Merge pull request #196 from sirosen/improve-internal-docs

Improve documentation of AuthState methods
globus · Dec 3, 2024 · a9d9fb7 · a9d9fb7
2 parents 6b178b8 + 64ebc19
commit a9d9fb7
Showing 1 changed file with 16 additions and 0 deletions.
diff --git a/src/globus_action_provider_tools/authentication.py b/src/globus_action_provider_tools/authentication.py
@@ -110,6 +110,19 @@ def _cached_introspect_call(self) -> GlobusHTTPResponse:
         return introspect_result
 
     def introspect_token(self) -> GlobusHTTPResponse:
+        """
+        Introspect the caller's credential, retrieving and returning an introspect API
+        response.
+
+        The value will be cached, resulting in only one network call even when this
+        method is called multiple times on the same credential. However, each time the
+        method is called, the token data is validated.
+
+        :raises InactiveTokenError: a subtype of ValueError, if the token is invalid
+            per the introspect data
+        :raises InvalidTokenScopesError: a subtype of ValueError, if the token's scopes
+            do not include the scopes expected by this AuthState
+        """
         introspect_result = self._cached_introspect_call()
         self._verify_introspect_result(introspect_result)
         return introspect_result
@@ -228,6 +241,9 @@ def get_authorizer_for_scope(
 
         :param scope: The scope for which an authorizer is being requested
         :param required_authorizer_expiration_time: Deprecated parameter. Has no effect.
+
+        :raises ValueError: If the dependent token data for the caller does not match
+            the requested scope.
         """
         if required_authorizer_expiration_time is not None:
             warnings.warn(