chore: kickoff v1 release

Author: royjit

AWSPluginsCore.podspec

@@ -10,7 +10,7 @@
 $AMPLIFY_VERSION = '1.29.3'
 $AMPLIFY_RELEASE_TAG = "#{$AMPLIFY_VERSION}"
 
-$AWS_SDK_VERSION = '2.30.1'
+$AWS_SDK_VERSION = '2.31.0'
 $OPTIMISTIC_AWS_SDK_VERSION = "~> #{$AWS_SDK_VERSION}"
 
 Pod::Spec.new do |s|

AWSPredictionsPlugin.podspec

@@ -2,7 +2,7 @@
 $AMPLIFY_VERSION = '1.29.3'
 $AMPLIFY_RELEASE_TAG = "#{$AMPLIFY_VERSION}"
 
-$AWS_SDK_VERSION = '2.30.1'
+$AWS_SDK_VERSION = '2.31.0'
 $OPTIMISTIC_AWS_SDK_VERSION = "~> #{$AWS_SDK_VERSION}"
 
 Pod::Spec.new do |s|

Amplify/Categories/API/AuthProvider/APIAuthProviderFactory.swift

@@ -25,8 +25,20 @@ open class APIAuthProviderFactory {
 }
 
 public protocol AmplifyAuthTokenProvider {
+
     typealias AuthToken = String
+
     func getLatestAuthToken() -> Result<AuthToken, Error>
+
+    func getLatestAuthToken(completion: @escaping (Result<AuthToken, Error>) -> Void)
+}
+
+public extension AmplifyAuthTokenProvider {
+
+    func getLatestAuthToken(completion: @escaping (Result<AuthToken, Error>) -> Void) {
+        let result = getLatestAuthToken()
+        completion(result)
+    }
 }
 
 /// Amplify OIDC Auth Provider

Amplify/Categories/API/Interceptor/URLRequestInterceptor.swift

@@ -19,10 +19,25 @@ import Foundation
 /// plugin.
 public protocol URLRequestInterceptor {
 
-    // swiftlint:disable:next todo
-    // TODO: turn async https://github.com/aws-amplify/amplify-ios/issues/73
     /// Inspect and optionally modify the request, returning either the original
     /// unmodified request or a modified copy.
     /// - Parameter request: The URLRequest
     func intercept(_ request: URLRequest) throws -> URLRequest
+
+    /// Inspect and optionally modify the request, returning either the original
+    /// unmodified request or a modified copy in the completion handler.
+    /// - Parameter request: The URLRequest
+    func intercept(_ request: URLRequest, completion: @escaping (Result<URLRequest, Error>) -> Void)
+}
+
+public extension URLRequestInterceptor {
+
+    func intercept(_ request: URLRequest, completion: (Result<URLRequest, Error>) -> Void) {
+        do {
+            let interceptedRequest = try intercept(request)
+            completion(.success(interceptedRequest))
+        } catch {
+            completion(.failure(error))
+        }
+    }
 }

AmplifyPlugins.podspec

@@ -10,7 +10,7 @@
 $AMPLIFY_VERSION = '1.29.3'
 $AMPLIFY_RELEASE_TAG = "#{$AMPLIFY_VERSION}"
 
-$AWS_SDK_VERSION = '2.30.1'
+$AWS_SDK_VERSION = '2.31.0'
 $OPTIMISTIC_AWS_SDK_VERSION = "~> #{$AWS_SDK_VERSION}"
 
 Pod::Spec.new do |s|
@@ -36,7 +36,7 @@ Pod::Spec.new do |s|
 
   s.subspec 'AWSAPIPlugin' do |ss|
     ss.source_files = 'AmplifyPlugins/API/AWSAPICategoryPlugin/**/*.swift'
-    ss.dependency 'AppSyncRealTimeClient', "~> 3.0"
+    ss.dependency 'AppSyncRealTimeClient', "~> 3.1"
   end
 
