fix(codegen): move auth to standalone plugin

AllanZhengYP · AllanZhengYP · commit 866c75b56211 · 2021-02-24T00:50:48.000Z
diff --git a/codegen/smithy-aws-typescript-codegen/src/main/java/software/amazon/smithy/aws/typescript/codegen/AddAwsAuthPlugin.java b/codegen/smithy-aws-typescript-codegen/src/main/java/software/amazon/smithy/aws/typescript/codegen/AddAwsAuthPlugin.java
@@ -0,0 +1,166 @@
+/*
+ * Copyright 2019 Amazon.com, Inc. or its affiliates. All Rights Reserved.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License").
+ * You may not use this file except in compliance with the License.
+ * A copy of the License is located at
+ *
+ *  http://aws.amazon.com/apache2.0
+ *
+ * or in the "license" file accompanying this file. This file is distributed
+ * on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either
+ * express or implied. See the License for the specific language governing
+ * permissions and limitations under the License.
+ */
+
+package software.amazon.smithy.aws.typescript.codegen;
+
+import static software.amazon.smithy.typescript.codegen.integration.RuntimeClientPlugin.Convention.HAS_CONFIG;
+import static software.amazon.smithy.typescript.codegen.integration.RuntimeClientPlugin.Convention.HAS_MIDDLEWARE;
+
+import java.util.Collections;
+import java.util.List;
+import java.util.Map;
+import java.util.Set;
+import java.util.function.Consumer;
+import software.amazon.smithy.aws.traits.ServiceTrait;
+import software.amazon.smithy.codegen.core.SymbolProvider;
+import software.amazon.smithy.model.Model;
+import software.amazon.smithy.model.knowledge.TopDownIndex;
+import software.amazon.smithy.model.shapes.OperationShape;
+import software.amazon.smithy.model.shapes.ServiceShape;
+import software.amazon.smithy.model.shapes.Shape;
+import software.amazon.smithy.model.traits.OptionalAuthTrait;
+import software.amazon.smithy.typescript.codegen.LanguageTarget;
+import software.amazon.smithy.typescript.codegen.TypeScriptDependency;
+import software.amazon.smithy.typescript.codegen.TypeScriptSettings;
+import software.amazon.smithy.typescript.codegen.TypeScriptWriter;
+import software.amazon.smithy.typescript.codegen.integration.RuntimeClientPlugin;
+import software.amazon.smithy.typescript.codegen.integration.TypeScriptIntegration;
+import software.amazon.smithy.utils.ListUtils;
+import software.amazon.smithy.utils.MapUtils;
+import software.amazon.smithy.utils.SetUtils;
+
+/**
+ * Configure clients with AWS auth configurations and plugin.
+ */
+public final class AddAwsAuthPlugin implements TypeScriptIntegration {
+
+    @Override
+    public byte getOrder() {
+        // Auth plugin should resolve after region, set it to after AddBuiltinPlugins.
+        return 10;
+    }
+
+    @Override
+    public void addConfigInterfaceFields(
+        TypeScriptSettings settings,
+        Model model,
+        SymbolProvider symbolProvider,
+        TypeScriptWriter writer
+    ) {
+        ServiceShape service = settings.getService(model);
+        if (!isAllOptionalAuthOperation(model, service)) {
+            writer.addImport("Credentials", "__Credentials", TypeScriptDependency.AWS_SDK_TYPES.packageName);
+            writer.writeDocs("Default credentials provider; Not available in browser runtime")
+                .write("credentialDefaultProvider?: (input: any) => __Provider<__Credentials>;\n");
+        }
+    }
+
+    @Override
+    public List<RuntimeClientPlugin> getClientPlugins() {
+        return ListUtils.of(
+            RuntimeClientPlugin.builder()
+                        .withConventions(AwsDependency.MIDDLEWARE_SIGNING.dependency, "AwsAuth", HAS_CONFIG)
+                        .servicePredicate((m, s) -> !isAllOptionalAuthOperation(m, s))
+                        .build(),
+                RuntimeClientPlugin.builder()
+                        .withConventions(AwsDependency.MIDDLEWARE_SIGNING.dependency, "AwsAuth", HAS_MIDDLEWARE)
+                        // See operationUsesAwsAuth() below for AwsAuth Middleware customizations.
