Added support for endpoint variants in endpoint metadata: FIPS and DUALSTACK. #2808
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
zoewangg
reviewed
Oct 29, 2021
Comment on lines
36
to
38
| default String endpointPrefix() { | ||
| throw new UnsupportedOperationException(); | ||
| } |
There was a problem hiding this comment.
Can we add Javadoc for this method?
There was a problem hiding this comment.
Good catch, meant to delete this.
|
|
||
| @Override | ||
| public Set<EndpointTag> tags() { | ||
| return Collections.unmodifiableSet(tags); |
There was a problem hiding this comment.
nit, might consider wrapping it in the ctor
| } | ||
|
|
||
| @Override | ||
| public boolean equals(Object o) { |
There was a problem hiding this comment.
Can we add a test for hashcode and equals?
|
|
||
| @Override | ||
| public Set<EndpointTag> tags() { | ||
| return Collections.unmodifiableSet(tags); |
There was a problem hiding this comment.
Same here, might be better to wrap it in the ctor
| */ | ||
| @SdkPublicApi | ||
| @Immutable | ||
| public interface ServiceEndpointKey { |
There was a problem hiding this comment.
Do we need an interface since this looks like a data class? Same comment for PartitionEndpointKey
| @@ -0,0 +1,102 @@ | |||
| <?xml version="1.0" encoding="UTF-8"?> | |||
There was a problem hiding this comment.
We probably need to exclude this module from mvn release command and add it to the excluded import list.
| import software.amazon.awssdk.utils.StringUtils; | ||
| import software.amazon.awssdk.utils.internal.CodegenNamingUtils; | ||
|
|
||
| public class EndpointTagGenerator implements PoetClass { |
There was a problem hiding this comment.
Can we add a test to generate EndpointTag? It's hard to tell what EndpointTag looks like from codegen code
millems
force-pushed
the
millem/endpoint-tag-support
branch
2 times, most recently
from
7ee3e3b to
13b47a6
Compare
zoewangg
reviewed
Nov 2, 2021
Comment on lines
+528
to
+531
| <exclude>software.amazon.awssdk.regions.ServiceMetadata</exclude> | ||
| <exclude>software.amazon.awssdk.regions.servicemetadata.*ServiceMetadata</exclude> | ||
| <exclude>software.amazon.awssdk.regions.DefaultServiceMetadata</exclude> |
There was a problem hiding this comment.
Do we still need to exclude them after METHOD_ABSTRACT_NOW_DEFAULT override is added?
There was a problem hiding this comment.
It's being too picky about backwards-compatible. There weren't any actual breaking changes in these classes, since we added the implementation in the parent interface.
|
|
||
| import static org.junit.Assert.*; | ||
|
|
||
| public class EndpointTagGeneratorTest { |
| @@ -78,25 +107,6 @@ static ServiceMetadata of(String serviceEndpointPrefix) { | |||
| return metadata == null ? new DefaultServiceMetadata(serviceEndpointPrefix) : metadata; | |||
| } | |||
|
|
|||
| default String computeEndpoint(String endpointPrefix, | |||
There was a problem hiding this comment.
This seems like a breaking change. Should we deprecate it instead?
There was a problem hiding this comment.
Nvm, saw it in the description. Can we mention it in the change log entry?
There was a problem hiding this comment.
I am almost certain that no one is using it. I'd much rather just delete it, because anyone using it is almost certainly doing it wrong.
|
I'll add a changelog entry when this is finalized. It won't be merged to master until the fips and dualstack changes are in place (actually using the tags). |
…ALSTACK.
This adds the ability to resolve fips and dualstack endpoints with a "fips enabled" or "dualstack enabled" flag.
E.g.
```java
URI fipsEndpoint =
ServiceMetadata.of(S3Client.SERVICE_METADATA_ID)
.endpointFor(ServiceEndpointKey.builder()
.region(Region.US_WEST_2)
.tags(EndpointTag.FIPS)
.build());
```
The following public API changes were made:
1. Added `ServiceMetadata.endpointFor(ServiceEndpointKey)`
2. Added `ServiceMetadata.signingRegion(ServiceEndpointKey)`
3. Added `PartitionMetadata.hostname(PartitionEndpointKey)`
4. Added `PartitionMetadata.dnsSuffix(PartitionEndpointKey)`
5. Added a generated `EndpointTag` class, which currently contains FIPS and DUALSTACK.
6. Removed `ServiceMetadata.computeEndpoint`, because it shouldn't have ever been public, and no one should be using it.
The following module changes were made:
1. Added `regions-testing` for verifying region resolution behavior that doesn't currently exist in the endpoints.json
millems
force-pushed
the
millem/endpoint-tag-support
branch
from
13b47a6 to
3f28c17
Compare
zoewangg
approved these changes
Nov 2, 2021
|
Kudos, SonarCloud Quality Gate passed! |
|
Merged to branch |
millems
added a commit
that referenced
this pull request
Nov 3, 2021
This option can be used to make calls be invoked against AWS endpoints which return IPv6 records. This can also be enabled via the `AWS_USE_DUALSTACK_ENDPOINT` environment variable, `aws.useDualstackEndpoint` system property, or the `use_dualstack_endpoint` profile file property: 1. This PR builds on top of the 'endpoint variants' #2808, by specifying the DUALSTACK endpoint variant whenever the customer requests dualstack to be enabled. 2. The bulk of the files in this PR are addressing the fact that we already have service configuration for enabling dualstack for S3 and S3 control. These existing options have been deprecated in favor of the new option that works for all services.
