feat(auth): remove support for token query param (#5519)

Author: harsh62

AWSAuthSDK/Sources/AWSMobileClient/AWSMobileClient.swift

@@ -33,7 +33,6 @@ final public class AWSMobileClient: _AWSMobileClient {
     internal var customRoleArnInternal: String? = nil
 
     internal var signInURIQueryParameters: [String: String]? = nil
-    internal var tokenURIQueryParameters: [String: String]? = nil
     internal var signOutURIQueryParameters: [String: String]? = nil
     internal var scopes: [String]? = nil
 
@@ -353,9 +352,6 @@ final public class AWSMobileClient: _AWSMobileClient {
         }
 
         let tokensURI = infoDictionary?["TokenURI"] as? String
-        if self.tokenURIQueryParameters == nil {
-            self.tokenURIQueryParameters = infoDictionary?["TokenURIQueryParameters"] as? [String: String]
-        }
 
         guard
             let clientId = clientId,
@@ -381,7 +377,6 @@ final public class AWSMobileClient: _AWSMobileClient {
             tokensUri: tokensURI,
             signInUriQueryParameters: self.signInURIQueryParameters,
             signOutUriQueryParameters: self.signOutURIQueryParameters,
-            tokenUriQueryParameters: self.tokenURIQueryParameters,
             userPoolServiceConfiguration: AWSMobileClient.serviceConfiguration?.userPoolServiceConfiguration,
             signInPrivateSession: false)
 

AWSAuthSDK/Sources/AWSMobileClient/AWSMobileClientOperations/AWSMobileClient+SignInUI.swift

@@ -216,10 +216,7 @@ extension AWSMobileClient {
         }
 
         let tokensURI = infoDictionary?["TokenURI"] as? String
-        if self.tokenURIQueryParameters == nil {
-            self.tokenURIQueryParameters = infoDictionary?["TokenURIQueryParameters"] as? [String: String]
-        }
-
+        
         let identityProvider = hostedUIOptions.identityProvider
         let idpIdentifier = hostedUIOptions.idpIdentifier
 
@@ -234,10 +231,6 @@ extension AWSMobileClient {
             self.signInURIQueryParameters = hostedUIOptions.signInURIQueryParameters
         }
 
-        if hostedUIOptions.tokenURIQueryParameters != nil {
-            self.tokenURIQueryParameters = hostedUIOptions.tokenURIQueryParameters
-        }
-
         if hostedUIOptions.signOutURIQueryParameters != nil {
             self.signOutURIQueryParameters = hostedUIOptions.signOutURIQueryParameters
         }
@@ -261,7 +254,6 @@ extension AWSMobileClient {
                                          tokensUri: tokensURI,
                                          signInUriQueryParameters: self.signInURIQueryParameters,
                                          signOutUriQueryParameters: self.signOutURIQueryParameters,
-                                         tokenUriQueryParameters: self.tokenURIQueryParameters,
                                          userPoolServiceConfiguration: AWSMobileClient.serviceConfiguration?.userPoolServiceConfiguration,
                                          signInPrivateSession: hostedUIOptions.signInPrivateSession)
 

AWSAuthSDK/Sources/AWSMobileClient/Helpers/AWSMobileClientConstants.swift

@@ -25,7 +25,6 @@ struct AWSMobileClientConstants {
     static let LoginsMapKey = "loginsMap"
     static let FederationProviderKey = "federationProvider"
     static let SignInURIQueryParametersKey = "signInURIQueryParameters"
-    static let TokenURIQueryParametersKey = "tokenURIQueryParameters"
     static let SignOutURIQueryParametersKey = "signOutURIQueryParameters"
     static let CustomRoleArnKey = "customRoleArn"
     static let FederationDisabledKey = "federationDisabled"

AWSAuthSDK/Sources/AWSMobileClient/Helpers/KeyChain/AWSMobileClient+Keychain.swift

@@ -37,13 +37,11 @@ extension AWSMobileClient {
 
     internal func saveOAuthURIQueryParametersInKeychain() {
         self.keychain.setData(JSONHelper.dataFromDictionary(self.signInURIQueryParameters), forKey: AWSMobileClientConstants.SignInURIQueryParametersKey)
-        self.keychain.setData(JSONHelper.dataFromDictionary(self.tokenURIQueryParameters), forKey: AWSMobileClientConstants.TokenURIQueryParametersKey)
         self.keychain.setData(JSONHelper.dataFromDictionary(self.signOutURIQueryParameters), forKey: AWSMobileClientConstants.SignOutURIQueryParametersKey)
     }
 
     internal func loadOAuthURIQueryParametersFromKeychain() {
         self.signInURIQueryParameters = JSONHelper.dictionaryFromData(self.keychain.data(forKey: AWSMobileClientConstants.SignInURIQueryParametersKey))
-        self.tokenURIQueryParameters = JSONHelper.dictionaryFromData(self.keychain.data(forKey: AWSMobileClientConstants.TokenURIQueryParametersKey))
         self.signOutURIQueryParameters = JSONHelper.dictionaryFromData(self.keychain.data(forKey: AWSMobileClientConstants.SignOutURIQueryParametersKey))
     }
 

