added SchemaRegistryConfigBasicAuthCredentialsSource (#728)

* added SchemaRegistryConfigBasicAuthCredentialsSource

* review changes

* actually ran the integration tests this time

* badly formatted xml comment fix

Author: mhowlett

src/Confluent.SchemaRegistry/CachedSchemaRegistryClient.cs

@@ -81,29 +81,22 @@ public CachedSchemaRegistryClient(IEnumerable<KeyValuePair<string, string>> conf
             // Convert.ToString returns "" in the null case here.
             var basicAuthSource = Convert.ToString(config.FirstOrDefault(prop => prop.Key.ToLower() == SchemaRegistryConfig.PropertyNames.SchemaRegistryBasicAuthCredentialsSource).Value);
             var basicAuthInfo = Convert.ToString(config.FirstOrDefault(prop => prop.Key.ToLower() == SchemaRegistryConfig.PropertyNames.SchemaRegistryBasicAuthUserInfo).Value);
-            if (basicAuthInfo != "" && basicAuthSource == "")
-            {
-                // default to USER_INFO if no source specified, since the strongly typed config
-                // class doesn't even expose the config source property.
-                basicAuthSource = "USER_INFO";
-            }
 
             string username = null;
             string password = null;
 
-            if (basicAuthSource == "USER_INFO")
+            if (basicAuthSource == "USER_INFO" || basicAuthSource == "")
             {
-                if (basicAuthInfo == "")
-                {
-                    throw new ArgumentException($"CachedSchemaRegistryClient: {SchemaRegistryConfig.PropertyNames.SchemaRegistryBasicAuthCredentialsSource} set to 'USER_INFO', but no value specified for {SchemaRegistryConfig.PropertyNames.SchemaRegistryBasicAuthUserInfo}.");
-                }
-                var userPass = (basicAuthInfo).Split(':');
-                if (userPass.Length != 2)
+                if (basicAuthInfo != "")
                 {
-                    throw new ArgumentException($"CachedSchemaRegistryClient: Configuration property {SchemaRegistryConfig.PropertyNames.SchemaRegistryBasicAuthUserInfo} must be of the form 'username:password'.");
+                    var userPass = (basicAuthInfo).Split(':');
+                    if (userPass.Length != 2)
+                    {
+                        throw new ArgumentException($"CachedSchemaRegistryClient: Configuration property {SchemaRegistryConfig.PropertyNames.SchemaRegistryBasicAuthUserInfo} must be of the form 'username:password'.");
+                    }
+                    username = userPass[0];
+                    password = userPass[1];
                 }
-                username = userPass[0];
-                password = userPass[1];
             }
             else if (basicAuthSource == "SASL_INHERIT")
             {
@@ -126,7 +119,7 @@ public CachedSchemaRegistryClient(IEnumerable<KeyValuePair<string, string>> conf
             }
             else
             {
-                // no basic auth info.
+                throw new ArgumentException($"CachedSchemaRegistryClient: Invalid value '{basicAuthSource}' specified for property '{SchemaRegistryConfig.PropertyNames.SchemaRegistryBasicAuthCredentialsSource}'");
             }
 
             foreach (var property in config)
@@ -136,8 +129,8 @@ public CachedSchemaRegistryClient(IEnumerable<KeyValuePair<string, string>> conf
                     continue;
                 }
 
-                if (property.Key != SchemaRegistryConfig.PropertyNames.SchemaRegistryUrl && 
-                    property.Key != SchemaRegistryConfig.PropertyNames.SchemaRegistryRequestTimeoutMs && 
+                if (property.Key != SchemaRegistryConfig.PropertyNames.SchemaRegistryUrl &&
+                    property.Key != SchemaRegistryConfig.PropertyNames.SchemaRegistryRequestTimeoutMs &&
                     property.Key != SchemaRegistryConfig.PropertyNames.SchemaRegistryMaxCachedSchemas &&
                     property.Key != SchemaRegistryConfig.PropertyNames.SchemaRegistryBasicAuthCredentialsSource &&
                     property.Key != SchemaRegistryConfig.PropertyNames.SchemaRegistryBasicAuthUserInfo)

src/Confluent.SchemaRegistry/SchemaRegistryConfig.cs

@@ -14,12 +14,30 @@
 //
 // Refer to LICENSE for more information.
 
+using System;
 using System.Collections;
 using System.Collections.Generic;
 
 
 namespace Confluent.SchemaRegistry
 {
+    /// <summary>
+    ///     Auth credentials source.
+    /// </summary>
+    public enum AuthCredentialsSource
+    {
+        /// <summary>
+        ///     Credentials are specified via the `schema.registry.basic.auth.user.info` config property in the form username:password.
+        ///     If `schema.registry.basic.auth.user.info` is not set, authentication is disabled.
+        /// </summary>
+        UserInfo,
+
+        /// <summary>
+        ///     Credentials are specified via the `sasl.username` and `sasl.password` configuration properties.
+        /// </summary>
+        SaslInherit
+    }
+
     /// <summary>
     ///     <see cref="CachedSchemaRegistryClient" /> configuration properties.
     /// </summary>
@@ -53,15 +71,44 @@ public static class PropertyNames
 