   s.subspec 'AWSCognitoAuthPlugin' do |ss|

AmplifyPlugins/API/APICategoryPlugin.xcodeproj/project.pbxproj

@@ -147,6 +147,7 @@
 		B478F6E12374E0CF00C4F92B /* Assets.xcassets in Resources */ = {isa = PBXBuildFile; fileRef = B478F6D52374E0CF00C4F92B /* Assets.xcassets */; };
 		B478F6E22374E0CF00C4F92B /* LaunchScreen.storyboard in Resources */ = {isa = PBXBuildFile; fileRef = B478F6D62374E0CF00C4F92B /* LaunchScreen.storyboard */; };
 		B478F6E32374E0CF00C4F92B /* Main.storyboard in Resources */ = {isa = PBXBuildFile; fileRef = B478F6D82374E0CF00C4F92B /* Main.storyboard */; };
+		B48D04AF29EE203F000A73BD /* IAMHeaderSigningHelper.swift in Sources */ = {isa = PBXBuildFile; fileRef = B48D04AE29EE203F000A73BD /* IAMHeaderSigningHelper.swift */; };
 		B4DFA5E0237A611D0013E17B /* MockSessionFactory.swift in Sources */ = {isa = PBXBuildFile; fileRef = B4DFA5C0237A611D0013E17B /* MockSessionFactory.swift */; };
 		B4DFA5E1237A611D0013E17B /* MockURLSessionTask.swift in Sources */ = {isa = PBXBuildFile; fileRef = B4DFA5C1237A611D0013E17B /* MockURLSessionTask.swift */; };
 		B4DFA5E2237A611D0013E17B /* MockURLSession.swift in Sources */ = {isa = PBXBuildFile; fileRef = B4DFA5C2237A611D0013E17B /* MockURLSession.swift */; };
@@ -524,6 +525,7 @@
 		B478F6D72374E0CF00C4F92B /* Base */ = {isa = PBXFileReference; lastKnownFileType = file.storyboard; name = Base; path = Base.lproj/LaunchScreen.storyboard; sourceTree = "<group>"; };
 		B478F6D92374E0CF00C4F92B /* Base */ = {isa = PBXFileReference; lastKnownFileType = file.storyboard; name = Base; path = Base.lproj/Main.storyboard; sourceTree = "<group>"; };
 		B478F6DA2374E0CF00C4F92B /* Info.plist */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = text.plist.xml; path = Info.plist; sourceTree = "<group>"; };
+		B48D04AE29EE203F000A73BD /* IAMHeaderSigningHelper.swift */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.swift; path = IAMHeaderSigningHelper.swift; sourceTree = "<group>"; };
 		B4DFA5C0237A611D0013E17B /* MockSessionFactory.swift */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.swift; path = MockSessionFactory.swift; sourceTree = "<group>"; };
 		B4DFA5C1237A611D0013E17B /* MockURLSessionTask.swift */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.swift; path = MockURLSessionTask.swift; sourceTree = "<group>"; };
 		B4DFA5C2237A611D0013E17B /* MockURLSession.swift */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.swift; path = MockURLSession.swift; sourceTree = "<group>"; };
@@ -900,6 +902,7 @@
 				21D5286624169E74005186BA /* IAMAuthInterceptor.swift */,
 				763C857026B0651A005164B2 /* AuthenticationTokenAuthInterceptor.swift */,
 				6BD4620525380EA200906831 /* OIDCAuthProviderWrapper.swift */,
+				B48D04AE29EE203F000A73BD /* IAMHeaderSigningHelper.swift */,
 			);
 			path = SubscriptionInterceptor;
 			sourceTree = "<group>";
@@ -2461,6 +2464,7 @@
 			buildActionMask = 2147483647;
 			files = (
 				21D7A102237B54D90057D00D /* URLSessionBehaviorDelegate.swift in Sources */,
+				B48D04AF29EE203F000A73BD /* IAMHeaderSigningHelper.swift in Sources */,
 				21D7A0FD237B54D90057D00D /* URLSession+URLSessionBehavior.swift in Sources */,
 				212B29212592454400593ED5 /* AppSyncListPayload.swift in Sources */,
 				21A4F35A25A4F2E800E1047D /* AppSyncListResponse.swift in Sources */,

AmplifyPlugins/API/AWSAPICategoryPlugin/Interceptor/RequestInterceptor/AuthTokenProviderWrapper.swift

@@ -29,4 +29,19 @@ class AuthTokenProviderWrapper: AuthTokenProvider {
         }
     }
 
