Oauth: ignore ~/.netrc file for requests to unauthenticated endpoints

https://requests.readthedocs.io/en/latest/user/authentication/#new-forms-of-authentication

Closes #121
Affects databricks/dbt-databricks#337

Signed-off-by: Jesse Whitehouse <[email protected]>

Author: Jesse Whitehouse

src/databricks/sql/auth/oauth.py

@@ -17,6 +17,19 @@
 
 logger = logging.getLogger(__name__)
 
+class IgnoreNetrcAuth(requests.auth.AuthBase):
+    """This auth method is a no-op.
+    
+    We use it to force requestslib to not use .netrc to write auth headers
+    when making .post() requests to the oauth token endpoints, since these
+    don't require authentication.
+
+    In cases where .netrc is outdated or corrupt, these requests will fail.
+    
+    See issue #121
+    """
+    def __call__(self, r):
+        return r
 
 class OAuthManager:
     OIDC_REDIRECTOR_PATH = "oidc"
@@ -38,7 +51,7 @@ def __get_redirect_url(redirect_port: int):
     def __fetch_well_known_config(idp_url: str):
         known_config_url = f"{idp_url}/.well-known/oauth-authorization-server"
         try:
-            response = requests.get(url=known_config_url)
+            response = requests.get(url=known_config_url, auth=IgnoreNetrcAuth())
         except RequestException as e:
             logger.error(
                 f"Unable to fetch OAuth configuration from {idp_url}.\n"
@@ -150,7 +163,7 @@ def __send_token_request(token_request_url, data):
             "Accept": "application/json",
             "Content-Type": "application/x-www-form-urlencoded",
         }
-        response = requests.post(url=token_request_url, data=data, headers=headers)
+        response = requests.post(url=token_request_url, data=data, headers=headers, auth=IgnoreNetrcAuth())
         return response.json()
 
     def __send_refresh_token_request(self, hostname, refresh_token):