chore: kickoff release

Author: sebaland

Amplify/Categories/DataStore/Query/ModelKey.swift

@@ -56,6 +56,11 @@ extension CodingKey where Self: ModelKey {
         return key.contains(value)
     }
 
+    // MARK: - not contains
+    public func notContains(_ value: String) -> QueryPredicateOperation {
+        return field(stringValue).notContains(value)
+    }
+
     // MARK: - eq
 
     public func eq(_ value: Persistable?) -> QueryPredicateOperation {

Amplify/Categories/DataStore/Query/QueryField.swift

@@ -34,6 +34,7 @@ public protocol QueryFieldOperation {
     func beginsWith(_ value: String) -> QueryPredicateOperation
     func between(start: Persistable, end: Persistable) -> QueryPredicateOperation
     func contains(_ value: String) -> QueryPredicateOperation
+    func notContains(_ value: String) -> QueryPredicateOperation
     func eq(_ value: Persistable?) -> QueryPredicateOperation
     func eq(_ value: EnumPersistable) -> QueryPredicateOperation
     func ge(_ value: Persistable) -> QueryPredicateOperation
@@ -84,6 +85,11 @@ public struct QueryField: QueryFieldOperation {
         return key.contains(value)
     }
 
+    // MARK: - not contains
+    public func notContains(_ value: String) -> QueryPredicateOperation {
+        return QueryPredicateOperation(field: name, operator: .notContains(value))
+    }
+
     // MARK: - eq
 
     public func eq(_ value: Persistable?) -> QueryPredicateOperation {

Amplify/Categories/DataStore/Query/QueryOperator.swift

@@ -15,6 +15,7 @@ public enum QueryOperator {
     case greaterOrEqual(_ value: Persistable)
     case greaterThan(_ value: Persistable)
     case contains(_ value: String)
+    case notContains(_ value: String)
     case between(start: Persistable, end: Persistable)
     case beginsWith(_ value: String)
 
@@ -37,6 +38,10 @@ public enum QueryOperator {
                 return targetString.contains(predicateString)
             }
             return false
+        case .notContains(let predicateString):
+            if let targetString = target as? String {
+                return !targetString.contains(predicateString)
+            }
         case .between(let start, let end):
             return PersistableHelper.isBetween(start, end, target)
         case .beginsWith(let predicateValue):

AmplifyPlugins/Auth/Sources/AWSCognitoAuthPlugin/Support/Helpers/ConfigurationHelper.swift

@@ -94,7 +94,11 @@ struct ConfigurationHelper {
                                            scopes: scopesArray,
                                            signInRedirectURI: signInRedirectURI,
                                            signOutRedirectURI: signOutRedirectURI)
-        return HostedUIConfigurationData(clientId: appClientId, oauth: oauth, clientSecret: nil)
+        var clientSecret: String?
+        if case .string(let appClientSecret) = configuration?.value(at: "AppClientSecret") {
+            clientSecret = appClientSecret
+        }
+        return HostedUIConfigurationData(clientId: appClientId, oauth: oauth, clientSecret: clientSecret)
     }
 
     static func parseIdentityPoolData(_ config: JSONValue) -> IdentityPoolConfigurationData? {

AmplifyPlugins/Auth/Sources/AWSCognitoAuthPlugin/Support/HostedUI/HostedUIRequestHelper.swift

@@ -116,6 +116,7 @@ struct HostedUIRequestHelper {
         var urlRequest = URLRequest(url: url)
         urlRequest.httpMethod = "POST"
         urlRequest.httpBody = body.data(using: .utf8)
+        urlRequest.addHeaders(using: configuration)
         return urlRequest
     }
 
@@ -145,6 +146,7 @@ struct HostedUIRequestHelper {
             var urlRequest = URLRequest(url: url)
             urlRequest.httpMethod = "POST"
             urlRequest.httpBody = body.data(using: .utf8)
+            urlRequest.addHeaders(using: configuration)
             return urlRequest
         }
 
@@ -154,3 +156,14 @@ struct HostedUIRequestHelper {
             .replacingOccurrences(of: "=", with: "")
     }
 }
+
+private extension URLRequest {
+    mutating func addHeaders(using configuration: HostedUIConfigurationData) {
+        guard let clientSecret = configuration.clientSecret,
+              let value = "\(configuration.clientId):\(clientSecret)".data(using: .utf8) else {
+            return
+        }
+
+        setValue("Basic \(value.base64EncodedString())", forHTTPHeaderField: "Authorization")
+    }
+}

AmplifyPlugins/Auth/Tests/AWSCognitoAuthPluginUnitTests/Support/HostedUIRequestHelperTests.swift