AWSAuthSDK/Sources/AWSMobileClient/Internal/AWSCognitoAuth+Extensions.h

@@ -31,7 +31,6 @@ NS_ASSUME_NONNULL_BEGIN
                           tokensUri:(nullable NSString *) tokensUri
            signInUriQueryParameters:(nullable NSDictionary<NSString *, NSString *> *) signInUriQueryParameters
           signOutUriQueryParameters:(nullable NSDictionary<NSString *, NSString *> *) signOutUriQueryParameters
-            tokenUriQueryParameters:(nullable NSDictionary<NSString *, NSString *> *) tokenUriQueryParameters
        userPoolServiceConfiguration:(nullable AWSServiceConfiguration *)serviceConfiguration
                signInPrivateSession:(BOOL)signInPrivateSession;
 

AWSAuthSDK/Sources/AWSMobileClient/Internal/AWSCognitoAuth+Extensions.m

@@ -38,7 +38,6 @@ - (instancetype)initWithAppClientIdInternal:(NSString *) appClientId
                                   tokensUri:(NSString *) tokensUri
                    signInUriQueryParameters:(NSDictionary<NSString *, NSString *> *) signInUriQueryParameters
                   signOutUriQueryParameters:(NSDictionary<NSString *, NSString *> *) signOutUriQueryParameters
-                    tokenUriQueryParameters:(NSDictionary<NSString *, NSString *> *) tokenUriQueryParameters
                          isProviderExternal:(BOOL) isProviderExternal
                cognitoUserPoolServiceConfig:(nullable AWSServiceConfiguration *) serviceConfig
                        signInPrivateSession:(BOOL)isSignInPrivateSession;
@@ -60,7 +59,6 @@ - (instancetype)initWithAppClientId:(NSString *) appClientId
                           tokensUri:(nullable NSString *) tokensUri
            signInUriQueryParameters:(nullable NSDictionary<NSString *, NSString *> *) signInUriQueryParameters
           signOutUriQueryParameters:(nullable NSDictionary<NSString *, NSString *> *) signOutUriQueryParameters
-            tokenUriQueryParameters:(nullable NSDictionary<NSString *, NSString *> *) tokenUriQueryParameters
        userPoolServiceConfiguration:(nullable AWSServiceConfiguration *)serviceConfiguration
                signInPrivateSession:(BOOL)signInPrivateSession {
     BOOL isProviderExternal = YES;
@@ -83,7 +81,6 @@ - (instancetype)initWithAppClientId:(NSString *) appClientId
                                    tokensUri:tokensUri
                     signInUriQueryParameters:signInUriQueryParameters
                    signOutUriQueryParameters:signOutUriQueryParameters
-                     tokenUriQueryParameters:tokenUriQueryParameters
                           isProviderExternal:isProviderExternal
                 cognitoUserPoolServiceConfig:serviceConfiguration
                         signInPrivateSession:signInPrivateSession];

AWSAuthSDK/Sources/AWSMobileClient/Models/HostedUIOptions.swift

@@ -29,7 +29,6 @@ public struct HostedUIOptions {
     let federationProviderName: String?
 
     let signInURIQueryParameters: [String: String]?
-    let tokenURIQueryParameters: [String: String]?
     let signOutURIQueryParameters: [String: String]?
 
     let signInPrivateSession: Bool
@@ -43,15 +42,13 @@ public struct HostedUIOptions {
     ///   - idpIdentifier: The IdentityProvider identifier if using multiple instances of same identity provider.
     ///   - federationProviderName: If federating with Cognito Identity and using a provider like Auth0 specify the provider name, e.g. <your_domain>.auth0.com.
     ///   - signInURIQueryParameters: The additional query parameters apart from standard OAuth w/ open id connect parameters for signInURI. If specified here, the signInURIQueryParameters specified in `awsconfiguration.json` would be over-ridden.
-    ///   - tokenURIQueryParameters: The additional query parameters apart from standard OAuth w/ open id connect parameters for tokenURI. If specified here, the tokenURIQueryParameters specified in `awsconfiguration.json` would be over-ridden.
     ///   - signOutURIQueryParameters: The additional query parameters apart from standard OAuth w/ open id connect parameters for signOutURI. If specified here, the signOutURIQueryParameters specified in `awsconfiguration.json` would be over-ridden.
     public init(disableFederation: Bool = false,
                 scopes: [String]? = nil,
                 identityProvider: String? = nil,
                 idpIdentifier: String? = nil,
                 federationProviderName: String? = nil,
                 signInURIQueryParameters: [String: String]? = nil,
-                tokenURIQueryParameters: [String: String]? = nil,
                 signOutURIQueryParameters: [String: String]? = nil,
                 signInPrivateSession: Bool = false) {
         self.disableFederation = disableFederation
@@ -69,7 +66,6 @@ public struct HostedUIOptions {
         self.idpIdentifier = idpIdentifier
         self.federationProviderName = federationProviderName
         self.signInURIQueryParameters = signInURIQueryParameters
-        self.tokenURIQueryParameters = tokenURIQueryParameters
         self.signOutURIQueryParameters = signOutURIQueryParameters
         self.signInPrivateSession = signInPrivateSession
     }

