fix(api): interceptors refactoring (#1247)

* feat(datastore): InterceptorsConfig init

* feat(datastore): consume interceptors from plugin

* feat(datastore): interceptors from endpointconfig

* feat(datastore): AWSAuthorizationConfiguration factory

* chore(api): rename AWSConfiguration factory method, add docs

* chore(api): fix outdated integration tests

* chore(api): add tests for EndpointInterceptorsConfig

* chore(api): add tests for AWSAPICategoryPluginConfiguration

* chore(api): address PR comments

* chore(api): rename APIEndpointInterceptorsConfig

Author: diegocstn

AmplifyPlugins/API/APICategoryPlugin.xcodeproj/project.pbxproj

@@ -137,6 +137,8 @@
 		6BD462082538102500906831 /* AuthTokenProviderWrapper.swift in Sources */ = {isa = PBXBuildFile; fileRef = 6BD462072538102500906831 /* AuthTokenProviderWrapper.swift */; };
 		76148E0925D896EA007F3F21 /* URLComponents+sigv4Encoding.swift in Sources */ = {isa = PBXBuildFile; fileRef = 76148E0825D896EA007F3F21 /* URLComponents+sigv4Encoding.swift */; };
 		7632AD8A252E1E10009B5BC9 /* AppSyncJSONValue+toJSONValue.swift in Sources */ = {isa = PBXBuildFile; fileRef = 7632AD89252E1E10009B5BC9 /* AppSyncJSONValue+toJSONValue.swift */; };
+		76A240762665566C0001B523 /* AWSAPIEndpointInterceptorsTests.swift in Sources */ = {isa = PBXBuildFile; fileRef = 76A240752665566C0001B523 /* AWSAPIEndpointInterceptorsTests.swift */; };
+		76DCCD2E265EDDDD00BD7964 /* AWSAPIEndpointInterceptors.swift in Sources */ = {isa = PBXBuildFile; fileRef = 76DCCD2D265EDDDD00BD7964 /* AWSAPIEndpointInterceptors.swift */; };
 		9B13EA5E48896E8B38883633 /* Pods_HostApp.framework in Frameworks */ = {isa = PBXBuildFile; fileRef = 930DD773E0FB4047393CA2AD /* Pods_HostApp.framework */; };
 		A04815BCD5F9181C8AEDEF43 /* Pods_AWSAPICategoryPlugin.framework in Frameworks */ = {isa = PBXBuildFile; fileRef = 881AB4B98B48235DEC7754C2 /* Pods_AWSAPICategoryPlugin.framework */; };
 		B1F5048F35638D3D142C4F1F /* Pods_AWSAPICategoryPlugin_AWSAPICategoryPluginTests.framework in Frameworks */ = {isa = PBXBuildFile; fileRef = 1B13CFC866A30622EDD91AF4 /* Pods_AWSAPICategoryPlugin_AWSAPICategoryPluginTests.framework */; };
@@ -474,6 +476,8 @@
 		74EDB7008F5342ED4B38C9CA /* Pods_HostApp_AWSAPICategoryPluginIntegrationTests.framework */ = {isa = PBXFileReference; explicitFileType = wrapper.framework; includeInIndex = 0; path = Pods_HostApp_AWSAPICategoryPluginIntegrationTests.framework; sourceTree = BUILT_PRODUCTS_DIR; };
 		76148E0825D896EA007F3F21 /* URLComponents+sigv4Encoding.swift */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.swift; path = "URLComponents+sigv4Encoding.swift"; sourceTree = "<group>"; };
 		7632AD89252E1E10009B5BC9 /* AppSyncJSONValue+toJSONValue.swift */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.swift; path = "AppSyncJSONValue+toJSONValue.swift"; sourceTree = "<group>"; };
+		76A240752665566C0001B523 /* AWSAPIEndpointInterceptorsTests.swift */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.swift; path = AWSAPIEndpointInterceptorsTests.swift; sourceTree = "<group>"; };
+		76DCCD2D265EDDDD00BD7964 /* AWSAPIEndpointInterceptors.swift */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.swift; path = AWSAPIEndpointInterceptors.swift; sourceTree = "<group>"; };