+    func getToken(completion: @escaping (Result<String, AuthError>) -> Void) {
+        wrappedAuthTokenProvider.getLatestAuthToken { result in
+            switch result {
+            case .success(let token):
+                completion(.success(token))
+                return
+            case .failure(let error):
+                completion(.failure(AuthError.service("Unable to get latest auth token",
+                                                      "",
+                                                      error)))
+                return
+            }
+        }
+    }
+
 }

AmplifyPlugins/API/AWSAPICategoryPlugin/Interceptor/RequestInterceptor/AuthTokenURLRequestInterceptor.swift

@@ -41,4 +41,29 @@ struct AuthTokenURLRequestInterceptor: URLRequestInterceptor {
         mutableRequest.setValue(token, forHTTPHeaderField: "authorization")
         return mutableRequest as URLRequest
     }
+
+    func intercept(_ request: URLRequest, completion: @escaping (Result<URLRequest, Error>) -> Void) {
+        guard let mutableRequest = (request as NSURLRequest).mutableCopy() as? NSMutableURLRequest else {
+            completion(.failure(APIError.unknown("Could not get mutable request", "")))
+            return
+        }
+
+        authTokenProvider.getToken { result in
+            do {
+                let token = try result.get()
+                mutableRequest.setValue(NSDate().aws_stringValue(AWSDateISO8601DateFormat2),
+                                        forHTTPHeaderField: URLRequestConstants.Header.xAmzDate)
+                mutableRequest.setValue(URLRequestConstants.ContentType.applicationJson,
+                                        forHTTPHeaderField: URLRequestConstants.Header.contentType)
+                mutableRequest.setValue(AmplifyAWSServiceConfiguration.baseUserAgent(),
+                                        forHTTPHeaderField: URLRequestConstants.Header.userAgent)
+                mutableRequest.setValue(token, forHTTPHeaderField: "authorization")
+                completion(.success(mutableRequest as URLRequest))
+                return
+            } catch {
+                let apiError = APIError.operationError("Failed to retrieve authorization token.", "", error)
+                completion(.failure(apiError))
+            }
+        }
+    }
 }

AmplifyPlugins/API/AWSAPICategoryPlugin/Interceptor/RequestInterceptor/IAMURLRequestInterceptor.swift

@@ -62,4 +62,49 @@ struct IAMURLRequestInterceptor: URLRequestInterceptor {
 
         return mutableRequest as URLRequest
     }
+
+    func intercept(_ request: URLRequest, completion: @escaping (Result<URLRequest, Error>) -> Void) {
+
+        guard let mutableRequest = (request as NSURLRequest).mutableCopy() as? NSMutableURLRequest else {
+            let apiError = APIError.unknown("Could not get mutable request", "")
+            completion(.failure(apiError))
+            return
+        }
+
+        let serviceConfiguration = AmplifyAWSServiceConfiguration(
+            region: region,
+            credentialsProvider: iamCredentialsProvider.getCredentialsProvider())
+        mutableRequest.setValue(NSDate().aws_stringValue(AWSDateISO8601DateFormat2),
+                                forHTTPHeaderField: URLRequestConstants.Header.xAmzDate)
+        mutableRequest.setValue(URLRequestConstants.ContentType.applicationJson,
+                                forHTTPHeaderField: URLRequestConstants.Header.contentType)
+        mutableRequest.setValue(serviceConfiguration.userAgent,
+                                forHTTPHeaderField: URLRequestConstants.Header.userAgent)
+
+        let endpoint: AWSEndpoint
+        switch endpointType {
+        case .graphQL:
+            endpoint = AWSEndpoint(region: region,
+                                   serviceName: URLRequestConstants.appSyncServiceName,
+                                   url: mutableRequest.url)
+        case .rest:
+            endpoint = AWSEndpoint(region: region,
+                                   service: AWSServiceType.APIGateway,
+                                   url: mutableRequest.url)
+        }
+
+        let signer: AWSSignatureV4Signer = AWSSignatureV4Signer(
+            credentialsProvider: iamCredentialsProvider.getCredentialsProvider(),
+            endpoint: endpoint)
+
+        signer.interceptRequest(mutableRequest).continueWith { task in
+            if let error = task.error {
+                let apiError = APIError.operationError("Got error trying to sign", "", error)
+                completion(.failure(apiError))
+                return nil
+            }
+            completion(.success(mutableRequest as URLRequest))
+            return nil
+        }
+    }
 }