AWSCognitoAuth/AWSCognitoAuth.m

@@ -1334,7 +1334,6 @@ - (instancetype)initWithAppClientId:(NSString *) appClientId
                                    tokensUri:[NSString stringWithFormat:@"%@/oauth2/token",webDomain]
                     signInUriQueryParameters:@{}
                    signOutUriQueryParameters:@{@"client_id": appClientId, @"logout_uri": signOutRedirectUri}
-                     tokenUriQueryParameters:@{}
                           isProviderExternal:NO];
 }
 
@@ -1353,7 +1352,6 @@ - (instancetype)initWithAppClientIdInternal:(NSString *) appClientId
                                   tokensUri:(NSString *) tokensUri
                    signInUriQueryParameters:(NSDictionary<NSString *, NSString *> *) signInUriQueryParameters
                   signOutUriQueryParameters:(NSDictionary<NSString *, NSString *> *) signOutUriQueryParameters
-                    tokenUriQueryParameters:(NSDictionary<NSString *, NSString *> *) tokenUriQueryParameters
                          isProviderExternal:(BOOL) isProviderExternal {
 
     return [self initWithAppClientIdInternal:appClientId
@@ -1371,10 +1369,9 @@ - (instancetype)initWithAppClientIdInternal:(NSString *) appClientId
                                    tokensUri:tokensUri
                     signInUriQueryParameters:signInUriQueryParameters
                    signOutUriQueryParameters:signOutUriQueryParameters
-                     tokenUriQueryParameters:tokenUriQueryParameters
-                          isProviderExternal:isProviderExternal
-                cognitoUserPoolServiceConfig:nil
-                        signInPrivateSession:NO];
+                         isProviderExternal:isProviderExternal
+               cognitoUserPoolServiceConfig:nil
+                       signInPrivateSession:NO];
 }
 
 - (instancetype)initWithAppClientIdInternal:(NSString *) appClientId
@@ -1392,7 +1389,6 @@ - (instancetype)initWithAppClientIdInternal:(NSString *) appClientId
                                   tokensUri:(NSString *) tokensUri
                    signInUriQueryParameters:(NSDictionary<NSString *, NSString *> *) signInUriQueryParameters
                   signOutUriQueryParameters:(NSDictionary<NSString *, NSString *> *) signOutUriQueryParameters
-                    tokenUriQueryParameters:(NSDictionary<NSString *, NSString *> *) tokenUriQueryParameters
                          isProviderExternal:(BOOL) isProviderExternal
                cognitoUserPoolServiceConfig:(nullable AWSServiceConfiguration *) serviceConfig
                        signInPrivateSession:(BOOL)isSignInPrivateSession {
@@ -1421,7 +1417,7 @@ - (instancetype)initWithAppClientIdInternal:(NSString *) appClientId
         _userPoolId = userPoolIdForEnablingASF;
         _isSFAuthenticationSessionEnabled = enableSFAuthSession;
         _signInUriQueryParameters = signInUriQueryParameters;
-        _tokensUriQueryParameters = tokenUriQueryParameters;
+        _tokensUriQueryParameters = @{};
         _isAuthProviderExternal = isProviderExternal;
         _userPoolConfig = serviceConfig;
         _isSignInPrivateSession = isSignInPrivateSession;
@@ -1448,7 +1444,6 @@ - (id)copyWithZone:(NSZone *)zone {
                                                                                                       tokensUri:self.tokensUri
                                                                                        signInUriQueryParameters:self.signInUriQueryParameters
                                                                                       signOutUriQueryParameters:self.signOutUriQueryParameters
-                                                                                        tokenUriQueryParameters:self.tokensUriQueryParameters
                                                                                              isProviderExternal:self.isAuthProviderExternal
                                                                                    cognitoUserPoolServiceConfig:self.userPoolConfig
                                                                                            signInPrivateSession:self.isSignInPrivateSession];