Refine the transform interceptor to only match amazon location service urls

Author: cgalvan

src/cognito/index.test.ts

@@ -14,6 +14,7 @@ describe("AuthHelper for Cognito", () => {
   const cognitoIdentityPoolId = `${region}:TEST-IDENTITY-POOL-ID`;
   const url = "https://maps.geo.us-west-2.amazonaws.com/";
   const nonAWSUrl = "https://example.com/";
+  const nonLocationAWSUrl = "https://my.cool.service.us-west-2.amazonaws.com/";
   const mockedCredentials = {
     identityId: "identityId",
     accessKeyId: "accessKeyId",
@@ -171,6 +172,15 @@ describe("AuthHelper for Cognito", () => {
     });
   });
 
+  it("getMapAuthenticationOptions transformRequest function should pass-through AWS Urls that aren't for the Amazon Location Service unchanged", async () => {
+    const authHelper = await withIdentityPoolId(cognitoIdentityPoolId);
+    const transformRequest = authHelper.getMapAuthenticationOptions().transformRequest;
+
+    expect(transformRequest(nonLocationAWSUrl)).toStrictEqual({
+      url: nonLocationAWSUrl,
+    });
+  });
+
   it("getLocationClientConfig should provide credentials from cognito", async () => {
     const authHelper = await withIdentityPoolId(cognitoIdentityPoolId);
     const additionalLocationClientConfig = authHelper.getLocationClientConfig();

src/cognito/index.ts

@@ -42,8 +42,8 @@ export async function withIdentityPoolId(
   return {
     getMapAuthenticationOptions: () => ({
       transformRequest: (url: string) => {
-        // Only sign aws URLs
-        if (url.includes("amazonaws.com")) {
+        // Only sign aws location service URLs
+        if (url.match("(http|https)://(.*).geo.(.*).amazonaws.com")) {
           return {
             url: Signer.signUrl(url, region, {
               access_key: credentials.accessKeyId,