Merge pull request #77 from apourchet/apourchet/fix-race-sendwithauth

Locking SendWithAuth to fix race condition
2025-01-23 10:21:03 +01:00 · 2019-03-01 10:49:21 +01:00 · 2019-03-01 10:49:21 +01:00 · 114f3ab4be
commit 114f3ab4be
parent 6f2ea3a580 4303b79440
2 changed files with 10 additions and 0 deletions
--- a/client.go
+++ b/client.go
@ -125,10 +125,15 @@ func (c *Client) Send(req *http.Request, v interface{}) error {
 // making the main request
 // client.Token will be updated when changed
 func (c *Client) SendWithAuth(req *http.Request, v interface{}) error {
+	c.Lock()
+	// Note: Here we do not want to `defer c.Unlock()` because we need `c.Send(...)`
+	// to happen outside of the locked section.
+
 	if c.Token != nil {
 		if !c.tokenExpiresAt.IsZero() && c.tokenExpiresAt.Sub(time.Now()) < RequestNewTokenBeforeExpiresIn {
 			// c.Token will be updated in GetAccessToken call
 			if _, err := c.GetAccessToken(); err != nil {
+				c.Unlock()
 				return err
 			}
 		}
@ -136,6 +141,9 @@ func (c *Client) SendWithAuth(req *http.Request, v interface{}) error {
 		req.Header.Set("Authorization", "Bearer "+c.Token.Token)
 	}

+	// Unlock the client mutex before sending the request, this allows multiple requests
+	// to be in progress at the same time.
+	c.Unlock()
 	return c.Send(req, v)
 }

--- a/types.go
+++ b/types.go
@ -5,6 +5,7 @@ import (
 	"fmt"
 	"io"
 	"net/http"
+	"sync"
 	"time"
 )

@ -168,6 +169,7 @@ type (

 	// Client represents a Paypal REST API Client
 	Client struct {
+		sync.Mutex
 		Client         *http.Client
 		ClientID       string
 		Secret         string