Add support for custom auth in AWSMobileClient (#1178)

* Add support for custom auth in AWSMobileClient

* Add custom auth test

* Add license files

* Refactoring

* Update changelog

* Review suggestions

* Review Feedback

* Review feedback

* Update CHANGELOG.md

* Update CHANGELOG.md

Author: desokroshan

CHANGELOG.md

@@ -5,7 +5,11 @@
 ### New Features
 
 - **AWS Mobile Client**
-  - **Breaking API Change** `SignUpResult` available in the user callback provided during sign up now contains UserSub(UID).
+  - **Breaking API Change**
+    - `SignUpResult` available in the user callback provided during sign up now contains UserSub(UID)
+    - Deprecated APIs `getCredentialsProvider`, `setCredentialsProvider`, `initialize(Context)` and `initialize(Context, AWSStartupHandler)` have been removed
+  - AWSMobileClient now supports Cognito Custom Authentication flow. See relevant [cognito docs](https://docs.aws.amazon.com/cognito/latest/developerguide/amazon-cognito-user-pools-authentication-flow.html#amazon-cognito-user-pools-custom-authentication-flow) and [amplify docs](https://aws-amplify.github.io/docs/android/authentication#customizing-authentication-flow) for details
+  - `confirmSignIn(final Map<String, String> signInChallengeResponse)` now throws `IllegalStateException` if `confirmSignIn` is called after signIn has succeeded. This matches the behavior of the overloaded version of this method, viz. `confirmSignIn(final String signInChallengeResponse, final Callback<SignInResult> callback)`
 
 - **Amazon CognitoIdentityProvider**
   - **Breaking API Change** `SignUpHandler` now receives `SignUpResult` upon success instead of a ConfirmationState and `CognitoUserCodeDeliveryDetails`

aws-android-sdk-mobile-client/src/androidTest/java/com/amazonaws/mobile/client/AWSMobileClientCustomAuthTest.java