+                        .servicePredicate(
+                            (m, s) -> !testServiceId(s, "STS") && !hasOptionalAuthOperation(m, s)
+                        ).build(),
+                RuntimeClientPlugin.builder()
+                        .withConventions(AwsDependency.MIDDLEWARE_SIGNING.dependency, "AwsAuth", HAS_MIDDLEWARE)
+                        .operationPredicate(AddAwsAuthPlugin::operationUsesAwsAuth)
+                        .build()
+        );
+    }
+
+    @Override
+    public Map<String, Consumer<TypeScriptWriter>> getRuntimeConfigWriters(
+        TypeScriptSettings settings,
+        Model model,
+        SymbolProvider symbolProvider,
+        LanguageTarget target
+    ) {
+        ServiceShape service = settings.getService(model);
+        if (isAllOptionalAuthOperation(model, service)) {
+            return Collections.emptyMap();
+        }
+        switch (target) {
+            case BROWSER:
+                return MapUtils.of(
+                    "credentialDefaultProvider", writer -> {
+                        writer.write(
+                                "credentialDefaultProvider: (_: unknown) => () => Promise.reject(new Error("
+                                    + "\"Credential is missing\")),");
+                    }
+                );
+            case NODE:
+                return MapUtils.of(
+                    "credentialDefaultProvider", writer -> {
+                        writer.addDependency(AwsDependency.CREDENTIAL_PROVIDER_NODE);
+                        writer.addImport("defaultProvider", "credentialDefaultProvider",
+                                AwsDependency.CREDENTIAL_PROVIDER_NODE.packageName);
+                        writer.write("credentialDefaultProvider,");
+                    }
+                );
+            default:
+                return Collections.emptyMap();
+        }
+    }
+
+    private static boolean testServiceId(Shape serviceShape, String expectedId) {
+        return serviceShape.getTrait(ServiceTrait.class).map(ServiceTrait::getSdkId).orElse("").equals(expectedId);
+    }
+
+    private static boolean operationUsesAwsAuth(Model model, ServiceShape service, OperationShape operation) {
+        // STS doesn't need auth for AssumeRoleWithWebIdentity, AssumeRoleWithSAML.
+        // Remove when optionalAuth model update is published in 0533102932.
+        if (testServiceId(service, "STS")) {
+            Boolean isUnsignedCommand = SetUtils
+                    .of("AssumeRoleWithWebIdentity", "AssumeRoleWithSAML")
+                    .contains(operation.getId().getName());
+            return !isUnsignedCommand;
+        }
+
+        // optionalAuth trait doesn't require authentication.
+        if (hasOptionalAuthOperation(model, service)) {
+            return !operation.getTrait(OptionalAuthTrait.class).isPresent();
+        }
+        return false;
+    }
+
+    private static boolean hasOptionalAuthOperation(Model model, ServiceShape service) {
+        TopDownIndex topDownIndex = TopDownIndex.of(model);
+        Set<OperationShape> operations = topDownIndex.getContainedOperations(service);
+        for (OperationShape operation : operations) {
+            if (operation.getTrait(OptionalAuthTrait.class).isPresent()) {
+                return true;
+            }
+        }
+        return false;
+    }
+
+    private static boolean isAllOptionalAuthOperation(Model model, ServiceShape service) {
+        TopDownIndex topDownIndex = TopDownIndex.of(model);
+        Set<OperationShape> operations = topDownIndex.getContainedOperations(service);
+        for (OperationShape operation : operations) {
+            if (!operation.getTrait(OptionalAuthTrait.class).isPresent()) {
+                return false;
+            }
+        }
+        return true;
+    }
+}
diff --git a/codegen/smithy-aws-typescript-codegen/src/main/java/software/amazon/smithy/aws/typescript/codegen/AddAwsRuntimeConfig.java b/codegen/smithy-aws-typescript-codegen/src/main/java/software/amazon/smithy/aws/typescript/codegen/AddAwsRuntimeConfig.java
@@ -32,16 +32,14 @@
 import software.amazon.smithy.utils.MapUtils;
 
 /**
- * AWS clients need to know the service name for collecting metrics,
- * credentials for signing requests, and the region name used to resolve
- * endpoints.
