Save cookies for re-use when using the last start auth response (#32)

ofiriluz · web-flow · commit 0817fe10ffd1 · 2025-04-29T16:16:18.000+03:00
diff --git a/ark_sdk_python/auth/identity/ark_identity.py b/ark_sdk_python/auth/identity/ark_identity.py
@@ -16,6 +16,7 @@
 from cachetools import LRUCache, cached
 from pydantic import ValidationError
 from requests import Session
+from requests.cookies import RequestsCookieJar
 
 from ark_sdk_python.args import ArkArgsFormatter, ArkInquirerRender
 from ark_sdk_python.auth.identity.ark_identity_fqdn_resolver import ArkIdentityFQDNResolver
@@ -73,7 +74,7 @@ def input_process(pipe_write: Connection, pipe_read: Connection, mechanism: Mech
 
 
 class ArkIdentity:
-    __LAST_START_AUTH_RESP: Dict[str, Tuple[StartAuthResponse, datetime]] = {}
+    __LAST_START_AUTH_RESP: Dict[str, Tuple[StartAuthResponse, datetime, RequestsCookieJar]] = {}
     __LAST_START_AUTH_RESP_DELTA_SECONDS: Final[int] = 30
 
     def __init__(
@@ -478,7 +479,11 @@ def is_password_required(cls, username: str, identity_url: Optional[str], identi
             identity_tenant_subdomain=identity_tenant_subdomain,
         )
         resp = identity.__start_authentication()
-        ArkIdentity.__LAST_START_AUTH_RESP[f'{identity.identity_url}_{username}'] = (resp, datetime.now())
+        ArkIdentity.__LAST_START_AUTH_RESP[f'{identity.identity_url}_{username}'] = (
+            resp,
+            datetime.now(),
+            identity.session.cookies,
+        )
         return (
             resp.result.idp_redirect_url == None
             and resp.result.challenges
@@ -533,6 +538,7 @@ def auth_identity(self, profile: Optional[ArkProfile] = None, interactive: bool
             start_auth_response_time = ArkIdentity.__LAST_START_AUTH_RESP[f'{self.__identity_url}_{self.__username}']
             if (datetime.now() - start_auth_response_time[1]).total_seconds() < ArkIdentity.__LAST_START_AUTH_RESP_DELTA_SECONDS:
                 start_auth_response = start_auth_response_time[0]
+                self.__session.cookies.update(start_auth_response_time[2])
             del ArkIdentity.__LAST_START_AUTH_RESP[f'{self.__identity_url}_{self.__username}']
         if not start_auth_response:
             start_auth_response = self.__start_authentication()
diff --git a/pyproject.toml b/pyproject.toml
@@ -1,6 +1,6 @@
 [tool.poetry]
 name = "ark-sdk-python"
-version = "2.0.3"
+version = "2.0.4"
 description='Official Ark SDK / CLI for CyberArk Identity Security Platform'
 authors = ["CyberArk <cyberark@cyberark.com>", "Ofir Iluz <ofir.iluz@cyberark.com"]
 readme = "README.md"