 		77792DD821FC754D857FC63C /* Pods-HostApp-AWSAPICategoryPluginTestCommon-GraphQLWithIAMIntegrationTests.release.xcconfig */ = {isa = PBXFileReference; includeInIndex = 1; lastKnownFileType = text.xcconfig; name = "Pods-HostApp-AWSAPICategoryPluginTestCommon-GraphQLWithIAMIntegrationTests.release.xcconfig"; path = "Target Support Files/Pods-HostApp-AWSAPICategoryPluginTestCommon-GraphQLWithIAMIntegrationTests/Pods-HostApp-AWSAPICategoryPluginTestCommon-GraphQLWithIAMIntegrationTests.release.xcconfig"; sourceTree = "<group>"; };
 		7866FCFB5807C2D20219CEBE /* Pods-HostApp-AWSAPICategoryPluginTestCommon-RESTWithIAMIntegrationTests.release.xcconfig */ = {isa = PBXFileReference; includeInIndex = 1; lastKnownFileType = text.xcconfig; name = "Pods-HostApp-AWSAPICategoryPluginTestCommon-RESTWithIAMIntegrationTests.release.xcconfig"; path = "Target Support Files/Pods-HostApp-AWSAPICategoryPluginTestCommon-RESTWithIAMIntegrationTests/Pods-HostApp-AWSAPICategoryPluginTestCommon-RESTWithIAMIntegrationTests.release.xcconfig"; sourceTree = "<group>"; };
 		7A255F655FE0AE43E68F2972 /* Pods-HostApp-AWSAPICategoryPluginTestCommon-GraphQLWithUserPoolIntegrationTests.debug.xcconfig */ = {isa = PBXFileReference; includeInIndex = 1; lastKnownFileType = text.xcconfig; name = "Pods-HostApp-AWSAPICategoryPluginTestCommon-GraphQLWithUserPoolIntegrationTests.debug.xcconfig"; path = "Target Support Files/Pods-HostApp-AWSAPICategoryPluginTestCommon-GraphQLWithUserPoolIntegrationTests/Pods-HostApp-AWSAPICategoryPluginTestCommon-GraphQLWithUserPoolIntegrationTests.debug.xcconfig"; sourceTree = "<group>"; };
@@ -923,6 +927,7 @@
 			children = (
 				21D7A094237B54D90057D00D /* AWSAPICategoryPluginConfiguration.swift */,
 				21D7A095237B54D90057D00D /* AWSAPICategoryPluginConfiguration+EndpointConfig.swift */,
+				76DCCD2D265EDDDD00BD7964 /* AWSAPIEndpointInterceptors.swift */,
 				217856B62381F19300A30D19 /* AWSAPICategoryPluginEndpointType.swift */,
 			);
 			path = Configuration;
@@ -1176,6 +1181,7 @@
 			children = (
 				B4DFA5C7237A611D0013E17B /* AWSAPICategoryPluginConfigurationEndpointConfigTests.swift */,
 				B4DFA5C8237A611D0013E17B /* AWSAPICategoryPluginConfigurationTests.swift */,
+				76A240752665566C0001B523 /* AWSAPIEndpointInterceptorsTests.swift */,
 			);
 			path = Configuration;
 			sourceTree = "<group>";
@@ -2363,6 +2369,7 @@
 				21D7A119237B54D90057D00D /* IAMURLRequestInterceptor.swift in Sources */,
 				21D7A114237B54D90057D00D /* GraphQLOperationRequest+Validate.swift in Sources */,
 				21D7A0E3237B54D90057D00D /* AWSGraphQLOperation+APIOperation.swift in Sources */,
+				76DCCD2E265EDDDD00BD7964 /* AWSAPIEndpointInterceptors.swift in Sources */,
 				21D7A0E0237B54D90057D00D /* AWSGraphQLSubscriptionOperation.swift in Sources */,
 				21D7A10B237B54D90057D00D /* AWSAppSyncGraphQLResponse.swift in Sources */,
 				2129BE3E239486D2006363A1 /* AnyModel+JSONInit.swift in Sources */,
@@ -2420,6 +2427,7 @@
 				B4DFA5F5237A611D0013E17B /* APIKeyURLRequestInterceptorTests.swift in Sources */,
 				B4DFA5EA237A611D0013E17B /* AWSAPICategoryPlugin+GraphQLBehaviorTests.swift in Sources */,
 				21A4F44125A6390B00E1047D /* AppSyncModelMetadataTests.swift in Sources */,
+				76A240762665566C0001B523 /* AWSAPIEndpointInterceptorsTests.swift in Sources */,
 				FA249EE524C5F8CC009B3CE8 /* GraphQLSubscribeCombineTests.swift in Sources */,
 				21A4F98F25A7BF9E00E1047D /* AppSyncListResponseTests.swift in Sources */,
 				21A4EF34259E39A200E1047D /* AppSyncListDecoderTests.swift in Sources */,

