Merge pull request #3738 from aws/Business-Metrics-Tracking-UA-2.1

Business metrics tracking UA 2.1

Author: muhammad-othman

generator/.DevConfigs/a069861d-cd92-4d43-b45b-3aa11112a39b.json

@@ -0,0 +1,9 @@
+{
+  "core": {
+    "changeLogMessages": [
+      "Update the AWS SDK for .NET to include encoded metrics in the `User-Agent` header to track which features were used for a given request (for example, which retry behavior and how credentials were resolved)"
+    ],
+    "type": "patch",
+    "updateMinimum": true
+  }
+}

generator/ServiceModels/s3/s3.customizations.json

@@ -8,7 +8,6 @@
             { "operation": "addAfter", "newType": "Amazon.S3.Internal.AmazonS3RedirectHandler", "targetType": "Amazon.Runtime.Internal.Unmarshaller" },
             { "operation": "addBefore", "newType": "Amazon.S3.Internal.S3Express.S3ExpressPreSigner", "targetType": "Amazon.Runtime.Internal.Signer" },
             { "operation": "addAfter", "newType": "Amazon.S3.Internal.AmazonS3PostMarshallHandler", "targetType": "Amazon.Runtime.Internal.EndpointResolver" },
-            { "operation": "addAfter", "newType": "Amazon.S3.Internal.AmazonS3UserAgentHandler", "targetType": "Amazon.Runtime.Internal.ChecksumHandler" },
             {
                 "condition":"this.Config.RetryMode == RequestRetryMode.Standard",
                 "operation": "replace",

sdk/src/Core/Amazon.Runtime/AmazonWebServiceRequest.cs

@@ -14,7 +14,7 @@
  */
 using System;
 using System.Collections.Generic;
-using System.Text;
+using Amazon.Runtime.Internal.UserAgent;
 
 namespace Amazon.Runtime
 {
@@ -26,7 +26,7 @@ public abstract partial class AmazonWebServiceRequest : Amazon.Runtime.Internal.
         private readonly object _lock = new object();
 
         internal RequestEventHandler mBeforeRequestEvent;
-        internal string UserAgentAddition { get; set; } = null;
+        UserAgentDetails Amazon.Runtime.Internal.IAmazonWebServiceRequest.UserAgentDetails { get; } = new UserAgentDetails();
 
         internal event RequestEventHandler BeforeRequestEvent
         {

sdk/src/Core/Amazon.Runtime/CredentialManagement/AWSCredentialsFactory.cs

@@ -12,17 +12,17 @@
  * express or implied. See the License for the specific language governing
  * permissions and limitations under the License.
  */
-using Amazon.Runtime.Internal;
 using Amazon.Runtime.CredentialManagement.Internal;
+using Amazon.Runtime.Credentials.Internal;
+using Amazon.Runtime.Internal.Settings;
+using Amazon.Runtime.Internal.UserAgent;
 using Amazon.Util;
+using Amazon.Util.Internal;
 using System;
 using System.Collections.Generic;
 using System.Globalization;
 using System.IO;
 using System.Linq;
-using Amazon.Runtime.Credentials.Internal;
-using Amazon.Runtime.Internal.Settings;
-using Amazon.Util.Internal;
 
 namespace Amazon.Runtime.CredentialManagement
 {
@@ -199,12 +199,16 @@ private static AWSCredentials GetAWSCredentialsInternal(
         {
             if (profileType.HasValue)
             {
+                AWSCredentials awsCredentials = null;
                 switch (profileType)
                 {
                     case CredentialProfileType.Basic:
-                        return  new BasicAWSCredentials(options.AccessKey, options.SecretKey, options.AwsAccountId);
+                        awsCredentials = new BasicAWSCredentials(options.AccessKey, options.SecretKey, options.AwsAccountId);
+                        awsCredentials.FeatureIdSources.Add(UserAgentFeatureId.CREDENTIALS_PROFILE);
+                        break;
                     case CredentialProfileType.Session:
-                        return new SessionAWSCredentials(options.AccessKey, options.SecretKey, options.Token, options.AwsAccountId);
+                        awsCredentials = new SessionAWSCredentials(options.AccessKey, options.SecretKey, options.Token, options.AwsAccountId);
+                        break;
                     case CredentialProfileType.AssumeRole:
                     case CredentialProfileType.AssumeRoleExternal:
                     case CredentialProfileType.AssumeRoleMFA:
@@ -249,7 +253,11 @@ private static AWSCredentials GetAWSCredentialsInternal(
                             ExternalId = options.ExternalID,
                             MfaSerialNumber = options.MfaSerial
                         };
-                        return new AssumeRoleAWSCredentials(sourceCredentials, options.RoleArn, roleSessionName, assumeRoleOptions);
+
+                        awsCredentials = new AssumeRoleAWSCredentials(sourceCredentials, options.RoleArn, roleSessionName, assumeRoleOptions);
+                        awsCredentials.FeatureIdSources.Add(UserAgentFeatureId.CREDENTIALS_PROFILE_SOURCE_PROFILE);
+                        break;
+
                     case CredentialProfileType.AssumeRoleCredentialSource:
                     case CredentialProfileType.AssumeRoleCredentialSourceSessionName:
                         // get credentials specified by credentialSource
@@ -269,29 +277,31 @@ private static AWSCredentials GetAWSCredentialsInternal(
 
