Skip to content

chore: limit most classic-environment calls to apiToken only #877

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Nov 17, 2025
Merged

chore: limit most classic-environment calls to apiToken only #877

merged 1 commit into from
Nov 17, 2025

Conversation

@Kirdock
Copy link
Collaborator

@Kirdock Kirdock commented Nov 13, 2025
edited
Loading

Why this PR?

The OAuth permission environment-api:* is not available anymore. Therefore, it doesn't make sense that some resources that rely on this one make OAuth requests

What has changed?

Affected classic environment resources are now API token-only instead of API token and OAuth.

How does it do it?

By replacing HybridClients with ApiTokenClients

How is it tested?

Current tests are sufficient.

How does it affect users?

They have to use API tokens instead or in addition to OAuth for the following resources:

  • dynatrace_host_monitoring_mode (uses OAuth and API tokens)
  • dynatrace_slo
  • dynatrace_slo_v2 (uses OAuth and API tokens)
  • dynatrace_custom_tags
  • dynatrace_browser_monitor
  • dynatrace_http_monitor_script
  • dynatrace_http_monitor
  • dynatrace_ag_token
  • dynatrace_api_token
  • dynatrace_credentials
  • dynatrace_custom_device
  • dynatrace_key_requests (uses OAuth and API tokens)
  • dynatrace_hub_extension_active_version
  • dynatrace_hub_extension_config
  • dynatrace_network_zone
  • dynatrace_network_monitor

Regarding uses OAuth and API tokens: There are some resources that combine multiple requests. For example, dynatrace_host_monitoring_mode calls the entities endpoint and settings builtin:host.monitoring.mode. In this case OAuth is preferred for the request if the env DYNATRACE_HTTP_OAUTH_PREFERENCE is set to true.

and the following data sources:

  • dynatrace_lambda_agent_version
  • dynatrace_synthetic_nodes
  • dynatrace_entities
  • dynatrace_entity

Issue: CA-17080

@Kirdock
chore: limit most classic-environment calls to apiToken only
933a464 
BREAKING CHANGE:
Updated all environment classic service implementations to use rest.APITokenClient instead of rest.HybridClient for API requests. This change standardizes client usage and removes support for platform requests for most classic-environment endpoints, retaining only settings-related paths.
@sonarqubecloud
Copy link

sonarqubecloud bot commented Nov 13, 2025

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

@Kirdock Kirdock merged commit d13a690 into main Nov 17, 2025
5 of 6 checks passed
@Kirdock Kirdock deleted the fix/classic/remove-hybrid-from-environment-classic branch November 17, 2025 08:52
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@tomazpu tomazpu tomazpu approved these changes

@d0weinberger d0weinberger d0weinberger approved these changes

@arthurpitman arthurpitman Awaiting requested review from arthurpitman

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@Kirdock @tomazpu @d0weinberger