AmplifyPlugins/API/AWSAPICategoryPlugin/Interceptor/SubscriptionInterceptor/AuthenticationTokenAuthInterceptor.swift

@@ -19,35 +19,50 @@ class AuthenticationTokenAuthInterceptor: AuthInterceptor {
         self.authTokenProvider = authTokenProvider
     }
 
-    func interceptMessage(_ message: AppSyncMessage, for endpoint: URL) -> AppSyncMessage {
-        let host = endpoint.host!
-        guard let authToken = getAuthToken() else {
-            log.warn("Missing authentication token for subscription")
-            return message
+    func interceptMessage(
+        _ message: AppSyncMessage,
+        for endpoint: URL,
+        completion: @escaping (AppSyncMessage) -> Void) {
+            let host = endpoint.host!
+
+            guard case .subscribe = message.messageType else {
+                completion(message)
+                return
+            }
+
+            authTokenProvider.getLatestAuthToken { result in
+                let signedMessage = self.signedMessage(
+                    message,
+                    host: host,
+                    tokenResult: result)
+                completion(signedMessage)
+                return
+            }
         }
 
-        guard case .subscribe = message.messageType else {
-            return message
+    func interceptConnection(
+        _ request: AppSyncConnectionRequest,
+        for endpoint: URL,
+        completion: @escaping (AppSyncConnectionRequest) -> Void) {
+            let host = endpoint.host!
+            authTokenProvider.getLatestAuthToken { result in
+                let signedRequest = self.signedRequest(
+                    request,
+                    for: endpoint,
+                    host: host,
+                    tokenResult: result)
+                completion(signedRequest)
+                return
+            }
         }
 
-        let authHeader = TokenAuthHeader(token: authToken, host: host)
-        var payload = message.payload ?? AppSyncMessage.Payload()
-        payload.authHeader = authHeader
-
-        let signedMessage = AppSyncMessage(
-            id: message.id,
-            payload: payload,
-            type: message.messageType
-        )
-        return signedMessage
-    }
-
-    func interceptConnection(
+    private func signedRequest(
         _ request: AppSyncConnectionRequest,
-        for endpoint: URL
+        for endpoint: URL,
+        host: String,
+        tokenResult: Result<String, Error>
     ) -> AppSyncConnectionRequest {
-        let host = endpoint.host!
-        guard let authToken = getAuthToken() else {
+        guard let authToken = try? tokenResult.get() else {
             log.warn("Missing authentication token for subscription request")
             return request
         }
@@ -71,9 +86,54 @@ class AuthenticationTokenAuthInterceptor: AuthInterceptor {
         return signedRequest
     }
 
-    private func getAuthToken() -> AmplifyAuthTokenProvider.AuthToken? {
-        try? authTokenProvider.getLatestAuthToken().get()
+    private func signedMessage(
+        _ message: AppSyncMessage,
+        host: String,
+        tokenResult: Result<String, Error>) -> AppSyncMessage {
+
+            guard let authToken = try? tokenResult.get() else {
+                log.warn("Missing authentication token for subscription")
+                return message
+            }
+
+            let authHeader = TokenAuthHeader(token: authToken, host: host)
+            var payload = message.payload ?? AppSyncMessage.Payload()
+            payload.authHeader = authHeader
+
+            let signedMessage = AppSyncMessage(
+                id: message.id,
+                payload: payload,
+                type: message.messageType
+            )
+            return signedMessage
+        }
+
+    func interceptMessage(_ message: AppSyncMessage, for endpoint: URL) -> AppSyncMessage {
+        let host = endpoint.host!
+
+        guard case .subscribe = message.messageType else {
+            return message
+        }
+        let signedMessage = self.signedMessage(
+            message,
+            host: host,
+            tokenResult: authTokenProvider.getLatestAuthToken())
+        return signedMessage
+    }
+
+    func interceptConnection(
+        _ request: AppSyncConnectionRequest,
+        for endpoint: URL
+    ) -> AppSyncConnectionRequest {
+        let host = endpoint.host!
+        let signedRequest = signedRequest(
+            request,
+            for: endpoint,
+            host: host,
+            tokenResult: authTokenProvider.getLatestAuthToken())
+        return signedRequest
     }
+
 }
 
 // MARK: AuthorizationTokenAuthInterceptor + DefaultLogger