@@ -0,0 +1,247 @@
+/*
+ * Copyright 2019 Amazon.com, Inc. or its affiliates.
+ * All Rights Reserved.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package com.amazonaws.mobile.client;
+
+import android.content.Context;
+import android.support.test.InstrumentationRegistry;
+import android.util.Log;
+
+
+import com.amazonaws.auth.AWSCredentials;
+import com.amazonaws.mobile.client.results.SignInResult;
+import com.amazonaws.mobile.client.results.Token;
+import com.amazonaws.mobile.client.results.Tokens;
+import com.amazonaws.mobile.config.AWSConfiguration;
+import com.amazonaws.mobileconnectors.cognitoidentityprovider.util.CognitoServiceConstants;
+import org.junit.BeforeClass;
+import org.junit.Test;
+
+import java.util.Date;
+import java.util.HashMap;
+import java.util.Map;
+import java.util.concurrent.CountDownLatch;
+
+import static com.amazonaws.mobile.auth.core.internal.util.ThreadUtils.runOnUiThread;
+import static org.junit.Assert.assertNotNull;
+import static org.junit.Assert.assertTrue;
+
+public class AWSMobileClientCustomAuthTest extends AWSMobileClientTestBase {
+
+    private static Context appContext;
+    private static AWSMobileClient auth;
+
+    private static final CountDownLatch signUpLatch = new CountDownLatch(1);
+    private static final String USERNAME = "customAuthTestUser";
+    private static final String PASSWORD = "Test@123";
+    private static final String TAG = AWSMobileClientCustomAuthTest.class.getSimpleName();
+
+    @BeforeClass
+    public static void beforeClass() throws Exception {
+        appContext = InstrumentationRegistry.getTargetContext();
+        final CountDownLatch latch = new CountDownLatch(1);
+        final AWSConfiguration awsConfiguration = new AWSConfiguration(appContext);
+        awsConfiguration.setConfiguration("Auth1");
+        assert awsConfiguration.optJsonObject("Auth").has("authenticationFlowType");
+        AWSMobileClient.getInstance().initialize(appContext, awsConfiguration, new Callback<UserStateDetails>() {
+            @Override
+            public void onResult(UserStateDetails result) {
+                latch.countDown();
+            }
+
+            @Override
+            public void onError(Exception e) {
+                Log.e(TAG, "onError: ", e);
+                latch.countDown();
+            }
+        });
+        latch.await();
+        auth = AWSMobileClient.getInstance();
+    }
+
+    /**
+     * This test needs following backend set up to complete successfully :
+     *
+     * User - This test assumes presence of a user named `customAuthTestUser` in the test user pool
+     * App Client - There should be an app client with "Only allow Custom Authentication (CUSTOM_AUTH_FLOW_ONLY)" enabled.
+     * Lambda Triggers - It needs following lambda triggers set in the test userpool:
+     *   Define Auth Lambda Trigger :
+     *     ```
+     *     exports.handler = function(event, context) {
+     *         if (event.request.session.length == 1 && event.request.session[0].challengeName == 'SRP_A') {
+     *             event.response.issueTokens = false;
+     *             event.response.failAuthentication = false;
+     *             event.response.challengeName = 'CUSTOM_CHALLENGE';
+     *         } else if (event.request.session.length == 2 && event.request.session[1].challengeName == 'CUSTOM_CHALLENGE' && event.request.session[1].challengeResult == true) {
+     *             event.response.issueTokens = true;
+     *             event.response.failAuthentication = false;
+     *             event.response.challengeName = 'CUSTOM_CHALLENGE';
+     *         } else {
+     *             event.response.issueTokens = false;
+     *             event.response.failAuthentication = true;
+     *         }
+     *         context.done(null, event);
+     *     }
+     *     ```
+     *
+     *   Create Auth Lambda Trigger :
+     *     ```
+     *     function createAuthChallenge(event) {
+     *         if (event.request.challengeName === 'CUSTOM_CHALLENGE') {
+     *             event.response.publicChallengeParameters = {};
+     *             event.response.privateChallengeParameters = {};
+     *             event.response.privateChallengeParameters.answer = '1133';
+     *         }
+     *     }
+     *
+     *     exports.handler = (event, context, callback) => {
+     *         console.log(JSON.stringify(event));
+     *         createAuthChallenge(event);
+     *
+     *         console.log(JSON.stringify(event));
+     *         callback(null, event);
+     *     };
+     *     ```
+     *
+     *   Verify Auth Lambda Trigger :
+     *     ```
+     *     function verifyAuthChallengeResponse(event) {
+     *         if (event.request.privateChallengeParameters.answer === event.request.challengeAnswer) {
+     *             event.response.answerCorrect = true;
+     *         } else {
+     *             event.response.answerCorrect = false;
+     *         }
+     *     }
+     *
+     *     exports.handler = (event, context, callback) => {
+     *         console.log(JSON.stringify(event));
+     *             verifyAuthChallengeResponse(event);
+     *
+     *         console.log(JSON.stringify(event));
+     *         callback(null, event);
+     *     };
+     *     ```
+     * awsconfiguration.json - Should set authenticationFlowType to 'CUSTOM_AUTH' in Auth section as follows :
+     *
+     *     ```
+     *     "Auth": {
+     *         "Default": {
+     *             "authenticationFlowType": "CUSTOM_AUTH"
+     *         }
+     *     }
+     *     ```
+     *
+     *
+     * @throws Exception
+     */
+    @Test
+    public void testCustomAuth() throws Exception {
+        // Check successful sign In
+        assertTrue("SignIn successful", signIn());
+
+        // Check credentials are available
+        final AWSCredentials credentials = auth.getCredentials();
+        assertNotNull("Credentials are null", credentials);
+        assertNotNull("Access key is null", credentials.getAWSAccessKeyId());
+        assertNotNull("Secret key is null", credentials.getAWSSecretKey());
+
+        Tokens tokens = auth.getTokens();
+        assertNotNull(tokens);
+
+        Token accessToken = tokens.getAccessToken();
+        assertNotNull(accessToken);
+        assertTrue("Access token should not be expired", accessToken.getExpiration().after(new Date()));
+        Token idToken = tokens.getIdToken();
+        assertNotNull(idToken);
+        assertTrue("Id token should not be expired", idToken.getExpiration().after(new Date()));
+        Token refreshToken = tokens.getRefreshToken();
+        assertNotNull(refreshToken);
+
+    }
+
+    private boolean signIn() {
+        auth.signIn(USERNAME, PASSWORD, null, new Callback<SignInResult>() {
+            @Override
+            public void onResult(final SignInResult signInResult) {
+                runOnUiThread(new Runnable() {
+                    @Override
+                    public void run() {
+                        Log.d(TAG, "Sign-in callback state: " + signInResult.getSignInState());
+                        switch (signInResult.getSignInState()) {
+                            case DONE:
+                                signUpLatch.countDown();
+                                break;
+                            case CUSTOM_CHALLENGE:
+                                confirmSignIn();
+                                break;
+                            default:
+                                Log.e("APP", "Unexpected sign-in confirmation state: " + signInResult.getSignInState());
+                                break;
+                        }
+                    }
+                });
+            }
+
+            @Override
+            public void onError(Exception e) {
+                Log.e(TAG, "Sign-in error", e);
+            }
+        });
+
+        try {
+            signUpLatch.await();
+            return true;
+        } catch (InterruptedException e) {
+            e.printStackTrace();
+        }
+        return false;
+    }
+
+    private void confirmSignIn() {
+        final Map<String, String> res = new HashMap<String, String>();
+        res.put(CognitoServiceConstants.CHLG_RESP_ANSWER, "1133");
+        auth.confirmSignIn(res, new Callback<SignInResult>() {
+            @Override
+            public void onResult(final SignInResult signInResult) {
+                runOnUiThread(new Runnable() {
+                    @Override
+                    public void run() {
+                        Log.d(TAG, "Sign-in callback state: " + signInResult.getSignInState());
+                        switch (signInResult.getSignInState()) {
+                            default:
+                                Log.e(TAG, "Unexpected sign-in confirmation call: " + signInResult.getSignInState());
+                                signUpLatch.countDown();
+                                break;
+                        }
+                    }
+                });
+            }
+
+            @Override
+            public void onError(Exception e) {
+                Log.e(TAG, "Confirm sign-in error", e);
+                signUpLatch.countDown();
+            }
+        });
+
+        try {
+            signUpLatch.await();
+        } catch (InterruptedException e) {
+            e.printStackTrace();
+        }
+    }
+}

