Add initial default implementation of BearerHttpSigner

haydenbaker · haydenbaker · commit 747c4f680d86 · 2023-05-12T15:46:33.000-07:00
diff --git a/core/http-auth/src/main/java/software/amazon/awssdk/http/auth/BearerHttpSigner.java b/core/http-auth/src/main/java/software/amazon/awssdk/http/auth/BearerHttpSigner.java
@@ -16,9 +16,18 @@
 package software.amazon.awssdk.http.auth;
 
 import software.amazon.awssdk.annotations.SdkPublicApi;
+import software.amazon.awssdk.http.auth.internal.DefaultBearerHttpSigner;
 import software.amazon.awssdk.http.auth.spi.HttpSigner;
+import software.amazon.awssdk.identity.spi.TokenIdentity;
 
+/**
+ * An {@link HttpSigner} that will sign a request with Bearer token
+ * authorization.
+ */
 @SdkPublicApi
 public interface BearerHttpSigner extends HttpSigner {
 
+    static BearerHttpSigner create(TokenIdentity tokenIdentity) {
+        return new DefaultBearerHttpSigner(tokenIdentity);
+    }
 }
diff --git a/core/http-auth/src/main/java/software/amazon/awssdk/http/auth/internal/DefaultBearerHttpSigner.java b/core/http-auth/src/main/java/software/amazon/awssdk/http/auth/internal/DefaultBearerHttpSigner.java
@@ -0,0 +1,58 @@
+package software.amazon.awssdk.http.auth.internal;
+
+import org.reactivestreams.Publisher;
+import software.amazon.awssdk.annotations.SdkInternalApi;
+import software.amazon.awssdk.http.ContentStreamProvider;
+import software.amazon.awssdk.http.SdkHttpRequest;
+import software.amazon.awssdk.http.auth.BearerHttpSigner;
+import software.amazon.awssdk.http.auth.spi.HttpSignRequest;
+import software.amazon.awssdk.http.auth.spi.SignedHttpRequest;
+import software.amazon.awssdk.identity.spi.TokenIdentity;
+
+
+import java.nio.ByteBuffer;
+
+/**
+ * A default implementation of {@link BearerHttpSigner}
+ */
+@SdkInternalApi
+public class DefaultBearerHttpSigner implements BearerHttpSigner {
+
+    private static final String AUTHZ_HEADER = "Authorization";
+    private static final String BEARER_LABEL = "Bearer";
+
+    private final TokenIdentity tokenIdentity;
+
+    public DefaultBearerHttpSigner(TokenIdentity tokenIdentity) {
+        this.tokenIdentity = tokenIdentity;
+    }
+
+    @Override
+    public SignedHttpRequest<? extends ContentStreamProvider> sign(HttpSignRequest<? extends ContentStreamProvider> request) {
+        return doSign(request);
+    }
+
+    @Override
+    public SignedHttpRequest<? extends Publisher<? extends ByteBuffer>>
+    signAsync(HttpSignRequest<? extends Publisher<? extends ByteBuffer>> request) {
+        return doSign(request);
+    }
+
+    private <T> SignedHttpRequest<T> doSign(HttpSignRequest<T> request) {
+        SdkHttpRequest signedRequest = request.request().toBuilder()
+                .putHeader(
+                        AUTHZ_HEADER,
+                        buildAuthorizationHeader(tokenIdentity))
+                .build();
+
+        return SignedHttpRequest.builder(request.payloadType())
+                .request(signedRequest)
+                .payload(request.payload().orElse(null))
+                .build();
+    }
+
+    private String buildAuthorizationHeader(TokenIdentity tokenIdentity) {
+        return String.format("%s %s", BEARER_LABEL, tokenIdentity.token());
+    }
+
+}