                         roleSessionName = options.RoleSessionName ?? RoleSessionNamePrefix + AWSSDKUtils.CorrectedUtcNow.Ticks;
                         assumeRoleOptions = new AssumeRoleAWSCredentialsOptions();
-                        return new AssumeRoleAWSCredentials(sourceCredentials, options.RoleArn, roleSessionName, assumeRoleOptions);
+
+                        awsCredentials = new AssumeRoleAWSCredentials(sourceCredentials, options.RoleArn, roleSessionName, assumeRoleOptions);
+                        awsCredentials.FeatureIdSources.Add(UserAgentFeatureId.CREDENTIALS_PROFILE_NAMED_PROVIDER);
+                        break;
+
                     case CredentialProfileType.AssumeRoleWithWebIdentity:
                     case CredentialProfileType.AssumeRoleWithWebIdentitySessionName:
-                        return new AssumeRoleWithWebIdentityCredentials(options.WebIdentityTokenFile, options.RoleArn, options.RoleSessionName);
-                    
+                        awsCredentials = new AssumeRoleWithWebIdentityCredentials(options.WebIdentityTokenFile, options.RoleArn, options.RoleSessionName);
+                        awsCredentials.FeatureIdSources.Add(UserAgentFeatureId.CREDENTIALS_PROFILE_STS_WEB_ID_TOKEN);
+                        break;
+
                     case CredentialProfileType.SSO:
-                    {
-                        var ssoCredentialsOptions = new SSOAWSCredentialsOptions 
-                        { 
+                        var ssoCredentialsOptions = new SSOAWSCredentialsOptions
+                        {
                             SessionName = options.SsoSession,
                             Scopes = options.SsoRegistrationScopes?.Split(new char[] { ',' }, StringSplitOptions.RemoveEmptyEntries).Select(p => p.Trim()).ToList()
                         };
 
-                        return new SSOAWSCredentials(
-                            options.SsoAccountId, options.SsoRegion,
-                            options.SsoRoleName, options.SsoStartUrl,
-                            ssoCredentialsOptions
-                        );
-                    }
-      
+                        var isLegacyFormat = string.IsNullOrEmpty(options.SsoSession);
+                        awsCredentials = new SSOAWSCredentials(options.SsoAccountId, options.SsoRegion, options.SsoRoleName, options.SsoStartUrl, ssoCredentialsOptions);
+                        awsCredentials.FeatureIdSources.Add(isLegacyFormat ? UserAgentFeatureId.CREDENTIALS_PROFILE_SSO_LEGACY : UserAgentFeatureId.CREDENTIALS_PROFILE_SSO);
+                        break;
+
                     case CredentialProfileType.SAMLRole:
                     case CredentialProfileType.SAMLRoleUserIdentity:
-
                         if (UserCrypto.IsUserCryptAvailable)
                         {
                             var federatedOptions = new FederatedAWSCredentialsOptions()
@@ -300,15 +310,18 @@ private static AWSCredentials GetAWSCredentialsInternal(
                                 UserIdentity = options.UserIdentity,
                                 ProfileName = profileName
                             };
-                            return new FederatedAWSCredentials(new SAMLEndpointManager().GetEndpoint(options.EndpointName),
+                            awsCredentials = new FederatedAWSCredentials(new SAMLEndpointManager().GetEndpoint(options.EndpointName),
                                 options.RoleArn, federatedOptions);
+                            break;
                         }
                         else
                         {
                             return ThrowOrReturnNull("Federated credentials are not available on this platform.", null, throwIfInvalid);
                         }
                     case CredentialProfileType.CredentialProcess:
-                        return new ProcessAWSCredentials(options.CredentialProcess, options.AwsAccountId);
+                        awsCredentials = new ProcessAWSCredentials(options.CredentialProcess, options.AwsAccountId);
+                        awsCredentials.FeatureIdSources.Add(UserAgentFeatureId.CREDENTIALS_PROFILE_PROCESS);
+                        break;
 
                     default:
                         var defaultMessage = profileName == null
@@ -319,6 +332,11 @@ private static AWSCredentials GetAWSCredentialsInternal(
 
