The built-in SocketMode client fails to establish WS connections via proxy server #1169
Description
Reproducible in:
The Slack SDK version
slack-sdk==3.13.0
Python runtime version
3.6.13
OS info
ProductName: macOS
ProductVersion: 11.6.3
BuildVersion: 20G415
Darwin Kernel Version 20.6.0: Wed Jan 12 22:22:45 PST 2022; root:xnu-7195.141.19~2/RELEASE_ARM64_T8101
Steps to reproduce:
- Pass an authenticated proxy url containing url-encoded characters (e.g.
http://username:pass%2Fword@example.com) to a synchronousslack_sdk.socket_mode.SocketModeClient, either viaHTTPS_PROXYenv variable orproxyargument. - Connect to the Slack API.
Expected result:
The connection through the proxy is successful.
Actual result:
The connection fails with the following error:
Traceback (most recent call last):
File "[redacted]/lib/python3.6/site-packages/slack_sdk/socket_mode/builtin/connection.py", line 116, in connect
trace_enabled=self.trace_enabled,
File "[redacted]/lib/python3.6/site-packages/slack_sdk/socket_mode/builtin/internals.py", line 81, in _establish_new_socket_connection
f"Failed to connect to the proxy (proxy: {proxy}, connect status code: {status})"
Exception: Failed to connect to the proxy (proxy: http://[redacted]:[redacted with url encoded chars]@[redacted url]:80, connect status code: 407)
The documentation for urllib.parse.urlparse mentions that % escapes are not expanded, and username and password should not be url-encoded when they are passed as part of a Basic authentication.
As far as I understand the issue is simply that the username and password should be url-decoded before being base64'd in the following code:
python-slack-sdk/slack_sdk/socket_mode/builtin/internals.py
Lines 60 to 64 in 77e906a
(As a side note, printing the full proxy info including the password in the exception is not so great, but that's another issue.)