fixup! feat: support @httpApiKeyAuth trait

Author: glb

smithy-typescript-codegen/src/main/java/software/amazon/smithy/typescript/codegen/integration/AddHttpApiKeyAuthPlugin.java

@@ -24,6 +24,7 @@
 import software.amazon.smithy.codegen.core.Symbol;
 import software.amazon.smithy.codegen.core.SymbolProvider;
 import software.amazon.smithy.model.Model;
+import software.amazon.smithy.model.knowledge.ServiceIndex;
 import software.amazon.smithy.model.knowledge.TopDownIndex;
 import software.amazon.smithy.model.shapes.OperationShape;
 import software.amazon.smithy.model.shapes.ServiceShape;
@@ -71,8 +72,12 @@ public List<RuntimeClientPlugin> getClientPlugins() {
                             .namespace("./" + CodegenUtils.SOURCE_FOLDER + "/middleware/HttpApiKeyAuth", "/")
                             .name("resolveHttpApiKeyAuthConfig")
                             .build())
-                    .servicePredicate((m, s) -> s.hasTrait(HttpApiKeyAuthTrait.class)
-                                                    && !areAllOptionalAuthOperations(m, s))
+                    .servicePredicate((m, s) -> ServiceIndex.of(m).getEffectiveAuthSchemes(s)
+                                                        .values().stream()
+                                                        .filter(c -> c instanceof HttpApiKeyAuthTrait)
+                                                        .findFirst()
+                                                        .isPresent()
+                                                        && !areAllOptionalAuthOperations(m, s))
                     .build(),
 
             // Add the middleware to operations that use HTTP API key authorization.
@@ -89,8 +94,12 @@ public List<RuntimeClientPlugin> getClientPlugins() {
                             s.getTrait(HttpApiKeyAuthTrait.class).get().getScheme().ifPresent(scheme ->
                                     put("scheme", scheme));
                     }})
-                    .operationPredicate((m, s, o) -> s.hasTrait(HttpApiKeyAuthTrait.class)
-                                                        && !o.hasTrait(OptionalAuthTrait.class))
+                    .operationPredicate((m, s, o) -> ServiceIndex.of(m).getEffectiveAuthSchemes(s)
+                                                            .values().stream()
+                                                            .filter(c -> c instanceof HttpApiKeyAuthTrait)
+                                                            .findFirst()
+                                                            .isPresent()
+                                                            && !o.hasTrait(OptionalAuthTrait.class))
                     .build()
         );
     }
@@ -137,8 +146,11 @@ public void writeAdditionalFiles(
     private static boolean areAllOptionalAuthOperations(Model model, ServiceShape service) {
         TopDownIndex topDownIndex = TopDownIndex.of(model);
         Set<OperationShape> operations = topDownIndex.getContainedOperations(service);
+        ServiceIndex index = ServiceIndex.of(model);
+
         for (OperationShape operation : operations) {
-            if (!operation.hasTrait(OptionalAuthTrait.class)) {
+            if (index.getEffectiveAuthSchemes(service, operation).isEmpty()
+                    || !operation.hasTrait(OptionalAuthTrait.class)) {
                 return false;
             }
         }

smithy-typescript-codegen/src/test/java/software/amazon/smithy/typescript/codegen/integration/AddHttpApiKeyAuthPluginTest.java