millems
added a commit
that referenced
this pull request
Nov 3, 2021
This option can be used to make calls be invoked against AWS endpoints which return IPv6 records. This can also be enabled via the `AWS_USE_DUALSTACK_ENDPOINT` environment variable, `aws.useDualstackEndpoint` system property, or the `use_dualstack_endpoint` profile file property: 1. This PR builds on top of the 'endpoint variants' #2808, by specifying the DUALSTACK endpoint variant whenever the customer requests dualstack to be enabled. 2. The bulk of the files in this PR are addressing the fact that we already have service configuration for enabling dualstack for S3 and S3 control. These existing options have been deprecated in favor of the new option that works for all services.
millems
added a commit
that referenced
this pull request
Nov 3, 2021
This option can be used to make calls be invoked against AWS endpoints which return IPv6 records. This can also be enabled via the `AWS_USE_DUALSTACK_ENDPOINT` environment variable, `aws.useDualstackEndpoint` system property, or the `use_dualstack_endpoint` profile file property: 1. This PR builds on top of the 'endpoint variants' #2808, by specifying the DUALSTACK endpoint variant whenever the customer requests dualstack to be enabled. 2. The bulk of the files in this PR are addressing the fact that we already have service configuration for enabling dualstack for S3 and S3 control. These existing options have been deprecated in favor of the new option that works for all services.
millems
added a commit
that referenced
this pull request
Nov 9, 2021
This option can be used to make calls be invoked against AWS endpoints which return IPv6 records. This can also be enabled via the `AWS_USE_DUALSTACK_ENDPOINT` environment variable, `aws.useDualstackEndpoint` system property, or the `use_dualstack_endpoint` profile file property: 1. This PR builds on top of the 'endpoint variants' #2808, by specifying the DUALSTACK endpoint variant whenever the customer requests dualstack to be enabled. 2. The bulk of the files in this PR are addressing the fact that we already have service configuration for enabling dualstack for S3 and S3 control. These existing options have been deprecated in favor of the new option that works for all services.
millems
added a commit
that referenced
this pull request
Nov 10, 2021
* Added support for endpoint variants in endpoint metadata: FIPS and DUALSTACK.
This adds the ability to resolve fips and dualstack endpoints with a "fips enabled" or "dualstack enabled" flag.
E.g.
```java
URI fipsEndpoint =
ServiceMetadata.of(S3Client.SERVICE_METADATA_ID)
.endpointFor(ServiceEndpointKey.builder()
.region(Region.US_WEST_2)
.tags(EndpointTag.FIPS)
.build());
```
The following public API changes were made:
1. Added `ServiceMetadata.endpointFor(ServiceEndpointKey)`
2. Added `ServiceMetadata.signingRegion(ServiceEndpointKey)`
3. Added `PartitionMetadata.hostname(PartitionEndpointKey)`
4. Added `PartitionMetadata.dnsSuffix(PartitionEndpointKey)`
5. Added a generated `EndpointTag` class, which currently contains FIPS and DUALSTACK.
6. Removed `ServiceMetadata.computeEndpoint`, because it shouldn't have ever been public, and no one should be using it.
The following module changes were made:
1. Added `regions-testing` for verifying region resolution behavior that doesn't currently exist in the endpoints.json
* Added a new `dualstackEnabled` property to every client builder. (#2818)
This option can be used to make calls be invoked against AWS endpoints which return IPv6 records. This can also be enabled via the `AWS_USE_DUALSTACK_ENDPOINT` environment variable, `aws.useDualstackEndpoint` system property, or the `use_dualstack_endpoint` profile file property:
1. This PR builds on top of the 'endpoint variants' #2808, by specifying the DUALSTACK endpoint variant whenever the customer requests dualstack to be enabled.
2. The bulk of the files in this PR are addressing the fact that we already have service configuration for enabling dualstack for S3 and S3 control. These existing options have been deprecated in favor of the new option that works for all services.
* Added support for enabling FIPS endpoints. (#2826)
This option can be used to make calls be invoked against FIPS-compliant AWS endpoints. This can also be enabled via the AWS_USE_FIPS_ENDPOINT environment variable, aws.useFipsEndpoint system property, or the use_fips_endpoint profile file property:
aws-sdk-java-automation
added a commit
that referenced
this pull request
Nov 22, 2023
…034aaea97 Pull request: release <- staging/b49e4374-53b8-4a8d-8ee6-fbc034aaea97
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This adds the ability to resolve fips and dualstack endpoints with a "fips enabled" or "dualstack enabled" flag.
E.g.
The following public API changes were made:
ServiceMetadata.endpointFor(ServiceEndpointKey)ServiceMetadata.signingRegion(ServiceEndpointKey)PartitionMetadata.hostname(PartitionEndpointKey)PartitionMetadata.dnsSuffix(PartitionEndpointKey)EndpointTagclass, which currently contains FIPS and DUALSTACK.ServiceMetadata.computeEndpoint, because it shouldn't have ever been public, and no one should be using it.The following module changes were made:
regions-testingfor verifying region resolution behavior that doesn't currently exist in the endpoints.json