Skip to content

feat!: Add apiKey support to API requests #202

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
edeandrea merged 1 commit into from
Dec 11, 2025
Merged

feat!: Add apiKey support to API requests #202

edeandrea merged 1 commit into from
Dec 11, 2025
+725 −147

Conversation

@edeandrea
Copy link
Contributor

@edeandrea edeandrea commented Dec 11, 2025

  • Introduced apiKey field for secure authentication in configuration and API requests.
  • Updated clear and task APIs to accept enhanced request objects.
  • Added required tests and assertions for apiKey handling across all request types.
  • Refactored HTTP operations to include apiKey in request headers.
  • Introduced new classes for managing authentication details.

Fixes #187

@edeandrea edeandrea changed the title feat: Add apiKey support to API requests feat!: Add apiKey support to API requests Dec 11, 2025
@github-actions
Copy link

github-actions bot commented Dec 11, 2025

:java_duke: JaCoCo coverage report

Overall Project 41.83% 🔴

There is no coverage information present for the Files changed

@github-actions
Copy link

github-actions bot commented Dec 11, 2025
edited
Loading

TestsPassed ✅SkippedFailed
Gradle Test Results (all modules & JDKs)636 ran636 passed0 skipped0 failed
TestResult
No test annotations available

@github-actions
Copy link

github-actions bot commented Dec 11, 2025

HTML test reports are available as workflow artifacts (zipped HTML).

• Download: Artifacts for this run

@edeandrea edeandrea force-pushed the api-key branch 3 times, most recently from 65727a2 to 320e74b Compare December 11, 2025 20:49
@edeandrea
feat!: Add apiKey support to API requests
dc74c29 
- Introduced `apiKey` field for secure authentication in configuration and API requests.
- Updated clear and task APIs to accept enhanced request objects.
- Added required tests and assertions for `apiKey` handling across all request types.
- Refactored HTTP operations to include `apiKey` in request headers.
- Introduced new classes for managing authentication details.

Fixes docling-project#187

Signed-off-by: Eric Deandrea <[email protected]>
@github-actions
Copy link

github-actions bot commented Dec 11, 2025

HTML test reports are available as workflow artifacts (zipped HTML).

• Download: Artifacts for this run

@edeandrea edeandrea enabled auto-merge (squash) December 11, 2025 20:53
@github-actions
Copy link

github-actions bot commented Dec 11, 2025

HTML test reports are available as workflow artifacts (zipped HTML).

• Download: Artifacts for this run

@edeandrea edeandrea merged commit d3239d3 into docling-project:main Dec 11, 2025
20 checks passed
@edeandrea edeandrea deleted the api-key branch December 11, 2025 21:09
@github-actions
Copy link

github-actions bot commented Dec 11, 2025

HTML test reports are available as workflow artifacts (zipped HTML).

• Download: Artifacts for this run

@ThomasVitale
Copy link
Contributor

ThomasVitale commented Dec 13, 2025
edited
Loading

@edeandrea I'm a bit unsure about the API Key support. Wouldn't that be part of the Docling Client implementation (since it's about establishing the HTTP Client connection) instead of having it included in every API request object?

When I imagine an implementation of DoclingServeClient, I would find it natural to build an instance of the client by specifying URL and optional API Key (from DoclingServeClientBuilder). Then the specific implementation would use the API key in the correct place. I would expect that to be an implementation-specific detail, and the API Key to be a Client concern rather than a Serve API concern.

From a user perspective, especially when using this in the context of a framework like Quarkus or Spring Boot, it means you cannot just inject a DoclingServeApi instance and use it, but you also need to get a hold of the API Key and pass it to every request you make. I would rather have the API Key part of the DoclingServeApi instance built by the framework or via DoclingServeClientBuilder, so that the user can configure the API Key once and not worry about it anymore.

Basically, I think we're missing centralised API Key configuration. What do you think about keeping the Authentication object in Docling Serve Api, but move the responsibility for using it and configuring the API Key to the Docling Serve Client? We could add an authentication() method to the DoclingServeClientBuilder and source the API key from there when building HTTP requests. And remove the AuthenticatedRequest interface.

What do you think?

@edeandrea
Copy link
Contributor Author

edeandrea commented Dec 13, 2025

You know what - I think you are 100% correct. The api key should be treated like the base url - a property of the api as a whole, not an individual request.

I'll fix this.

Thank you for catching it.

1 similar comment
@edeandrea
Copy link
Contributor Author

edeandrea commented Dec 13, 2025

You know what - I think you are 100% correct. The api key should be treated like the base url - a property of the api as a whole, not an individual request.

I'll fix this.

Thank you for catching it.

@edeandrea edeandrea mentioned this pull request Dec 13, 2025
Open
@ThomasVitale
Copy link
Contributor

ThomasVitale commented Dec 13, 2025

No worries :) thanks for looking into this!

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Support X-Api-Key auth header

2 participants

@edeandrea @ThomasVitale