                         return ThrowOrReturnNull(defaultMessage, null, throwIfInvalid);
                 }
+
+                if (profileSource is NetSDKCredentialsFile)
+                    awsCredentials.FeatureIdSources.Add(UserAgentFeatureId.CREDENTIALS_AWS_SDK_STORE);
+
+                return awsCredentials;
             }
             else
             {

sdk/src/Core/Amazon.Runtime/Credentials/AWSCredentials.cs

@@ -13,8 +13,9 @@
  * permissions and limitations under the License.
  */
 
-
 using Amazon.Runtime.Identity;
+using Amazon.Runtime.Internal.UserAgent;
+using System.Collections.Generic;
 
 namespace Amazon.Runtime
 {
@@ -23,6 +24,16 @@ namespace Amazon.Runtime
     /// </summary>
     public abstract class AWSCredentials : BaseIdentity
     {
+        /// <summary>
+        /// Internal property that can be used to specify how this instance of AWS credentials were resolved.
+        /// </summary>
+        /// <remarks>
+        /// Credential providers MUST add to this property to have their specific feature ID tracked.
+        /// <para />
+        /// If empty, no value will be included in the user agent header.
+        /// </remarks>
+        internal HashSet<UserAgentFeatureId> FeatureIdSources { get; set; } = new();
+
         /// <summary>
         /// Returns a copy of ImmutableCredentials
         /// </summary>

sdk/src/Core/Amazon.Runtime/Credentials/AssumeRoleAWSCredentials.cs

@@ -13,16 +13,17 @@
  * permissions and limitations under the License.
  */
 using Amazon.Runtime.Internal;
+using Amazon.Runtime.Internal.UserAgent;
 using Amazon.Runtime.Internal.Util;
 using Amazon.Runtime.SharedInterfaces;
 using Amazon.RuntimeDependencies;
 using Amazon.Util.Internal;
 using System;
+using System.Diagnostics.CodeAnalysis;
 using System.Globalization;
 using System.Net;
-using System.Diagnostics.CodeAnalysis;
-using ThirdParty.RuntimeBackports;
 using System.Threading.Tasks;
+using ThirdParty.RuntimeBackports;
 
 namespace Amazon.Runtime
 {
@@ -33,7 +34,6 @@ namespace Amazon.Runtime
     public class AssumeRoleAWSCredentials : RefreshingAWSCredentials
     {
         private RegionEndpoint DefaultSTSClientRegion = RegionEndpoint.USEast1;
-
         private Logger _logger = Logger.GetLogger(typeof(AssumeRoleAWSCredentials));
 
         /// <summary>
@@ -85,6 +85,7 @@ public AssumeRoleAWSCredentials(AWSCredentials sourceCredentials, string roleArn
             RoleArn = roleArn;
             RoleSessionName = roleSessionName;
             Options = options;
+            FeatureIdSources.Add(UserAgentFeatureId.CREDENTIALS_STS_ASSUME_ROLE);
 
             // Make sure to fetch new credentials well before the current credentials expire to avoid
             // any request being made with expired credentials.

sdk/src/Core/Amazon.Runtime/Credentials/AssumeRoleWithWebIdentityCredentials.cs

@@ -26,6 +26,7 @@
 using System.Net;
 using System.Text.RegularExpressions;
 using System.Threading.Tasks;
+using Amazon.Runtime.Internal.UserAgent;
 
 namespace Amazon.Runtime
 {
@@ -65,6 +66,7 @@ public partial class AssumeRoleWithWebIdentityCredentials : RefreshingAWSCredent
         private AssumeRoleWithWebIdentityCredentialsOptions _options;
 
         #region Properties
+        
         /// <summary>
         /// The absolute path to the file on disk containing an OIDC token
         /// </summary>
@@ -79,7 +81,8 @@ public partial class AssumeRoleWithWebIdentityCredentials : RefreshingAWSCredent
         /// An identifier for the assumed role session.
         /// </summary>
         public string RoleSessionName { get; }
-#endregion Properties
+
+        #endregion Properties
 
         /// <summary>
         /// Constructs an AssumeRoleWithWebIdentityCredentials object.
@@ -122,6 +125,7 @@ public AssumeRoleWithWebIdentityCredentials(string webIdentityTokenFile, string
             RoleArn = roleArn;
             RoleSessionName = string.IsNullOrEmpty(roleSessionName) ? _roleSessionNameDefault : roleSessionName;
             _options = options;
+            FeatureIdSources.Add(UserAgentFeatureId.CREDENTIALS_STS_ASSUME_ROLE_WEB_ID);
 