@@ -30,70 +30,25 @@
 
 public class AddHttpApiKeyAuthPluginTest {
     @Test
-    public void httpApiKeyAuthClient() {
-        MockManifest manifest = new MockManifest();
-        PluginContext context = PluginContext.builder()
-                .pluginClassLoader(getClass().getClassLoader())
-                .model(Model.assembler()
-                        .addImport(getClass().getResource("http-api-key-auth-trait.smithy"))
-                        .discoverModels()
-                        .assemble()
-                        .unwrap())
-                .fileManifest(manifest)
-                .settings(Node.objectNodeBuilder()
-                        .withMember("service", Node.from("smithy.example#Example"))
-                        .withMember("package", Node.from("example"))
-                        .withMember("packageVersion", Node.from("1.0.0"))
-                        .build())
-                .build();
-
-        new TypeScriptCodegenPlugin().execute(context);
-
-        // Ensure that the client imports the config properly and calls the resolve function.
-        assertThat(manifest.getFileString(CodegenUtils.SOURCE_FOLDER + "/ExampleClient.ts").get(),
-                containsString("from \"./middleware/HttpApiKeyAuth\""));
-        assertThat(manifest.getFileString(CodegenUtils.SOURCE_FOLDER + "/ExampleClient.ts").get(),
-                containsString("= resolveHttpApiKeyAuthConfig("));
-
-        // Ensure that the GetFoo operation imports the middleware and uses it with all the options.
-        assertThat(manifest.getFileString(CodegenUtils.SOURCE_FOLDER + "/commands/GetFooCommand.ts").get(),
-                containsString("from \"../middleware/HttpApiKeyAuth\""));
-        assertThat(manifest.getFileString(CodegenUtils.SOURCE_FOLDER + "/commands/GetFooCommand.ts").get(),
-                containsString("this.middlewareStack.use(getHttpApiKeyAuthPlugin(configuration, { scheme: 'ApiKey', "
-                        + "in: 'header', name: 'Authorization'}));"));
-
-        // Ensure that the GetBar operation does not import the middleware or use it.
-        assertThat(manifest.getFileString(CodegenUtils.SOURCE_FOLDER + "/commands/GetBarCommand.ts").get(),
-                not(containsString("from \"../middleware/HttpApiKeyAuth\"")));
-        assertThat(manifest.getFileString(CodegenUtils.SOURCE_FOLDER + "/commands/GetBarCommand.ts").get(),
-                not(containsString("this.middlewareStack.use(getHttpApiKeyAuthPlugin")));
+    public void httpApiKeyAuthClientOnService() {
+        testInjects("http-api-key-auth-trait.smithy", ", { scheme: 'ApiKey', in: 'header', name: 'Authorization'}");
+    }
 
-        // Make sure that the middleware file was written and exports the plugin symbol.
-        assertThat(manifest.getFileString(CodegenUtils.SOURCE_FOLDER + "/middleware/HttpApiKeyAuth/index.ts").get(),
-                containsString("export const getHttpApiKeyAuthPlugin"));
+    @Test
+    public void httpApiKeyAuthClientOnOperation() {
+        testInjects("http-api-key-auth-trait-on-operation.smithy",
+                ", { scheme: 'ApiKey', in: 'header', name: 'Authorization'}");
     }
 
     // This should be identical to the httpApiKeyAuthClient test except for the parameters provided
     // to the middleware.
     @Test
     public void httpApiKeyAuthClientNoScheme() {
-        MockManifest manifest = new MockManifest();
-        PluginContext context = PluginContext.builder()
-                .pluginClassLoader(getClass().getClassLoader())
-                .model(Model.assembler()
-                        .addImport(getClass().getResource("http-api-key-auth-trait-no-scheme.smithy"))
-                        .discoverModels()
-                        .assemble()
-                        .unwrap())
-                .fileManifest(manifest)
-                .settings(Node.objectNodeBuilder()
-                        .withMember("service", Node.from("smithy.example#Example"))
-                        .withMember("package", Node.from("example"))
-                        .withMember("packageVersion", Node.from("1.0.0"))
-                        .build())
-                .build();
+        testInjects("http-api-key-auth-trait-no-scheme.smithy", ", { in: 'header', name: 'Authorization'}");
+    }
 
-        new TypeScriptCodegenPlugin().execute(context);
+    private void testInjects(String filename, String extra) {
+        MockManifest manifest = generate(filename);
 
         // Ensure that the client imports the config properly and calls the resolve function.
         assertThat(manifest.getFileString(CodegenUtils.SOURCE_FOLDER + "/ExampleClient.ts").get(),
@@ -105,8 +60,7 @@ public void httpApiKeyAuthClientNoScheme() {
         assertThat(manifest.getFileString(CodegenUtils.SOURCE_FOLDER + "/commands/GetFooCommand.ts").get(),
                 containsString("from \"../middleware/HttpApiKeyAuth\""));
         assertThat(manifest.getFileString(CodegenUtils.SOURCE_FOLDER + "/commands/GetFooCommand.ts").get(),
-                containsString("this.middlewareStack.use(getHttpApiKeyAuthPlugin(configuration, { "
-                        + "in: 'header', name: 'Authorization'}));"));
+                containsString("this.middlewareStack.use(getHttpApiKeyAuthPlugin(configuration" + extra + "));"));
 