+ * AWS clients need to know the service name for collecting metrics, the
+ * region name used to resolve endpoints, the max attempt to retry a request
+ * and logger instance to print the log.
  *
  * <p>This plugin adds the following config interface fields:
  *
  * <ul>
  *     <li>serviceId: Unique name to identify the service.</li>
- *     <li>credentialDefaultProvider: Provides credentials if no credentials
- *     are explicitly provided.</li>
  *     <li>region: The AWS region to which this client will send requests</li>
  *     <li>maxAttempts: Provides value for how many times a request will be
  *     made at most in case of retry.</li>
@@ -52,8 +50,6 @@
  *
  * <ul>
  *     <li>serviceId: Unique name to identify the service.</li>
- *     <li>credentialDefaultProvider: Uses the default credential provider that
- *     checks things like environment variables and the AWS config file.</li>
  *     <li>region: Uses the default region provider that checks things like
  *      environment variables and the AWS config file.</li>
  *     <li>maxAttempts: Uses the default maxAttempts provider that checks things
@@ -65,9 +61,6 @@
  *
  * <ul>
  *     <li>serviceId: Unique name to identify the service.</li>
- *     <li>credentialDefaultProvider: Throws an exception since credentials must
- *     be explicitly provided in the browser (environment variables and
- *     the shared config can't be resolved from the browser).</li>
  *     <li>region: Throws an exception since a region must
  *     be explicitly provided in the browser (environment variables and
  *     the shared config can't be resolved from the browser).</li>
@@ -87,13 +80,11 @@ public void addConfigInterfaceFields(
             TypeScriptWriter writer
     ) {
         writer.addImport("Provider", "__Provider", TypeScriptDependency.AWS_SDK_TYPES.packageName);
-        writer.addImport("Credentials", "__Credentials", TypeScriptDependency.AWS_SDK_TYPES.packageName);
+        // writer.addImport("Credentials", "__Credentials", TypeScriptDependency.AWS_SDK_TYPES.packageName);
         writer.addImport("Logger", "__Logger", TypeScriptDependency.AWS_SDK_TYPES.packageName);
 
         writer.writeDocs("Unique service identifier.\n@internal")
                 .write("serviceId?: string;\n");
-        writer.writeDocs("Default credentials provider; Not available in browser runtime")
-                .write("credentialDefaultProvider?: (input: any) => __Provider<__Credentials>;\n");
         writer.writeDocs("The AWS region to which this client will send requests")
                 .write("region?: string | __Provider<string>;\n");
         writer.writeDocs("Value for how many times a request will be made at most in case of retry.")