             // Make sure to fetch new credentials well before the current credentials expire to avoid
             // any request being made with expired credentials.
@@ -138,7 +142,11 @@ public static AssumeRoleWithWebIdentityCredentials FromEnvironmentVariables()
             var webIdentityTokenFile = Environment.GetEnvironmentVariable(WebIdentityTokenFileEnvVariable);
             var roleArn = Environment.GetEnvironmentVariable(RoleArnEnvVariable);
             var roleSessionName = Environment.GetEnvironmentVariable(RoleSessionNameEnvVariable);
-            return new AssumeRoleWithWebIdentityCredentials(webIdentityTokenFile, roleArn, roleSessionName);
+
+            var credentials = new AssumeRoleWithWebIdentityCredentials(webIdentityTokenFile, roleArn, roleSessionName);
+            credentials.FeatureIdSources.Add(UserAgentFeatureId.CREDENTIALS_ENV_VARS_STS_WEB_ID_TOKEN);
+            
+            return credentials;
         }
 
         protected override CredentialsRefreshState GenerateNewCredentials()

sdk/src/Core/Amazon.Runtime/Credentials/BasicAWSCredentials.cs

@@ -13,6 +13,7 @@
  * permissions and limitations under the License.
  */
 
+using Amazon.Runtime.Internal.UserAgent;
 using Amazon.Runtime.Internal.Util;
 using Amazon.Util;
 
@@ -29,10 +30,8 @@ public class BasicAWSCredentials : AWSCredentials
 
         #endregion
 
-
         #region Constructors
 
-
         /// <summary>
         /// Constructs a BasicAWSCredentials object for the specified accessKey and secretKey.
         /// </summary>
@@ -57,12 +56,12 @@ public BasicAWSCredentials(string accessKey, string secretKey, string accountId)
             if (!string.IsNullOrEmpty(accessKey))
             {
                 _credentials = new ImmutableCredentials(accessKey, secretKey, null, accountId);
+                FeatureIdSources.Add(UserAgentFeatureId.CREDENTIALS_CODE);
             }
         }
 
         #endregion
 
-
         #region Abstract class overrides
 
         /// <summary>
@@ -92,7 +91,6 @@ public override bool Equals(object obj)
                 new object[] { _credentials },
                 new object[] { bac._credentials });
         }
-
         public override int GetHashCode()
         {
             return Hashing.Hash(_credentials);

sdk/src/Core/Amazon.Runtime/Credentials/DefaultInstanceProfileAWSCredentials.cs

@@ -12,6 +12,7 @@
  * express or implied. See the License for the specific language governing
  * permissions and limitations under the License.
  */
+using Amazon.Runtime.Internal.UserAgent;
 using Amazon.Runtime.Internal.Util;
 using Amazon.Util;
 using System;
@@ -77,14 +78,18 @@ public static DefaultInstanceProfileAWSCredentials Instance
         private DefaultInstanceProfileAWSCredentials()
         {
             // if IMDS is turned off, no need to spin up the timer task
-            if (!EC2InstanceMetadata.IsIMDSEnabled) return;
+            if (!EC2InstanceMetadata.IsIMDSEnabled)
+            {
+                return;
+            }
 
             _logger = Logger.GetLogger(typeof(DefaultInstanceProfileAWSCredentials));
-            
             _credentialsRetrieverTimer = new Timer(RenewCredentials, null, TimeSpan.Zero, _neverTimespan); // This invokes synchronous calls in seperate thread.
+            FeatureIdSources.Add(UserAgentFeatureId.CREDENTIALS_IMDS);
         }
 
         #region Overrides
+        
         /// <summary>
         /// Returns a copy of the most recent instance profile credentials.
         /// </summary>
@@ -262,7 +267,8 @@ public override async Task<ImmutableCredentials> GetCredentialsAsync()
 
             return credentials;
         }
-#endregion
+
+        #endregion
 
         #region Private members
         private void RenewCredentials(object unused)
@@ -366,7 +372,8 @@ private static void CheckIsIMDSEnabled()
         }
 #endregion
 
-#region IDisposable Support
+        #region IDisposable Support
+
         private bool _isDisposed = false;
 
         protected virtual void Dispose(bool disposing)
@@ -395,6 +402,7 @@ public void Dispose()
             Dispose(true);
             GC.SuppressFinalize(this);
         }
-#endregion
+
+        #endregion
     }
 }

sdk/src/Core/Amazon.Runtime/Credentials/EnvironmentVariablesAWSCredentials.cs

@@ -12,6 +12,7 @@
  * express or implied. See the License for the specific language governing
  * permissions and limitations under the License.
  */
+using Amazon.Runtime.Internal.UserAgent;
 using Amazon.Runtime.Internal.Util;
 using System;
 using System.Globalization;
@@ -56,6 +57,8 @@ public EnvironmentVariablesAWSCredentials()
 
             // We need to do an initial fetch to validate that we can use environment variables to get the credentials.
             FetchCredentials();
+
+            FeatureIdSources.Add(UserAgentFeatureId.CREDENTIALS_ENV_VARS);
         }
 
         #endregion