Add CodeCatalyst user information command for AWS Toolkit

[Copilot]

This PR addresses a user request for "Atlassian user info" by implementing a new VS Code command that displays AWS CodeCatalyst user information. The user appears to have been confused about which service they were using, as this is the AWS Toolkit repository, not an Atlassian product.

What's Added

New Command: aws.codecatalyst.showUserInfo

• Title: "AWS: Show User Information"
• Functionality: Displays current CodeCatalyst user details in a modal dialog
• Information shown: User ID, Username, Display Name, and Primary Email
• Access methods: Command Palette and CodeCatalyst Explorer context menu

Implementation Details

The command leverages existing AWS Toolkit infrastructure:

• Authentication: Uses the established CodeCatalyst authentication flow via client.verifySession()
• Error handling: Provides clear error messages when authentication fails or API errors occur
• Enablement: Only available when CodeCatalyst connection is active
• UI integration: Added to both Command Palette and CodeCatalyst Explorer right-click menu

Example Usage

1. Via Command Palette: Ctrl+Shift+P → "AWS: Show User Information"
2. Via Context Menu: Right-click in CodeCatalyst Explorer → "Show User Information"

The command displays user information in a modal dialog like:

User ID: AKIAIOSFODNN7EXAMPLE
Username: johndoe  
Display Name: John Doe
Email: [email protected]

Files Changed

• packages/core/src/codecatalyst/commands.ts - Added showUserInfo function and command method
• packages/toolkit/package.json - Added VS Code command contributions and context menu entry
• packages/core/package.nls.json - Added localization string for command title
• packages/core/src/test/codecatalyst/commands.test.ts - Added unit tests for success and error scenarios

User Experience

This change transforms a confusing situation where users ask about "Atlassian user info" in an AWS context into a clear path to see their actual AWS/CodeCatalyst user information. The command follows established AWS Toolkit patterns and provides proper error guidance for authentication issues.

Fixes #55.

---

✨ Let Copilot coding agent set things up for you — coding agent works faster and does higher quality work when set up for your repo.

[cobbdan]

/q review

[amazon-q-developer]

⏳ Code review in progress. Analyzing for code quality issues and best practices. Detailed findings will be posted upon completion.

Using Amazon Q Developer for GitHub

Amazon Q Developer¹ is an AI-powered assistant that integrates directly into your GitHub workflow, enhancing your development process with intelligent features for code development, review, and transformation.

Slash Commands

Command	Description
/q <message>	Chat with the agent to ask questions or request revisions
/q review	Requests an Amazon Q powered code review
/q help	Displays usage information

Features

Agentic Chat
Enables interactive conversation with Amazon Q to ask questions about the pull request or request specific revisions. Use /q <message> in comment threads or the review body to engage with the agent directly.

Code Review
Analyzes pull requests for code quality, potential issues, and security concerns. Provides feedback and suggested fixes. Automatically triggered on new or reopened PRs (can be disabled for AWS registered installations), or manually with /q review slash command in a comment.

Customization

You can create project-specific rules for Amazon Q Developer to follow:

1. Create a .amazonq/rules folder in your project root.
2. Add Markdown files in this folder to define rules (e.g., cdk-rules.md).
3. Write detailed prompts in these files, such as coding standards or best practices.
4. Amazon Q Developer will automatically use these rules when generating code or providing assistance.

Example rule:

All Amazon S3 buckets must have encryption enabled, enforce SSL, and block public access.
All Amazon DynamoDB Streams tables must have encryption enabled.
All Amazon SNS topics must have encryption enabled and enforce SSL.
All Amazon SNS queues must enforce SSL.

Feedback

To provide feedback on Amazon Q Developer, create an issue in the Amazon Q Developer public repository.

For more detailed information, visit the Amazon Q for GitHub documentation.