AmplifyPlugins/API/AWSAPICategoryPlugin/AWSAPIPlugin+InterceptorBehavior.swift

@@ -14,6 +14,6 @@ public extension AWSAPIPlugin {
                                                        "")
         }
 
-        pluginConfig.endpoints[apiName]?.addInterceptor(interceptor: interceptor)
+        pluginConfig.addInterceptor(interceptor, toEndpoint: apiName)
     }
 }

AmplifyPlugins/API/AWSAPICategoryPlugin/Configuration/AWSAPICategoryPluginConfiguration+EndpointConfig.swift

@@ -11,19 +11,22 @@ import AWSPluginsCore
 import AWSCore
 
 public extension AWSAPICategoryPluginConfiguration {
-
     struct EndpointConfig {
-
+        // API name
         let name: String
+
         let baseURL: URL
         let region: AWSRegionType?
+
+        // default authorization type
         let authorizationType: AWSAuthorizationType
+
+        // default authorization configuration
         let authorizationConfiguration: AWSAuthorizationConfiguration
+
         let endpointType: AWSAPICategoryPluginEndpointType
-        // TODO: Refactor into an "Intercepting connection configuration" or similar --
-        // EndpointConfig shouldn't be holding onto interceptors; it should just be a data holder.
-        // https://github.com/aws-amplify/amplify-ios/issues/73
-        var interceptors = [URLRequestInterceptor]()
+
+        var apiKey: String?
 
         public init(name: String,
                     jsonValue: JSONValue,
@@ -42,12 +45,17 @@ public extension AWSAPICategoryPluginConfiguration {
                 )
             }
 
+            var apiKeyValue: String?
+            if case .string(let apiKey) = endpointJSON["apiKey"] {
+                apiKeyValue = apiKey
+            }
+
             try self.init(name: name,
                           baseURL: EndpointConfig.getBaseURL(from: endpointJSON),
-                          region: EndpointConfig.getRegion(from: endpointJSON),
-                          authorizationType: EndpointConfig.getAuthorizationType(from: endpointJSON),
-                          authorizationConfiguration: EndpointConfig.getAuthorizationConfiguration(from: endpointJSON),
+                          region: AWSRegionType.region(from: endpointJSON),
+                          authorizationType: AWSAuthorizationType.from(endpointJSON: endpointJSON),
                           endpointType: EndpointConfig.getEndpointType(from: endpointJSON),
+                          apiKey: apiKeyValue,
                           apiAuthProviderFactory: apiAuthProviderFactory,
                           authService: authService)
         }
@@ -56,62 +64,25 @@ public extension AWSAPICategoryPluginConfiguration {
              baseURL: URL,
              region: AWSRegionType?,
              authorizationType: AWSAuthorizationType,
-             authorizationConfiguration: AWSAuthorizationConfiguration,
              endpointType: AWSAPICategoryPluginEndpointType,
+             apiKey: String? = nil,
              apiAuthProviderFactory: APIAuthProviderFactory,
              authService: AWSAuthServiceBehavior? = nil) throws {
             self.name = name
             self.baseURL = baseURL
             self.region = region
             self.authorizationType = authorizationType
-            self.authorizationConfiguration = authorizationConfiguration
+            self.authorizationConfiguration = try AWSAuthorizationConfiguration.makeConfiguration(authType: authorizationType,
+                                                                                         region: region,
+                                                                                         apiKey: apiKey)
             self.endpointType = endpointType
-            try addInterceptors(authService: authService, apiAuthProviderFactory: apiAuthProviderFactory)
+            self.apiKey = apiKey
         }
 