@@ -0,0 +1,113 @@
+//
+// Copyright Amazon.com Inc. or its affiliates.
+// All Rights Reserved.
+//
+// SPDX-License-Identifier: Apache-2.0
+//
+
+import Foundation
+
+@testable import AWSCognitoAuthPlugin
+import Amplify
+import XCTest
+
+class HostedUIRequestHelperTests: XCTestCase {
+    private var configuration: HostedUIConfigurationData!
+    private let result = HostedUIResult(
+        code: "code",
+        state: "state",
+        codeVerifier: "codeVerifier",
+        options: .init(
+            scopes: [],
+            providerInfo: .init(
+                authProvider: nil,
+                idpIdentifier: nil
+            ),
+            presentationAnchor: nil,
+            preferPrivateSession: false)
+    )
+
+    override func setUp() {
+        createConfiguration()
+    }
+
+    override func tearDown() {
+        configuration = nil
+    }
+
+    private var encodedSecret: String? {
+        guard let clientSecret = configuration.clientSecret,
+              let value = "\(configuration.clientId):\(clientSecret)".data(using: .utf8) else {
+            return nil
+        }
+
+        return value.base64EncodedString()
+    }
+
+    private func createConfiguration(clientSecret: String? = nil) {
+        configuration = .init(
+            clientId: "clientId",
+            oauth: .init(
+                domain: "domain",
+                scopes: [],
+                signInRedirectURI: "app://",
+                signOutRedirectURI: "app://"
+            ),
+            clientSecret: clientSecret
+        )
+    }
+
+    /// Given: A HostedUI configuration without a client secret
+    /// When: HostedUIRequestHelper.createTokenRequest is invoked with said configuration
+    /// Then: A request is generated that does not include an Authorization header
+    func testCreateTokenRequest_withoutClientSecret_shouldNotAddAuthorizationHeader() throws {
+        let request = try HostedUIRequestHelper.createTokenRequest(
+            configuration: configuration,
+            result: result
+        )
+
+        XCTAssertNil(request.value(forHTTPHeaderField: "Authorization"))
+    }
+
+    /// Given: A HostedUI configuration that defines a client secret
+    /// When: HostedUIRequestHelper.createTokenRequest is invoked with said configuration
+    /// Then: A request is generated that includes an Authorization header and its value has an encoded version of the secret
+    func testCreateTokenRequest_withClientSecret_shouldEncodeSecretAndAddAuthorizationHeader() throws {
+        createConfiguration(clientSecret: "clientSecret")
+        let request = try HostedUIRequestHelper.createTokenRequest(
+            configuration: configuration,
+            result: result
+        )
+
+        let header = try XCTUnwrap(request.value(forHTTPHeaderField: "Authorization"))
+        let encodedSecret = try XCTUnwrap(encodedSecret)
+        XCTAssertEqual("Basic \(encodedSecret)", header)
+    }
+
+    /// Given: A HostedUI configuration without a client secret
+    /// When: HostedUIRequestHelper.createRefreshTokenRequest is invoked with said configuration
+    /// Then: A request is generated that does not include an Authorization header
+    func testCreateRefreshTokenRequest_withoutClientSecret_shouldNotAddAuthorizationHeader() throws {
+        let request = try HostedUIRequestHelper.createRefreshTokenRequest(
+            refreshToken: "refreshToken",
+            configuration: configuration
+        )
+
+        XCTAssertNil(request.value(forHTTPHeaderField: "Authorization"))
+    }
+
+    /// Given: A HostedUI configuration that defines a client secret
+    /// When: HostedUIRequestHelper.createRefreshTokenRequest is invoked with said configuration
+    /// Then: A request is generated that includes an Authorization header and its value has an encoded version of the secret
+    func testCreateRefreshTokenRequest_withClientSecret_shouldEncodeSecretAndAddAuthorizationHeader() throws {
+        createConfiguration(clientSecret: "clientSecret")
+        let request = try HostedUIRequestHelper.createRefreshTokenRequest(
+            refreshToken: "refreshToken",
+            configuration: configuration
+        )
+
+        let header = try XCTUnwrap(request.value(forHTTPHeaderField: "Authorization"))
+        let encodedSecret = try XCTUnwrap(encodedSecret)
+        XCTAssertEqual("Basic \(encodedSecret)", header)
+    }
+}

AmplifyPlugins/Core/AWSPluginsCore/Model/Support/QueryPredicate+GraphQL.swift

@@ -185,6 +185,8 @@ extension QueryOperator {
             return "between"
         case .beginsWith:
             return "beginsWith"
+        case .notContains:
+            return "notContains"
         }
     }
 
@@ -208,6 +210,8 @@ extension QueryOperator {
             return [start.graphQLValue(), end.graphQLValue()]
         case .beginsWith(let value):
             return value
+        case .notContains(let value):
+            return value
         }
     }
 }

AmplifyPlugins/DataStore/Sources/AWSDataStorePlugin/AWSDataStorePlugin+DataStoreBaseBehavior.swift

@@ -68,7 +68,7 @@ extension AWSDataStorePlugin: DataStoreBaseBehavior {
         storageEngine.save(model,
                            modelSchema: modelSchema,
                            condition: condition,
-                           eagerLoad: isEagerLoad,
+                           eagerLoad: configuration.isEagerLoad,
                            completion: publishingCompletion)
     }
 
@@ -218,7 +218,7 @@ extension AWSDataStorePlugin: DataStoreBaseBehavior {
                             predicate: predicate,
                             sort: sortInput,
                             paginationInput: paginationInput,
-                            eagerLoad: isEagerLoad,
+                            eagerLoad: configuration.isEagerLoad,
                             completion: completion)
     }
 

AmplifyPlugins/DataStore/Sources/AWSDataStorePlugin/AWSDataStorePlugin+DataStoreSubscribeBehavior.swift

@@ -46,7 +46,7 @@ extension AWSDataStorePlugin: DataStoreSubscribeBehavior {
                                                 sortInput: sortInput?.asSortDescriptors(),
                                                 storageEngine: storageEngine,
                                                 dataStorePublisher: dataStorePublisher,
-                                                dataStoreConfiguration: dataStoreConfiguration,
+                                                dataStoreConfiguration: configuration.pluginConfiguration,
                                                 dispatchedModelSyncedEvent: dispatchedModelSyncedEvent,
                                                 dataStoreStatePublisher: dataStoreStateSubject.eraseToAnyPublisher())
         return taskRunner.sequence