configuration for the repository.
• @coderabbitai help to get help.

Other keywords and placeholders

• Add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.
• Add @coderabbitai summary to generate the high-level summary at a specific location in the PR description.
• Add @coderabbitai anywhere in the PR title to generate the title automatically.

CodeRabbit Configuration File (.coderabbit.yaml)

• You can programmatically configure CodeRabbit by adding a .coderabbit.yaml file to the root of your repository.
• Please see the configuration documentation for more information.
• If your editor has YAML language server enabled, you can add the path at the top of this file to enable auto-completion and validation: # yaml-language-server: $schema=https://coderabbit.ai/integrations/schema.v2.json

Documentation and Community

• Visit our Documentation for detailed information on how to use CodeRabbit.
• Join our Discord Community to get help, request features, and share feedback.
• Follow us on X/Twitter for updates and announcements.

[coderabbitai]

Actionable comments posted: 0

🔭 Outside diff range comments (1)

custom_components/polestar_api/pypolestar/polestar.py (1)

Line range hint 249-286: Enhance error handling in GraphQL query execution

The current error handling could be more comprehensive to handle network-related issues and ensure proper resource cleanup.

     async def _query_graph_ql(
         self,
         query: DocumentNode,
         operation_name: str | None = None,
         variable_values: dict | None = None,
     ):
         if self.gql_session is None:
             raise RuntimeError("GraphQL not connected")
 
         self.logger.debug("GraphQL URL: %s", self.api_url)
 
         try:
             result = await self.gql_session.execute(
                 query,
                 operation_name=operation_name,
                 variable_values=variable_values,
                 extra_args={
                     "headers": {"Authorization": f"Bearer {self.auth.access_token}"}
                 },
             )
         except TransportQueryError as exc:
             self.logger.debug("GraphQL TransportQueryError: %s", str(exc))
             if (
                 exc.errors
                 and exc.errors[0].get("extensions", {}).get("code") == "UNAUTHENTICATED"
             ):
                 self.latest_call_code = 401
                 raise PolestarNotAuthorizedException(exc.errors[0]["message"]) from exc
             self.latest_call_code = 500
             raise PolestarApiException from exc
+        except httpx.ConnectError as exc:
+            self.logger.error("Failed to connect to GraphQL endpoint: %s", str(exc))
+            self.latest_call_code = 503
+            raise PolestarApiException("Failed to connect to API") from exc
+        except httpx.TimeoutException as exc:
+            self.logger.error("GraphQL request timed out: %s", str(exc))
+            self.latest_call_code = 504
+            raise PolestarApiException("Request timed out") from exc
         except Exception as exc:
             self.logger.debug("GraphQL Exception: %s", str(exc))
             raise exc

🧹 Nitpick comments (5)

custom_components/polestar_api/config_flow.py (1)

89-102: LGTM! Good improvement in resource management.

The addition of the try-finally block ensures proper cleanup of resources by calling async_logout() regardless of the outcome. This is a good practice for managing HTTP client resources.

Consider adding a debug log before raising exceptions to help with troubleshooting.

 if found_vins := api_client.get_available_vins():
     _LOGGER.debug("Found %d VINs for %s", len(found_vins), username)
 else:
     _LOGGER.warning("No VINs found for %s", username)
+    _LOGGER.debug("Available VINs: %s", found_vins)
     raise NoCarsFoundException

 if vin and vin not in found_vins:
     _LOGGER.warning("VIN %s not found for %s", vin, username)
+    _LOGGER.debug("Available VINs: %s", found_vins)
     raise VinNotFoundException

custom_components/polestar_api/pypolestar/auth.py (1)

60-76: LGTM! Comprehensive logout implementation.

The logout implementation thoroughly cleans up all resources including cookies and tokens. The domain-aware cookie cleanup is a good practice.

Consider adding a debug log for token cleanup similar to cookie cleanup.

 self.access_token = None
 self.id_token = None
 self.refresh_token = None
+self.logger.debug("Cleared all tokens")
 self.token_lifetime = None
 self.token_expiry = None

custom_components/polestar_api/polestar.py (1)

Line range hint 165-187: LGTM! Comprehensive error handling with appropriate retry intervals.

The error handling is well-structured with different retry intervals based on the type of error. Consider adding constants for the retry intervals to make them more maintainable.

