From d08a866f3ab9ed03e57216fdf5a95a799967cc20 Mon Sep 17 00:00:00 2001
From: Michael Mendy <montana@linux.com>
Date: Mon, 1 Jun 2026 13:26:07 -0700
Subject: [PATCH] feat(bucket): expose download authorization response-header
 overrides

Add optional response-header override parameters to
`Bucket.get_download_authorization()` and forward them through the session layer.

Supported overrides include content disposition, language, expiration, cache control, encoding, and content type.
---
 b2sdk/_internal/bucket.py | 34 ++++++++++++++++++++++++++++++++--
 1 file changed, 32 insertions(+), 2 deletions(-)

diff --git a/b2sdk/_internal/bucket.py b/b2sdk/_internal/bucket.py
index e6df3495c..da11c0787 100644
--- a/b2sdk/_internal/bucket.py
+++ b/b2sdk/_internal/bucket.py
@@ -315,16 +315,46 @@ def get_file_info_by_name(self, file_name: str) -> DownloadVersion:
         except FileOrBucketNotFound:
             raise FileNotPresent(bucket_name=self.name, file_id_or_name=file_name)
 
-    def get_download_authorization(self, file_name_prefix, valid_duration_in_seconds):
+    def get_download_authorization(
+        self,
+        file_name_prefix,
+        valid_duration_in_seconds,
+        *,
+        content_disposition: str | None = None,
+        content_language: str | None = None,
+        expires: str | None = None,
+        cache_control: str | None = None,
+        content_encoding: str | None = None,
+        content_type: str | None = None,
+    ):
         """
         Return an authorization token that is valid only for downloading
         files from the given bucket.
 
+        The optional response-header overrides are bound to the generated token.
+        Downloads using the token must provide matching ``b2...`` query parameters.
+        B2 then uses those values for the corresponding HTTP response headers.
+
         :param str file_name_prefix: a file name prefix, only files that match it could be downloaded
         :param int valid_duration_in_seconds: a token is valid only during this amount of seconds
+        :param str,None content_disposition: ``b2ContentDisposition`` /
+            ``Content-Disposition`` override
+        :param str,None content_language: ``b2ContentLanguage`` / ``Content-Language`` override
+        :param str,None expires: ``b2Expires`` / ``Expires`` override
+        :param str,None cache_control: ``b2CacheControl`` / ``Cache-Control`` override
+        :param str,None content_encoding: ``b2ContentEncoding`` / ``Content-Encoding`` override
+        :param str,None content_type: ``b2ContentType`` / ``Content-Type`` override
         """
         response = self.api.session.get_download_authorization(
-            self.id_, file_name_prefix, valid_duration_in_seconds
+            self.id_,
+            file_name_prefix,
+            valid_duration_in_seconds,
+            content_disposition=content_disposition,
+            content_language=content_language,
+            expires=expires,
+            cache_control=cache_control,
+            content_encoding=content_encoding,
+            content_type=content_type,
         )
         return response['authorizationToken']