@@ -145,11 +136,6 @@ private Map<String, Consumer<TypeScriptWriter>> getDefaultConfig(LanguageTarget
                                     TypeScriptDependency.INVALID_DEPENDENCY.packageName);
                             writer.write("region: invalidProvider(\"Region is missing\"),");
                         },
-                        "credentialDefaultProvider", writer -> {
-                            writer.write(
-                                    "credentialDefaultProvider: (_: unknown) => () => Promise.reject(new Error("
-                                        + "\"Credential is missing\")),");
-                        },
                         "maxAttempts", writer -> {
                             writer.addDependency(TypeScriptDependency.MIDDLEWARE_RETRY);
                             writer.addImport("DEFAULT_MAX_ATTEMPTS", "DEFAULT_MAX_ATTEMPTS",
@@ -171,12 +157,6 @@ private Map<String, Consumer<TypeScriptWriter>> getDefaultConfig(LanguageTarget
                             writer.write(
                                 "region: loadNodeConfig(NODE_REGION_CONFIG_OPTIONS, NODE_REGION_CONFIG_FILE_OPTIONS),");
                         },
-                        "credentialDefaultProvider", writer -> {
-                            writer.addDependency(AwsDependency.CREDENTIAL_PROVIDER_NODE);
-                            writer.addImport("defaultProvider", "credentialDefaultProvider",
-                                    AwsDependency.CREDENTIAL_PROVIDER_NODE.packageName);
-                            writer.write("credentialDefaultProvider,");
-                        },
                         "maxAttempts", writer -> {
                             writer.addImport("NODE_MAX_ATTEMPT_CONFIG_OPTIONS", "NODE_MAX_ATTEMPT_CONFIG_OPTIONS",
                                 TypeScriptDependency.MIDDLEWARE_RETRY.packageName);
diff --git a/codegen/smithy-aws-typescript-codegen/src/main/java/software/amazon/smithy/aws/typescript/codegen/AddBuiltinPlugins.java b/codegen/smithy-aws-typescript-codegen/src/main/java/software/amazon/smithy/aws/typescript/codegen/AddBuiltinPlugins.java
@@ -23,11 +23,8 @@
 import software.amazon.smithy.aws.traits.ServiceTrait;
 import software.amazon.smithy.model.Model;
 import software.amazon.smithy.model.knowledge.OperationIndex;
-import software.amazon.smithy.model.knowledge.TopDownIndex;
 import software.amazon.smithy.model.shapes.OperationShape;
-import software.amazon.smithy.model.shapes.ServiceShape;
 import software.amazon.smithy.model.shapes.Shape;
-import software.amazon.smithy.model.traits.OptionalAuthTrait;
 import software.amazon.smithy.typescript.codegen.TypeScriptDependency;
 import software.amazon.smithy.typescript.codegen.integration.RuntimeClientPlugin;
 import software.amazon.smithy.typescript.codegen.integration.TypeScriptIntegration;
@@ -51,16 +48,6 @@ public List<RuntimeClientPlugin> getClientPlugins() {
                 RuntimeClientPlugin.builder()
                         .withConventions(TypeScriptDependency.CONFIG_RESOLVER.dependency, "Endpoints", HAS_CONFIG)
                         .build(),
-                RuntimeClientPlugin.builder()
-                        .withConventions(AwsDependency.MIDDLEWARE_SIGNING.dependency, "AwsAuth", HAS_CONFIG)
-                        .servicePredicate((m, s) -> !isAllOptionalAuthOperation(m, s))
-                        .build(),
-                RuntimeClientPlugin.builder()
-                        .withConventions(AwsDependency.MIDDLEWARE_SIGNING.dependency, "AwsAuth", HAS_MIDDLEWARE)
-                        // See operationUsesAwsAuth() below for AwsAuth Middleware customizations.
