Skip to content

FIX: retry REST catalog on 401 UnauthorizedError with refresh token#1517

Open
MChamberlin wants to merge 1 commit intoapache:mainfrom
MChamberlin:FIX-rest-catalog-retry-401-token-refresh
Open

FIX: retry REST catalog on 401 UnauthorizedError with refresh token#1517
MChamberlin wants to merge 1 commit intoapache:mainfrom
MChamberlin:FIX-rest-catalog-retry-401-token-refresh

Conversation

@MChamberlin
Copy link

@MChamberlin MChamberlin commented Jan 15, 2025
edited
Loading

Some REST catalog implementations (including the Snowflake Polaris catalog) return a 401 when a token is expired, raising an UnauthorizedError within pyiceberg. Refreshing the token, as is done for 419 responses, resolves the issue.

This commit adds UnauthorizedError to the retry exception types for REST catalog calls, such that the token will be refreshed and the call retried.

@kevinjqliu
Copy link
Contributor

kevinjqliu commented Jan 15, 2025

Hey @MChamberlin Thanks for the PR.

I have some concerns related to this approach

Some REST catalog implementations (including the Snowflake Polaris catalog) return a 401 when a token is expired, raising an UnauthorizedError within pyiceberg.

401 status is specifically for unauthorized requests https://developer.mozilla.org/en-US/docs/Web/HTTP/Status/401
If we add 401 to the list of retry-able errors, we'd have to retry for other "truly" unauthorized errors which does not feel like the right thing to do.

My suggestion would be to change the catalog implementation to send 419 instead. The REST spec specifically calls out 401 as UnauthorizedResponse and 419 as AuthenticationTimeoutResponse

@sungwy
Copy link
Collaborator

sungwy commented Jan 16, 2025

I agree with @kevinjqliu here. I've created this issue on polaris github to fix the root cause on the catalog instead: apache/polaris#791

@MChamberlin
Copy link
Author

MChamberlin commented Jan 16, 2025

My suggestion would be to change the catalog implementation to send 419 instead. The REST spec specifically calls out 401 as UnauthorizedResponse and 419 as AuthenticationTimeoutResponse

Good point, I was thinking about this in the context of the Snowflake Polaris service, which I can't say for sure uses the OSS implementation. But the problem of course is upstream in the catalog responses either way. I will close the PR.

@MChamberlin MChamberlin reopened this Mar 8, 2025
@MChamberlin
Copy link
Author

MChamberlin commented Mar 8, 2025

@kevinjqliu @sungwy Given the decision on apache/polaris#791, I am re-opening this PR.

@sungwy
Copy link
Collaborator

sungwy commented Mar 8, 2025

Hi @MChamberlin thanks for following up! This PR was recently merged to introduce the fix following the decision to deprecate the 419 status code in the catalog community. Could you let you us know if the latest version of the code in main works for you as expected? #1741

@github-actions
Copy link

github-actions bot commented Mar 17, 2026

This pull request has been marked as stale due to 30 days of inactivity. It will be closed in 1 week if no further activity occurs. If you think that's incorrect or this pull request requires a review, please simply write any comment. If closed, you can revive the PR at any time and @mention a reviewer or discuss it on the dev@iceberg.apache.org list. Thank you for your contributions.

@github-actions github-actions bot added the stale label Mar 17, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

stale

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@MChamberlin @kevinjqliu @sungwy