             /// <summary>
             ///     Specifies the configuration property(ies) that provide the basic authentication credentials.
+            ///     USER_INFO: Credentials are specified via the `schema.registry.basic.auth.user.info` config property in the form username:password.
+            ///                If `schema.registry.basic.auth.user.info` is not set, authentication is disabled.
+            ///     SASL_INHERIT: Credentials are specified via the `sasl.username` and `sasl.password` configuration properties.
+            /// 
+            ///     default: USER_INFO
             /// </summary>
             public const string SchemaRegistryBasicAuthCredentialsSource = "schema.registry.basic.auth.credentials.source";
 
             /// <summary>
             ///     Basic auth credentials in the form {username}:{password}.
+            /// 
+            ///     default: "" (no authentication).
             /// </summary>
             public const string SchemaRegistryBasicAuthUserInfo = "schema.registry.basic.auth.user.info";
         }
 
+        /// <summary>
+        ///     Specifies the configuration property(ies) that provide the basic authentication credentials.
+        /// </summary>
+        public AuthCredentialsSource? SchemaRegistryBasicAuthCredentialsSource
+        {
+            get
+            {
+                var r = Get(PropertyNames.SchemaRegistryBasicAuthCredentialsSource);
+                if (r == null) { return null; }
+                if (r == "USER_INFO") { return AuthCredentialsSource.UserInfo; }
+                if (r == "SASL_INHERIT") { return AuthCredentialsSource.SaslInherit; }
+                throw new ArgumentException($"Unknown ${PropertyNames.SchemaRegistryBasicAuthCredentialsSource} value: {r}.");
+            }
+            set
+            {
+                if (value == null) { this.properties.Remove(PropertyNames.SchemaRegistryBasicAuthCredentialsSource); }
+                else if (value == AuthCredentialsSource.UserInfo) { this.properties[PropertyNames.SchemaRegistryBasicAuthCredentialsSource] = "USER_INFO"; }
+                else if (value == AuthCredentialsSource.SaslInherit) { this.properties[PropertyNames.SchemaRegistryBasicAuthCredentialsSource] = "SASL_INHERIT"; }
+                else { throw new NotImplementedException($"Unknown ${PropertyNames.SchemaRegistryBasicAuthCredentialsSource} value: {value}."); }
+            }
+        }
+
         /// <summary>
         ///     A comma-separated list of URLs for schema registry instances that are
         ///     used to register or lookup schemas.

test/Confluent.SchemaRegistry.IntegrationTests/Tests/BasicAuth.cs

@@ -36,12 +36,18 @@ public static void BasicAuth(Config config)
             // 1. valid configuration cases
 
             // 1.1. credentials specified as USER_INFO.
-            var conf = new Dictionary<string, string>
-            { 
-                { "schema.registry.url", config.ServerWithAuth },
-                { "schema.registry.basic.auth.credentials.source", "USER_INFO" },
-                { "schema.registry.basic.auth.user.info", $"{config.Username}:{config.Password}" }
+            var conf = new SchemaRegistryConfig
+            {
+                SchemaRegistryUrl = config.ServerWithAuth,
+                SchemaRegistryBasicAuthCredentialsSource = AuthCredentialsSource.UserInfo,
+                SchemaRegistryBasicAuthUserInfo = $"{config.Username}:{config.Password}"
             };
+
+            // some sanity checking of strongly typed config property name mappings.
+            Assert.Equal(config.ServerWithAuth, conf.Get("schema.registry.url"));
+            Assert.Equal("USER_INFO", conf.Get("schema.registry.basic.auth.credentials.source"));
+            Assert.Equal($"{config.Username}:{config.Password}", conf.Get("schema.registry.basic.auth.user.info"));
+
             using (var sr = new CachedSchemaRegistryClient(conf))
             {
                 var topicName = Guid.NewGuid().ToString();
@@ -85,7 +91,7 @@ public static void BasicAuth(Config config)
 
             // 1.4. credentials specified as SASL_INHERIT via strongly typed config.
             var conf3 = new SchemaRegistryConfig { SchemaRegistryUrl = config.ServerWithAuth };
-            conf3.Set(SchemaRegistryConfig.PropertyNames.SchemaRegistryBasicAuthCredentialsSource, "SASL_INHERIT");
+            conf3.SchemaRegistryBasicAuthCredentialsSource = AuthCredentialsSource.SaslInherit;
             conf3.Set("sasl.username", config.Username);
             conf3.Set("sasl.password", config.Password);
             using (var sr = new CachedSchemaRegistryClient(conf3))
@@ -110,15 +116,23 @@ public static void BasicAuth(Config config)
                 }); 
             });
 
-            Assert.Throws<ArgumentException>(() => 
-            {   
+            Assert.Throws<ArgumentException>(() =>
+            {
                 var sr = new CachedSchemaRegistryClient(new Dictionary<string, string>
                 { 
                     { "schema.registry.url", config.ServerWithAuth },
-                    { "schema.registry.basic.auth.credentials.source", "USER_INFO" },
-                    { "sasl.username", config.Username },
-                    { "sasl.password", config.Password }
-                });
+                    { "schema.registry.basic.auth.credentials.source", "UBUTE_SOURCE" }
+                }); 
+            });
+
+            Assert.Throws<ArgumentException>(() =>
+            {
+                var sr = new CachedSchemaRegistryClient(new Dictionary<string, string>
+                { 
+                    { "schema.registry.url", config.ServerWithAuth },
+                    { "schema.registry.basic.auth.credentials.source", "NONE" },
+                    { "schema.registry.basic.auth.user.info", $"{config.Username:config.Password}" }
+                }); 
             });
 
             // connect to authenticating without credentials. shouldn't work.