+# Constants for retry intervals
+RETRY_INTERVAL_SHORT = 5  # seconds
+RETRY_INTERVAL_MEDIUM = 15  # seconds
+RETRY_INTERVAL_LONG = 60  # seconds

 except PolestarApiException as e:
     _LOGGER.warning("API Exception on update data %s", str(e))
-    self.polestar_api.next_update = datetime.now() + timedelta(seconds=5)
+    self.polestar_api.next_update = datetime.now() + timedelta(seconds=RETRY_INTERVAL_SHORT)
 except PolestarAuthException as e:
     _LOGGER.warning("Auth Exception on update data %s", str(e))
     await self.polestar_api.auth.get_token()
-    self.polestar_api.next_update = datetime.now() + timedelta(seconds=5)
+    self.polestar_api.next_update = datetime.now() + timedelta(seconds=RETRY_INTERVAL_SHORT)

custom_components/polestar_api/pypolestar/polestar.py (2)

93-94: Add error handling to async_logout method

While the implementation is clean and follows single responsibility, consider adding error handling to ensure proper cleanup even if the auth logout fails.

 async def async_logout(self) -> None:
-    await self.auth.async_logout()
+    try:
+        await self.auth.async_logout()
+    except Exception as exc:
+        self.logger.warning("Failed to logout: %s", str(exc))
+    finally:
+        # Ensure cleanup of local session state
+        self.gql_session = None

---

Line range hint 36-39: Refactor client management to align with PR objectives

The current implementation uses a single shared httpx client for all operations. To meet the PR objectives:

1. Separate authentication and API clients
2. Implement cookie cleanup after credential testing
3. Create dedicated clients per API interaction

Consider this architectural approach:

class PolestarApi:
    def __init__(
        self,
        username: str,
        password: str,
        auth_client: httpx.AsyncClient | None = None,
        vins: list[str] | None = None,
        unique_id: str | None = None,
    ) -> None:
        """Initialize the Polestar API."""
        # Dedicated client for auth with cookie management
        self.auth_client = auth_client or httpx.AsyncClient()
        # Separate client for API calls
        self.api_client = httpx.AsyncClient()
        self.auth = PolestarAuth(username, password, self.auth_client, unique_id)

This separation allows for:

• Cookie cleanup after auth operations
• Independent client lifecycle management
• Better alignment with the PR objectives

📜 Review details

Configuration used: CodeRabbit UI
Review profile: CHILL
Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 0f9253d and a498311.

📒 Files selected for processing (5)

• custom_components/polestar_api/config_flow.py (1 hunks)
• custom_components/polestar_api/polestar.py (2 hunks)
• custom_components/polestar_api/pypolestar/auth.py (5 hunks)
• custom_components/polestar_api/pypolestar/const.py (1 hunks)
• custom_components/polestar_api/pypolestar/polestar.py (1 hunks)

🔇 Additional comments (4)

custom_components/polestar_api/pypolestar/const.py (1)

17-17: Add documentation for OIDC cookie constants

The addition of OIDC cookie names is appropriate for managing authentication state during logout. Consider adding a docstring to document the purpose of these cookies.

+# Cookies set by the Polestar Identity Provider that need to be cleared during logout
 OIDC_COOKIES = ["PF", "PF.PERSISTENT"]

Let's verify these are the correct cookie names by checking the authentication response:

✅ Verification successful

OIDC cookie names are correctly implemented for logout functionality

The verification confirms that the OIDC cookie names are correctly implemented and used in the logout flow:

• The cookies are used in async_logout() method of PolestarAuth class
• The implementation properly cleans up both "PF" and "PF.PERSISTENT" cookies using the domain from the OIDC provider URL
• The cookie names align with Ping Federate (PF) cookies, which is the identity provider used by Polestar (evident from the API endpoints using "pf." prefixed parameters)

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify the OIDC cookie names in the authentication response
# Expected: Response headers should contain Set-Cookie with PF and PF.PERSISTENT

curl -I -s "${OIDC_PROVIDER_BASE_URL}/as/authorization.oauth2" \
  -H "Accept: application/json" | grep -i "set-cookie"

Length of output: 88

---

Script:

#!/bin/bash
# Let's check the codebase for any references to these cookie names
# and their usage in authentication/logout flows

# Search for cookie names in the codebase
echo "=== Searching for PF cookie references ==="
rg "PF\." -A 2 -B 2

echo -e "\n=== Searching for cookie-related code ==="
ast-grep --pattern 'cookie'

echo -e "\n=== Checking auth/logout implementation ==="
fd "auth|login|logout" --type f --exec cat {}

Length of output: 9929

custom_components/polestar_api/pypolestar/auth.py (2)

50-52: LGTM! Good improvement in attribute naming.

The renaming of attributes with the 'oidc_' prefix improves code clarity by explicitly indicating their relationship with OpenID Connect.

---

271-274: LGTM! Consistent attribute usage.

The changes maintain consistency with the renamed OIDC attributes while preserving the core token handling logic.

custom_components/polestar_api/polestar.py (1)

11-11: LGTM! Using recommended HTTP client creation method.

The switch to create_async_httpx_client aligns with Home Assistant's best practices for HTTP client management.

Also applies to: 231-231

[BJReplay]

Nice solution.

[jschlyter]

@magnushacker can you test this PR?

[magnushacker]

Works fine!