[PR #1222] fix: dont override verify attribute when requesting access token #1220

New issue

Open

opened 2026-02-28 00:04:09 +03:00 by kerem · 0 comments

kerem commented 2026-02-28 00:04:09 +03:00

Owner

Copy link

📋 Pull Request Information

Original PR: https://github.com/spotipy-dev/spotipy/pull/1222
Author: @sigma67
Created: 12/22/2025
Status: 🔄 Open

Base: master ← Head: fix-override-verify-clientcredentials

---

📝 Commits (3)

• 50f08e3 fix: dont override verify attribute when requesting access token
• 316ed32 changelog
• 5ecf39c try again

📊 Changes

2 files changed (+3 additions, -1 deletions)

View changed files

📝 CHANGELOG.md (+3 -0)
📝 spotipy/oauth2.py (+0 -1)

📄 Description

This call is the only one that overrides the _session.verify which can be passed in via the arguments of SpotifyClientCredentials.

This makes it impossible to actually disable cert verification or set a custom certificate chain (i.e. in a corporate network).

Hence this line should be removed and use the default settings instead, which are provided by the caller.

---

_{🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.}

## 📋 Pull Request Information **Original PR:** https://github.com/spotipy-dev/spotipy/pull/1222 **Author:** [@sigma67](https://github.com/sigma67) **Created:** 12/22/2025 **Status:** 🔄 Open **Base:** `master` ← **Head:** `fix-override-verify-clientcredentials` --- ### 📝 Commits (3) - [`50f08e3`](https://github.com/spotipy-dev/spotipy/commit/50f08e31860dff661905ae01d04db2817742a00c) fix: dont override verify attribute when requesting access token - [`316ed32`](https://github.com/spotipy-dev/spotipy/commit/316ed324d24a44b385f63e2b98e53420302ec230) changelog - [`5ecf39c`](https://github.com/spotipy-dev/spotipy/commit/5ecf39cf3b2865c8fa81dece7a5d43603c8f8b8c) try again ### 📊 Changes **2 files changed** (+3 additions, -1 deletions) <details> <summary>View changed files</summary> 📝 `CHANGELOG.md` (+3 -0) 📝 `spotipy/oauth2.py` (+0 -1) </details> ### 📄 Description This call is the only one that overrides the `_session.verify` which can be passed in via the arguments of `SpotifyClientCredentials`. This makes it impossible to actually disable cert verification or set a custom certificate chain (i.e. in a corporate network). Hence this line should be removed and use the default settings instead, which are provided by the caller. --- _{🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.}

kerem added the

pull-request

label 2026-02-28 00:04:09 +03:00

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

master

feature/2026-02-changes

feature/invalid-uri-warning

feature/refresh-endpoints

doc-deprecations

revert-synchronize

v3

run-tests

bugfix/1149-change-cache-name

2.23.0

v3_oldprsonly

2.26.0

2.25.2

2.25.1

2.25.0

2.24.0

2.23.0

2.22.1

2.22.0

2.21.0

2.20.0

2.19.0

2.18.0

2.17.1

2.17.0

2.16.1

2.16.0

2.15.0

2.14.0

2.13.0

2.12.0

2.11.2

2.11.1

2.11.0

2.10.0

2.9.0

2.8.0

2.7.1

2.7.0

2.6.3

2.6.2

2.6.1

2.6.0

2.5.0

Labels

Clear labels   

api-bug

  

bug

  

dependencies

  

documentation

  

duplicate

  

enhancement

  

external-ide

  

headless-mode

  

implicit-grant-flow

  

invalid

  

missing-endpoint

  

pr-welcome

  

private-api

  

pull-request

Mirrored from GitHub Pull Request

  

question

  

spotipy3

  

wontfix

No labels

api-bug

bug

dependencies

documentation

duplicate

enhancement

external-ide

headless-mode

implicit-grant-flow

invalid

missing-endpoint

pr-welcome

private-api

pull-request

question

spotipy3

wontfix

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

starred/spotipy#1220

No description provided.