-                        .servicePredicate(
-                            (m, s) -> !testServiceId(s, "STS") && !hasOptionalAuthOperation(m, s)
-                        ).build(),
                 RuntimeClientPlugin.builder()
                         .withConventions(TypeScriptDependency.MIDDLEWARE_RETRY.dependency, "Retry")
                         .build(),
@@ -123,10 +110,6 @@ && testServiceId(s, "SQS"))
                 RuntimeClientPlugin.builder()
                         .withConventions(AwsDependency.MIDDLEWARE_HOST_HEADER.dependency, "HostHeader")
                         .build(),
-                RuntimeClientPlugin.builder()
-                        .withConventions(AwsDependency.MIDDLEWARE_SIGNING.dependency, "AwsAuth", HAS_MIDDLEWARE)
-                        .operationPredicate(AddBuiltinPlugins::operationUsesAwsAuth)
-                        .build(),
                 RuntimeClientPlugin.builder()
                         .withConventions(AwsDependency.MIDDLEWARE_LOGGER.dependency, "Logger", HAS_MIDDLEWARE)
                         .build()
@@ -138,7 +121,7 @@ private static boolean testInputContainsMember(
             OperationShape operationShape,
             Set<String> expectedMemberNames
     ) {
-        OperationIndex operationIndex = model.getKnowledge(OperationIndex.class);
+        OperationIndex operationIndex = OperationIndex.of(model);
         return operationIndex.getInput(operationShape)
                 .filter(input -> input.getMemberNames().stream().anyMatch(expectedMemberNames::contains))
                 .isPresent();
@@ -147,43 +130,4 @@ private static boolean testInputContainsMember(
     private static boolean testServiceId(Shape serviceShape, String expectedId) {
         return serviceShape.getTrait(ServiceTrait.class).map(ServiceTrait::getSdkId).orElse("").equals(expectedId);
     }
-
-    private static boolean operationUsesAwsAuth(Model model, ServiceShape service, OperationShape operation) {
-        // STS doesn't need auth for AssumeRoleWithWebIdentity, AssumeRoleWithSAML.
-        // Remove when optionalAuth model update is published in 0533102932.
-        if (testServiceId(service, "STS")) {
-            Boolean isUnsignedCommand = SetUtils
-                    .of("AssumeRoleWithWebIdentity", "AssumeRoleWithSAML")
-                    .contains(operation.getId().getName());
-            return !isUnsignedCommand;
-        }
-
-        // optionalAuth trait doesn't require authentication.
-        if (hasOptionalAuthOperation(model, service)) {
-            return !operation.getTrait(OptionalAuthTrait.class).isPresent();
-        }
-        return false;
-    }
-
-    private static boolean hasOptionalAuthOperation(Model model, ServiceShape service) {
-        TopDownIndex topDownIndex = TopDownIndex.of(model);
-        Set<OperationShape> operations = topDownIndex.getContainedOperations(service);
-        for (OperationShape operation : operations) {
-            if (operation.getTrait(OptionalAuthTrait.class).isPresent()) {
-                return true;
-            }
-        }
-        return false;
-    }
-
-    private static boolean isAllOptionalAuthOperation(Model model, ServiceShape service) {
-        TopDownIndex topDownIndex = TopDownIndex.of(model);
-        Set<OperationShape> operations = topDownIndex.getContainedOperations(service);
-        for (OperationShape operation : operations) {
-            if (!operation.getTrait(OptionalAuthTrait.class).isPresent()) {
-                return false;
-            }
-        }
-        return true;
-    }
 }
diff --git a/codegen/smithy-aws-typescript-codegen/src/main/resources/META-INF/services/software.amazon.smithy.typescript.codegen.integration.TypeScriptIntegration b/codegen/smithy-aws-typescript-codegen/src/main/resources/META-INF/services/software.amazon.smithy.typescript.codegen.integration.TypeScriptIntegration
@@ -15,4 +15,5 @@ software.amazon.smithy.aws.typescript.codegen.AddTranscribeStreamingDependency
 software.amazon.smithy.aws.typescript.codegen.AddUserAgentDependency
 software.amazon.smithy.aws.typescript.codegen.AddOmitRetryHeadersDependency
 software.amazon.smithy.aws.typescript.codegen.StripNewEnumNames
-software.amazon.smithy.aws.typescript.codegen.AddCrossRegionCopyingPlugin
+software.amazon.smithy.aws.typescript.codegen.AddCrossRegionCopyingPlugin
+software.amazon.smithy.aws.typescript.codegen.AddAwsAuthPlugin