-        public mutating func addInterceptor(interceptor: URLRequestInterceptor) {
-            interceptors.append(interceptor)
-        }
-
-        // MARK: Private
-
-        /// Adds auto-discovered interceptors. Currently only works for authorization interceptors
-        private mutating func addInterceptors(authService: AWSAuthServiceBehavior? = nil,
-                                              apiAuthProviderFactory: APIAuthProviderFactory) throws {
-            switch authorizationConfiguration {
-            case .none:
-                // No interceptors needed
-                break
-            case .apiKey(let apiKeyConfig):
-                let provider = BasicAPIKeyProvider(apiKey: apiKeyConfig.apiKey)
-                let interceptor = APIKeyURLRequestInterceptor(apiKeyProvider: provider)
-                addInterceptor(interceptor: interceptor)
-            case .awsIAM(let iamConfig):
-                guard let authService = authService else {
-                    throw PluginError.pluginConfigurationError("AuthService is not set for IAM",
-                                                               "")
-                }
-                let provider = BasicIAMCredentialsProvider(authService: authService)
-                let interceptor = IAMURLRequestInterceptor(iamCredentialsProvider: provider,
-                                                           region: iamConfig.region,
-                                                           endpointType: endpointType)
-                addInterceptor(interceptor: interceptor)
-            case .amazonCognitoUserPools:
-                guard let authService = authService else {
-                    throw PluginError.pluginConfigurationError("AuthService not set for cognito user pools",
-                                                               "")
-                }
-                let provider = BasicUserPoolTokenProvider(authService: authService)
-                let interceptor = UserPoolURLRequestInterceptor(userPoolTokenProvider: provider)
-                addInterceptor(interceptor: interceptor)
-            case .openIDConnect:
-                guard let oidcAuthProvider = apiAuthProviderFactory.oidcAuthProvider() else {
-                    return
-                }
-                let wrappedAuthProvider = AuthTokenProviderWrapper(oidcAuthProvider: oidcAuthProvider)
-                let interceptor = UserPoolURLRequestInterceptor(userPoolTokenProvider: wrappedAuthProvider)
-                addInterceptor(interceptor: interceptor)
-            }
+        public func authorizationConfigurationFor(authType: AWSAuthorizationType) throws -> AWSAuthorizationConfiguration {
+            return try AWSAuthorizationConfiguration.makeConfiguration(authType: authType,
+                                                              region: region,
+                                                              apiKey: apiKey)
         }
 
         // MARK: - Configuration file helpers
@@ -142,23 +113,6 @@ public extension AWSAPICategoryPluginConfiguration {
             return baseURL
         }
 
-        private static func getRegion(from endpointJSON: [String: JSONValue]) throws -> AWSRegionType? {
-            let region: AWSRegionType?
-
-            if case .string(let endpointRegion) = endpointJSON["region"] {
-                let regionType = endpointRegion.aws_regionTypeValue()
-                guard regionType != AWSRegionType.Unknown else {
-                    return nil
-                }
-
-                region = regionType
-            } else {
-                region = nil
-            }
-
-            return region
-        }
-
         private static func getEndpointType(from endpointJSON: [String: JSONValue]) throws ->
             AWSAPICategoryPluginEndpointType {
 
@@ -187,99 +141,64 @@ public extension AWSAPICategoryPluginConfiguration {
 
             return endpointType
         }
+    }
+}
 
-        private static func getAuthorizationType(
-            from endpointJSON: [String: JSONValue]
-        ) throws -> AWSAuthorizationType {
-            guard case .string(let authorizationTypeString) = endpointJSON["authorizationType"] else {
-                throw PluginError.pluginConfigurationError(
-                    "Could not get `AuthorizationType` from plugin configuration",
-                    """
-                    The specified configuration does not have a string with the key `AuthorizationType`. Review the \
-                    configuration and ensure it contains the expected values:
-                    \(endpointJSON)
-                    """
-                )
-            }
-
-            guard let authorizationType = AWSAuthorizationType(rawValue: authorizationTypeString) else {
-                let authTypes = AWSAuthorizationType.allCases.map { $0.rawValue }.joined(separator: ", ")
-                throw PluginError.pluginConfigurationError(
-                    "Could not convert `\(authorizationTypeString)` to an AWSAuthorizationType",
-                    """
-                    The "authorizationType" value in the specified configuration cannot be converted to an \
-                    AWSAuthorizationType. Review the configuration and ensure it contains a valid value \
-                    (\(authTypes)):
-                    \(endpointJSON)
-                    """
-                )
-            }
+// MARK: - AWSRegionType + fromEndpointJSON
 
-            return authorizationType
-        }
+private extension AWSRegionType {
+    static func region(from endpointJSON: [String: JSONValue]) throws -> AWSRegionType? {
+        let region: AWSRegionType?
 