         // Ensure that the GetBar operation does not import the middleware or use it.
         assertThat(manifest.getFileString(CodegenUtils.SOURCE_FOLDER + "/commands/GetBarCommand.ts").get(),
@@ -119,13 +73,13 @@ public void httpApiKeyAuthClientNoScheme() {
                 containsString("export const getHttpApiKeyAuthPlugin"));
     }
 
-    @Test
-    public void notAnHttpApiKeyAuthClient() {
+    private MockManifest generate(String filename)
+    {
         MockManifest manifest = new MockManifest();
         PluginContext context = PluginContext.builder()
                 .pluginClassLoader(getClass().getClassLoader())
                 .model(Model.assembler()
-                        .addImport(getClass().getResource("endpoint-trait.smithy"))
+                        .addImport(getClass().getResource(filename))
                         .discoverModels()
                         .assemble()
                         .unwrap())
@@ -139,43 +93,25 @@ public void notAnHttpApiKeyAuthClient() {
 
         new TypeScriptCodegenPlugin().execute(context);
 
-        // Make sure that the config and middleware were not added to the client.
-        assertThat(manifest.getFileString(CodegenUtils.SOURCE_FOLDER + "/ExampleClient.ts").get(),
-                not(containsString("= resolveHttpApiKeyAuthConfig(")));
-        assertThat(manifest.getFileString(CodegenUtils.SOURCE_FOLDER + "/ExampleClient.ts").get(),
-                not(containsString("from \"./middleware/HttpApiKeyAuth\"")));
-
-        // Make sure that the import and middleware were not used in the operation.
-        assertThat(manifest.getFileString(CodegenUtils.SOURCE_FOLDER + "/commands/GetFooCommand.ts").get(),
-                not(containsString("from \"../middleware/HttpApiKeyAuth\"")));
-        assertThat(manifest.getFileString(CodegenUtils.SOURCE_FOLDER + "/commands/GetFooCommand.ts").get(),
-                not(containsString("this.middlewareStack.use(getHttpApiKeyAuthPlugin(configuration")));
+        return manifest;
+    }
 
-        // Make sure that the middleware file was not written.
-        assertThat(manifest.getFileString(CodegenUtils.SOURCE_FOLDER + "/middleware/HttpApiKeyAuth/index.ts")
-                .isPresent(),
-                is(false));
+    @Test
+    public void notAnHttpApiKeyAuthClient() {
+        testDoesNotInject("endpoint-trait.smithy");
     }
 
     @Test
     public void httpApiKeyAuthClientWithAllOptionalAuthOperations() {
-        MockManifest manifest = new MockManifest();
-        PluginContext context = PluginContext.builder()
-                .pluginClassLoader(getClass().getClassLoader())
-                .model(Model.assembler()
-                        .addImport(getClass().getResource("http-api-key-auth-trait-unused.smithy"))
-                        .discoverModels()
-                        .assemble()
-                        .unwrap())
-                .fileManifest(manifest)
-                .settings(Node.objectNodeBuilder()
-                        .withMember("service", Node.from("smithy.example#Example"))
-                        .withMember("package", Node.from("example"))
-                        .withMember("packageVersion", Node.from("1.0.0"))
-                        .build())
-                .build();
+        testDoesNotInject("http-api-key-auth-trait-all-optional.smithy");
+    }
+    @Test
+    public void httpApiKeyAuthClientWithNoAuthTraits() {
+        testDoesNotInject("http-api-key-auth-trait-unused.smithy");
+    }
 
-        new TypeScriptCodegenPlugin().execute(context);
+    private void testDoesNotInject(String filename) {
+        MockManifest manifest = generate(filename);
 
         // Make sure that the config and middleware were not added to the client.
         assertThat(manifest.getFileString(CodegenUtils.SOURCE_FOLDER + "/ExampleClient.ts").get(),

smithy-typescript-codegen/src/test/resources/software/amazon/smithy/typescript/codegen/integration/http-api-key-auth-trait-all-optional.smithy