aws-android-sdk-mobile-client/src/androidTest/java/com/amazonaws/mobile/client/AWSMobileClientNetworkIssueTest.java

@@ -1,3 +1,20 @@
+/*
+ * Copyright 2019 Amazon.com, Inc. or its affiliates.
+ * All Rights Reserved.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
 package com.amazonaws.mobile.client;
 
 import android.content.Context;

aws-android-sdk-mobile-client/src/androidTest/java/com/amazonaws/mobile/client/AWSMobileClientOAuth2Test.java

@@ -1,3 +1,20 @@
+/*
+ * Copyright 2019 Amazon.com, Inc. or its affiliates.
+ * All Rights Reserved.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
 package com.amazonaws.mobile.client;
 
 import android.content.Context;
@@ -20,13 +37,8 @@
 
 import java.util.concurrent.CountDownLatch;
 
-import static android.support.test.espresso.action.ViewActions.click;
-import static android.support.test.espresso.matcher.ViewMatchers.withText;
-import static org.hamcrest.CoreMatchers.allOf;
-import static org.hamcrest.CoreMatchers.is;
 import static org.junit.Assert.assertEquals;
 import static org.junit.Assert.assertNotNull;
-import static org.junit.Assert.assertNull;
 import static org.junit.Assert.fail;
 
 public class AWSMobileClientOAuth2Test extends AWSMobileClientTestBase {

aws-android-sdk-mobile-client/src/androidTest/java/com/amazonaws/mobile/client/AWSMobileClientOfflineTest.java

@@ -1,3 +1,19 @@
+/*
+ * Copyright 2019 Amazon.com, Inc. or its affiliates.
+ * All Rights Reserved.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
 package com.amazonaws.mobile.client;
 
 import android.content.Context;

aws-android-sdk-mobile-client/src/androidTest/java/com/amazonaws/mobile/client/AWSMobileClientPersistenceTest.java

@@ -1,3 +1,20 @@
+/*
+ * Copyright 2019 Amazon.com, Inc. or its affiliates.
+ * All Rights Reserved.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
 package com.amazonaws.mobile.client;
 
 import android.content.Context;

aws-android-sdk-mobile-client/src/androidTest/java/com/amazonaws/mobile/client/AWSMobileClientPersistenceWithRestartabilityTest.java

@@ -1,3 +1,20 @@
+/*
+ * Copyright 2019 Amazon.com, Inc. or its affiliates.
+ * All Rights Reserved.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
 package com.amazonaws.mobile.client;
 
 import android.content.Context;

aws-android-sdk-mobile-client/src/androidTest/java/com/amazonaws/mobile/client/AWSMobileClientTest.java

@@ -152,7 +152,7 @@ public static void deleteAllUsers(final String userpoolId) {
             listUsersResult = getUserpoolLL().listUsers(listUsersRequest);
             for (UserType user : listUsersResult.getUsers()) {
                 if (USERNAME.equals(user.getUsername())
-                    || "bimin".equals(user.getUsername())) {
+                    || "bimin".equals(user.getUsername()) || "customAuthTestUser".equals(user.getUsername())) {
                     // This user is saved to test the identity id permanence
                     continue;
                 }