Footnotes

1. Amazon Q Developer uses generative AI. You may need to verify generated code before using it in your environment. See the AWS Responsible AI Policy. ↩

[amazon-q-developer]

Summary

This PR successfully implements a new CodeCatalyst user information command that addresses the user's request for "Atlassian user info" by providing AWS CodeCatalyst user details instead. The implementation follows established patterns in the codebase and provides good integration with VS Code's command system.

Key Strengths

• Clear Intent: The PR addresses user confusion by providing the correct AWS CodeCatalyst user information instead of non-existent Atlassian functionality
• Consistent Architecture: Follows existing patterns for CodeCatalyst commands with proper authentication flow and error handling
• Good Integration: Properly integrates with VS Code's command palette and context menus
• Test Coverage: Includes unit tests for both success and error scenarios

Critical Issues to Address

1. Security Concern: User information (User ID, email) is displayed in full without any masking, which could lead to information exposure
2. Missing Localization: Several error message strings are not included in the localization file
3. Test Quality: Mock client creation uses incorrect typing that could cause runtime issues

Recommendations

• Implement data masking for sensitive user information in the display
• Add missing localization strings for all error messages
• Fix the test mock setup to use proper TypeScript types
• Consider more specific error handling for different authentication states
• Add a newline at the end of the test file to follow coding standards

The core functionality is solid, but the security and localization issues should be addressed before merging.

[amazon-q-developer]

🛑 Security Vulnerability: The user information displayed in the modal dialog may contain sensitive data that could be exposed to unauthorized users. The userDetails.userId and userDetails.primaryEmail fields should be handled with care to prevent information disclosure.

Suggested change

	const userInfoMessage = [
	`**User Information**`,
	``,
	`**User ID:** ${userDetails.userId}`,
	`**Username:** ${userDetails.userName}`,
	`**Display Name:** ${userDetails.displayName}`,
	`**Email:** ${userDetails.primaryEmail}`,
	const userInfoMessage = [
	`**User Information**`,
	``,
	`**User ID:** ${userDetails.userId.substring(0, 8)}...`,
	`**Username:** ${userDetails.userName}`,
	`**Display Name:** ${userDetails.displayName}`,
	`**Email:** ${userDetails.primaryEmail.replace(/(.{2})(.*)(@.*)/, '$1***$3')}`,
	].join('\n')

[amazon-q-developer]

The error handling could be improved by providing more specific error messages based on the error type. Consider checking for authentication-specific errors and providing clearer guidance to users.

Suggested change

	if (error instanceof ToolkitError) {
	await vscode.window.showErrorMessage(
	localize('aws.codecatalyst.userInfo.error', 'Failed to get user information: {0}', error.message)
	)
	} else {
	await vscode.window.showErrorMessage(
	localize('aws.codecatalyst.userInfo.errorGeneric', 'Failed to get user information. Please ensure you are authenticated with CodeCatalyst.')
	)
	}
	throw error
	}
	} catch (error) {
	if (error instanceof ToolkitError) {
	if (error.code === 'NoConnectionBadState') {
	await vscode.window.showErrorMessage(
	localize('aws.codecatalyst.userInfo.notConnected', 'Not connected to CodeCatalyst. Please connect first.')
	)
	} else {
	await vscode.window.showErrorMessage(
	localize('aws.codecatalyst.userInfo.error', 'Failed to get user information: {0}', error.message)
	)
	}
	} else {
	await vscode.window.showErrorMessage(
	localize('aws.codecatalyst.userInfo.errorGeneric', 'Failed to get user information. Please ensure you are authenticated with CodeCatalyst.')
	)
	}
	throw error
	}

[amazon-q-developer]

The mock client creation is incorrect. Object as any doesn't provide the proper type structure for CodeCatalystClient. This could lead to runtime errors in tests.

[amazon-q-developer]

The test file is missing a newline at the end, which violates common coding standards and may cause issues with some tools.

[amazon-q-developer]

The localization string is missing additional entries for the error messages used in the showUserInfo function. This could cause localization issues.