@@ -0,0 +1,39 @@
+namespace smithy.example
+
+// This test input is used to validate that the generated client properly injects
+// the HTTP API key authentication middleware with the correct options.
+//
+// In this case the operations all have the `@optionalAuth` trait, so the middleware
+// should not be injected at all.
+
+@httpApiKeyAuth(in: "header", name: "Authorization", scheme: "ApiKey")
+service Example {
+    version: "2019-10-15",
+    operations: [GetFoo, GetBar]
+}
+
+@optionalAuth
+operation GetFoo {
+    input: GetFooInput,
+    output: GetFooOutput,
+    errors: [GetFooError]
+}
+
+structure GetFooInput {}
+structure GetFooOutput {}
+
+@error("client")
+structure GetFooError {}
+
+@optionalAuth
+operation GetBar {
+    input: GetBarInput,
+    output: GetBarOutput,
+    errors: [GetBarError]
+}
+
+structure GetBarInput {}
+structure GetBarOutput {}
+
+@error("client")
+structure GetBarError {}

smithy-typescript-codegen/src/test/resources/software/amazon/smithy/typescript/codegen/integration/http-api-key-auth-trait-no-scheme.smithy

@@ -1,6 +1,12 @@
 namespace smithy.example
 
+// This test input is used to validate that the generated client properly injects
+// the HTTP API key authentication middleware with the correct options.
+//
+// In this case the options should not include the `scheme` attribute.
+
 @httpApiKeyAuth(in: "header", name: "Authorization")
+@auth([httpApiKeyAuth])
 service Example {
     version: "2019-10-15",
     operations: [GetFoo, GetBar]

smithy-typescript-codegen/src/test/resources/software/amazon/smithy/typescript/codegen/integration/http-api-key-auth-trait-on-operation.smithy

@@ -0,0 +1,38 @@
+namespace smithy.example
+
+// This test input is used to validate that the generated client properly injects
+// the HTTP API key authentication middleware with the correct options.
+//
+// In this scenario the `@auth` trait is on the operation rather than the service.
+
+@httpApiKeyAuth(in: "header", name: "Authorization", scheme: "ApiKey")
+service Example {
+    version: "2019-10-15",
+    operations: [GetFoo, GetBar]
+}
+
+@auth([httpApiKeyAuth])
+operation GetFoo {
+    input: GetFooInput,
+    output: GetFooOutput,
+    errors: [GetFooError]
+}
+
+structure GetFooInput {}
+structure GetFooOutput {}
+
+@error("client")
+structure GetFooError {}
+
+@optionalAuth
+operation GetBar {
+    input: GetBarInput,
+    output: GetBarOutput,
+    errors: [GetBarError]
+}
+
+structure GetBarInput {}
+structure GetBarOutput {}
+
+@error("client")
+structure GetBarError {}

smithy-typescript-codegen/src/test/resources/software/amazon/smithy/typescript/codegen/integration/http-api-key-auth-trait-unused.smithy

@@ -1,12 +1,18 @@
 namespace smithy.example
 
+// This test input is used to validate that the generated client properly injects
+// the HTTP API key authentication middleware with the correct options.
+//
+// In this scenario the `@httpApiKeyAuth` trait is specified on the service, but
+// since there is no `@auth` trait on the service or on the operations, the HTTP
+// API key auth is unused, so the middleware should not be injected at all.
+
 @httpApiKeyAuth(in: "header", name: "Authorization", scheme: "ApiKey")
 service Example {
     version: "2019-10-15",
     operations: [GetFoo, GetBar]
 }
 
-@optionalAuth
 operation GetFoo {
     input: GetFooInput,
     output: GetFooOutput,
@@ -18,16 +24,3 @@ structure GetFooOutput {}
 
 @error("client")
 structure GetFooError {}
-
-@optionalAuth
-operation GetBar {
-    input: GetBarInput,
-    output: GetBarOutput,
-    errors: [GetBarError]
-}
-
-structure GetBarInput {}
-structure GetBarOutput {}
-
-@error("client")
-structure GetBarError {}

smithy-typescript-codegen/src/test/resources/software/amazon/smithy/typescript/codegen/integration/http-api-key-auth-trait.smithy

@@ -1,6 +1,13 @@
 namespace smithy.example
 
+// This test input is used to validate that the generated client properly injects
+// the HTTP API key authentication middleware with the correct options.
+//
+// In this scenario the `@auth` trait is on the service and therefore applies to
+// all operations except operations with the `@optionalAuth` trait.
+
 @httpApiKeyAuth(in: "header", name: "Authorization", scheme: "ApiKey")
+@auth([httpApiKeyAuth])
 service Example {
     version: "2019-10-15",
     operations: [GetFoo, GetBar]