-        // TODO: Refactor auth configuration creation into separate files--this file is for endpoint configs
-        // https://github.com/aws-amplify/amplify-ios/issues/73
-        private static func getAuthorizationConfiguration(from endpointJSON: [String: JSONValue])
-            throws -> AWSAuthorizationConfiguration {
-            let authType = try getAuthorizationType(from: endpointJSON)
-
-            switch authType {
-            case .none:
-                return .none
-            case .apiKey:
-                return try apiKeyAuthorizationConfiguration(from: endpointJSON)
-            case .awsIAM:
-                return try awsIAMAuthorizationConfiguration(from: endpointJSON)
-            case .openIDConnect:
-                return try oidcAuthorizationConfiguration(from: endpointJSON)
-            case .amazonCognitoUserPools:
-                return try userPoolsAuthorizationConfiguration(from: endpointJSON)
+        if case .string(let endpointRegion) = endpointJSON["region"] {
+            let regionType = endpointRegion.aws_regionTypeValue()
+            guard regionType != AWSRegionType.Unknown else {
+                return nil
             }
 
+            region = regionType
+        } else {
+            region = nil
         }
 
-        private static func apiKeyAuthorizationConfiguration(from endpointJSON: [String: JSONValue])
-            throws -> AWSAuthorizationConfiguration {
-
-                guard case .string(let apiKey) = endpointJSON["apiKey"] else {
-                    throw PluginError.pluginConfigurationError(
-                        "Could not get `ApiKey` from plugin configuration",
-                        """
-                        The specified configuration does not have a string with the key `ApiKey`. Review the \
-                        configuration and ensure it contains the expected values:
-                        \(endpointJSON)
-                        """
-                    )
-                }
-
-                let config = APIKeyConfiguration(apiKey: apiKey)
-                return .apiKey(config)
-        }
+        return region
+    }
+}
 
-        static func awsIAMAuthorizationConfiguration(from endpointJSON: [String: JSONValue])
-            throws -> AWSAuthorizationConfiguration {
-                let regionOptional = try EndpointConfig.getRegion(from: endpointJSON)
-                guard let region = regionOptional else {
-                    throw PluginError.pluginConfigurationError("Region is not set for IAM",
-                                                               "Set the region")
-                }
-                return .awsIAM(AWSIAMConfiguration(region: region))
-        }
+// MARK: - AWSAuthorizationType + fromEndpointJSON
 
-        static func oidcAuthorizationConfiguration(from endpointJSON: [String: JSONValue])
-            throws -> AWSAuthorizationConfiguration {
-                return .openIDConnect(OIDCConfiguration())
+private extension AWSAuthorizationType {
+    static func from(endpointJSON: [String: JSONValue]) throws -> AWSAuthorizationType {
+        guard case .string(let authorizationTypeString) = endpointJSON["authorizationType"] else {
+            throw PluginError.pluginConfigurationError(
+                "Could not get `AuthorizationType` from plugin configuration",
+                """
+                The specified configuration does not have a string with the key `AuthorizationType`. Review the \
+                configuration and ensure it contains the expected values:
+                \(endpointJSON)
+                """
+            )
         }
 
-        static func userPoolsAuthorizationConfiguration(from endpointJSON: [String: JSONValue])
-            throws -> AWSAuthorizationConfiguration {
-                return .amazonCognitoUserPools(CognitoUserPoolsConfiguration())
+        guard let authorizationType = AWSAuthorizationType(rawValue: authorizationTypeString) else {
+            let authTypes = AWSAuthorizationType.allCases.map { $0.rawValue }.joined(separator: ", ")
+            throw PluginError.pluginConfigurationError(
+                "Could not convert `\(authorizationTypeString)` to an AWSAuthorizationType",
+                """
+                The "authorizationType" value in the specified configuration cannot be converted to an \
+                AWSAuthorizationType. Review the configuration and ensure it contains a valid value \
+                (\(authTypes)):
+                \(endpointJSON)
+                """
+            )
         }
 
+        return authorizationType
     }
 }
 
+// MARK: - Dictionary + AWSAPICategoryPluginConfiguration.EndpointConfig
+
 extension Dictionary where Key == String, Value == AWSAPICategoryPluginConfiguration.EndpointConfig {
 
     /// Getting the `EndpointConfig` resolves to the following rules: