Refactor base json code to make extending easier

Author: pjdarton

src/main/java/io/jenkins/plugins/credentials/secretsmanager/factory/BaseAwsJsonCredentials.java

@@ -8,6 +8,7 @@
 import com.cloudbees.plugins.credentials.CredentialsUnavailableException;
 import com.cloudbees.plugins.credentials.impl.BaseStandardCredentials;
 
+import edu.umd.cs.findbugs.annotations.NonNull;
 import hudson.util.Secret;
 import io.jenkins.plugins.credentials.secretsmanager.Messages;
 import net.sf.json.JSON;
@@ -49,22 +50,51 @@ protected BaseAwsJsonCredentials(BaseAwsJsonCredentials toSnapshot) {
         this.supplierOfSecretData = new Snapshot<Secret>(secretDataToSnapshot);
     }
 
+    // Note:
+    // We MUST NOT tell anyone what the JSON is, or give any hints as to its
+    // contents, as that could then leak sensitive data so we have to suppress the
+    // informative exception(s) and just tell the user that it didn't work.
+
+    /**
+     * Reads the secret JSON and returns the field requested.
+     * 
+     * @param fieldname The (top-level) field that we want (which must be a
+     *                  {@link String}).
+     * @return The contents of that JSON field.
+     * @throws CredentialsUnavailableException if the JSON is missing the field, or
+     *                                         the field is not a {@link String}.
+     */
+    protected String getMandatoryField(@NonNull JSONObject secretJson, @NonNull String fieldname) {
+        final String fieldValue;
+        try {
+            fieldValue = secretJson.getString(fieldname);
+        } catch (JSONException | NullPointerException ex) {
+            throw new CredentialsUnavailableException("secret", Messages.wrongJsonError(getId(), fieldname));
+        }
+        return fieldValue;
+    }
+
     /**
      * Reads the secret JSON and returns the field requested.
      * 
      * @param fieldname The (top-level) field that we want (which must be a
      *                  {@link String}).
      * @return The contents of that JSON field.
+     */
+    protected String getOptionalField(@NonNull JSONObject secretJson, @NonNull String fieldname) {
+        final String fieldValue = secretJson.optString(fieldname);
+        return fieldValue;
+    }
+
+    /**
+     * Reads the secret JSON and returns it.
+     * 
+     * @return The contents of that JSON field.
      * @throws CredentialsUnavailableException if there is no JSON, or it is not
-     *                                         valid JSON, or it is missing the
-     *                                         field, or the field is not a
-     *                                         {@link String}.
+     *                                         valid JSON.
      */
-    protected String getFieldFromSecretJson(String fieldname) {
-        // Note:
-        // We MUST NOT tell anyone what the JSON is, or give any hints as to its
-        // contents, as that could then leak sensitive data so we have to suppress the
-        // informative exception(s) and just tell the user that it didn't work.
+    @NonNull
+    protected JSONObject getSecretJson() {
         final Secret secret = supplierOfSecretData.get();
         final String rawSecretJson = secret == null ? "" : secret.getPlainText();
         if (rawSecretJson.isEmpty()) {
@@ -78,13 +108,12 @@ protected String getFieldFromSecretJson(String fieldname) {
         }
         // if we got this far then we have some syntactically-valid JSON
         // ... but it might not be a JSON object containing the field we wanted.
-        final String fieldValue;
+        final JSONObject jsonObject;
         try {
-            final JSONObject jsonObject = (JSONObject) parsedJson;
-            fieldValue = jsonObject.getString(fieldname);
-        } catch (JSONException | ClassCastException | NullPointerException ex) {
-            throw new CredentialsUnavailableException("secret", Messages.wrongJsonError(getId(), fieldname));
+            jsonObject = (JSONObject) parsedJson;
+        } catch (ClassCastException ex) {
+            throw new CredentialsUnavailableException("secret", Messages.noValidJsonError(getId()));
         }
-        return fieldValue;
+        return jsonObject;
     }
 }

src/main/java/io/jenkins/plugins/credentials/secretsmanager/factory/username_password/AwsJsonUsernamePasswordCredentials.java

@@ -67,13 +67,13 @@ public AwsJsonUsernamePasswordCredentials(String id, String description, Supplie
     @NonNull
     @Override
     public Secret getPassword() {
-        return Secret.fromString(getFieldFromSecretJson(JSON_FIELDNAME_FOR_PASSWORD));
+        return Secret.fromString(getMandatoryField(getSecretJson(), JSON_FIELDNAME_FOR_PASSWORD));
     }
 
     @NonNull
     @Override
     public String getUsername() {
-        return getFieldFromSecretJson(JSON_FIELDNAME_FOR_USERNAME);
+        return getMandatoryField(getSecretJson(), JSON_FIELDNAME_FOR_USERNAME);
     }
 
     @Override

src/test/java/io/jenkins/plugins/credentials/secretsmanager/factory/BaseAwsJsonCredentialsTest.java

@@ -15,10 +15,11 @@
 import hudson.util.Secret;
 import io.jenkins.plugins.credentials.secretsmanager.AwsCredentialsProvider;
 import io.jenkins.plugins.credentials.secretsmanager.Messages;
+import net.sf.json.JSONObject;
 
 public class BaseAwsJsonCredentialsTest {
     @Test
-    public void getFieldFromSecretJsonGivenValidJsonThenReturnsValue() {
+    public void getMandatoryFieldGivenValidJsonThenReturnsValue() {
         // Given
         final String expected = "myFieldValue";
         final String fieldName = "myFieldName";
@@ -28,14 +29,15 @@ public void getFieldFromSecretJsonGivenValidJsonThenReturnsValue() {
         final TestClass instance = new TestClass(stubSupplier);
 
         // When
-        final String actual = instance.getFieldFromSecretJson(fieldName);
+        final JSONObject jsonData = instance.getSecretJson();
+        final String actual = instance.getMandatoryField(jsonData, fieldName);
 
         // Then
         assertThat(actual).isEqualTo(expected);
     }
 
     @Test
-    public void getFieldFromSecretJsonGivenValidJsonWithUnwantedDataThenReturnsValue() {
+    public void getMandatoryFieldGivenValidJsonWithUnwantedDataThenReturnsValue() {
         // Given
         final String expected = "myFieldValue";
         final String fieldName = "myFieldName";
@@ -45,24 +47,60 @@ public void getFieldFromSecretJsonGivenValidJsonWithUnwantedDataThenReturnsValue
         final TestClass instance = new TestClass(stubSupplier);
 
         // When
-        final String actual = instance.getFieldFromSecretJson(fieldName);
+        final JSONObject jsonData = instance.getSecretJson();
+        final String actual = instance.getMandatoryField(jsonData, fieldName);
 
         // Then
         assertThat(actual).isEqualTo(expected);
     }
 
     @Test
-    public void getFieldFromSecretJsonGivenMissingJsonThenReturnsThrows() {
+    public void getOptionalFieldGivenValidJsonThenReturnsValue() {
+        // Given
+        final String expected = "";
+        final String fieldName = "fieldWeDontHaveInTheJson";
+        final String json = mkJson("oneField", "oneValue");
+        final Secret secretJson = Secret.fromString(json);
+        final Supplier<Secret> stubSupplier = new StubSupplier<>(secretJson);
+        final TestClass instance = new TestClass(stubSupplier);
+
+        // When
+        final JSONObject jsonData = instance.getSecretJson();
+        final String actual = instance.getOptionalField(jsonData, fieldName);
+
+        // Then
+        assertThat(actual).isEqualTo(expected);
+    }
+
+    @Test
+    public void getOptionalFieldGivenValidJsonWithoutFieldThenReturnsEmptyString() {
+        // Given
+        final String expected = "";
+        final String fieldName = "fieldWeDontHaveInTheJson";
+        final String json = mkJson("oneField", "oneValue");
+        final Secret secretJson = Secret.fromString(json);
+        final Supplier<Secret> stubSupplier = new StubSupplier<>(secretJson);
+        final TestClass instance = new TestClass(stubSupplier);
+
+        // When
+        final JSONObject jsonData = instance.getSecretJson();
+        final String actual = instance.getOptionalField(jsonData, fieldName);
+
+        // Then
+        assertThat(actual).isEqualTo(expected);
+    }
+
+    @Test
+    public void getSecretJsonGivenMissingJsonThenReturnsThrows() {
         // Given
         final Secret secretJson = null;
         final Supplier<Secret> stubSupplier = new StubSupplier<>(secretJson);
         final TestClass instance = new TestClass(stubSupplier);
-        final String missingFieldName = "someFieldName";
 
         // When
         CredentialsUnavailableException actual = null;
         try {
-            instance.getFieldFromSecretJson(missingFieldName);
+            instance.getSecretJson();
         } catch (CredentialsUnavailableException ex) {
             actual = ex;
         }
@@ -74,18 +112,17 @@ public void getFieldFromSecretJsonGivenMissingJsonThenReturnsThrows() {
     }
 
     @Test
-    public void getFieldFromSecretJsonGivenEmptyJsonThenReturnsThrows() {
+    public void getSecretJsonGivenEmptyJsonThenReturnsThrows() {
         // Given
         final String json = "";
         final Secret secretJson = Secret.fromString(json);
         final Supplier<Secret> stubSupplier = new StubSupplier<>(secretJson);
         final TestClass instance = new TestClass(stubSupplier);
-        final String missingFieldName = "someFieldName";
 
         // When
         CredentialsUnavailableException actual = null;
         try {
-            instance.getFieldFromSecretJson(missingFieldName);
+            instance.getSecretJson();
         } catch (CredentialsUnavailableException ex) {
             actual = ex;
         }
@@ -97,17 +134,16 @@ public void getFieldFromSecretJsonGivenEmptyJsonThenReturnsThrows() {
     }
 
     @Test
-    public void getFieldFromSecretJsonGivenInvalidJsonThenReturnsThrows() {
+    public void getSecretJsonGivenInvalidJsonThenReturnsThrows() {
         final String json = "1234 is not valid JSON";
         final Secret secretJson = Secret.fromString(json);
         final Supplier<Secret> stubSupplier = new StubSupplier<>(secretJson);
         final TestClass instance = new TestClass(stubSupplier);
-        final String missingFieldName = "fieldName";
 
         // When
         CredentialsUnavailableException actual = null;
         try {
-            instance.getFieldFromSecretJson(missingFieldName);
+            instance.getSecretJson();
         } catch (CredentialsUnavailableException ex) {
             actual = ex;
         }
@@ -121,7 +157,30 @@ public void getFieldFromSecretJsonGivenInvalidJsonThenReturnsThrows() {
     }
 
     @Test
-    public void getFieldFromSecretJsonGivenValidJsonMissingDesiredFieldThenReturnsThrows() {
+    public void getSecretJsonGivenUnexpectedJsonThenReturnsThrows() {
+        final String json = "[ \"hello\", \"world\" ]";
+        final Secret secretJson = Secret.fromString(json);
+        final Supplier<Secret> stubSupplier = new StubSupplier<>(secretJson);
+        final TestClass instance = new TestClass(stubSupplier);
+
+        // When
+        CredentialsUnavailableException actual = null;
+        try {
+            instance.getSecretJson();
+        } catch (CredentialsUnavailableException ex) {
+            actual = ex;
+        }
+
+        // Then
+        assertThat(actual).isNotNull();
+        assertThat(actual.getProperty()).isEqualTo("secret");
+        assertThat(actual.getMessage()).contains(instance.getId());
+        assertThat(actual.getMessage()).contains(Messages.noValidJsonError(instance.getId()));
+        assertThat(actual.getMessage()).doesNotContain("hello");
+    }
+
+    @Test
+    public void getMandatoryFieldGivenValidJsonMissingDesiredFieldThenReturnsThrows() {
         // Given
         final String unexpectedFieldName = "potentiallySecretFieldName";
         final String unexpectedValue = "potentiallySecretValue";
@@ -132,9 +191,10 @@ public void getFieldFromSecretJsonGivenValidJsonMissingDesiredFieldThenReturnsTh
         final String missingFieldName = "someOtherFieldName";
 
         // When
+        final JSONObject jsonObject = instance.getSecretJson();
         CredentialsUnavailableException actual = null;
         try {
-            instance.getFieldFromSecretJson(missingFieldName);
+            instance.getMandatoryField(jsonObject, missingFieldName);
         } catch (CredentialsUnavailableException ex) {
             actual = ex;
         }
@@ -149,6 +209,30 @@ public void getFieldFromSecretJsonGivenValidJsonMissingDesiredFieldThenReturnsTh
         assertThat(actual.getMessage()).doesNotContain(unexpectedValue);
     }
 
+    @Test
+    public void snapshotConstructorGivenInstanceToSnapshotThenReturnsClone() {
+        // Given
+        final String json = mkJson("oneField", "oneValue");
+        final Secret secretJson = Secret.fromString(json);
+        final StubSingleShotSupplier<Secret> stubSupplier = new StubSingleShotSupplier<Secret>(secretJson);
+        final TestClass original = new TestClass(stubSupplier);
+        final JSONObject expectedSecretJson = original.getSecretJson();
+        final String expectedId = original.getId();
+        final String expectedDescription = original.getDescription();
+        stubSupplier.forgetPreviousCalls();
+
+        // When
+        final TestClass actual = new TestClass(original);
+
+        // Then
+        final JSONObject actualSecretJson = actual.getSecretJson();
+        assertThat((Comparable<?>) actualSecretJson).isEqualTo((Comparable<?>) expectedSecretJson);
+        final String actualId = actual.getId();
+        assertThat(actualId).isEqualTo(expectedId);
+        final String actualDescription = actual.getDescription();
+        assertThat(actualDescription).isEqualTo(expectedDescription);
+    }
+
     public static void assertThatJsonCredentialsDescriptorIsTheSameAsTheDescriptorForNonJsonCredentials(
             CredentialsDescriptor instanceUnderTest, CredentialsDescriptor nonJsonEquivalent) {
         // Given
@@ -179,11 +263,17 @@ public static void assertThatJsonCredentialsDescriptorIsTheSameAsTheDescriptorFo
     }
 
     public static String mkJson(String fieldName1, String fieldValue1) {
-        return "{ " + fieldName1 + ": '" + fieldValue1 + "' }";
+        return "{ \"" + fieldName1 + "\": \"" + fieldValue1 + "\" }";
     }
 
     public static String mkJson(String fieldName1, String fieldValue1, String fieldName2, String fieldValue2) {
-        return "{ " + fieldName1 + ": '" + fieldValue1 + "', " + fieldName2 + ": '" + fieldValue2 + "' }";
+        return "{ \"" + fieldName1 + "\": \"" + fieldValue1 + "\", \"" + fieldName2 + "\": \"" + fieldValue2 + "\" }";
+    }
+
+    public static String mkJson(String fieldName1, String fieldValue1, String fieldName2, String fieldValue2,
+            String fieldName3, String fieldValue3) {
+        return "{ \"" + fieldName1 + "\": \"" + fieldValue1 + "\", \"" + fieldName2 + "\": \"" + fieldValue2 + "\", \""
+                + fieldName3 + "\": \"" + fieldValue3 + "\" }";
     }
 
     private static String[] toClassAgnosticMethodDescription(Method[] m) {
@@ -199,13 +289,29 @@ private static String[] toClassAgnosticMethodDescription(Method[] m) {
     }
 
     private static class TestClass extends BaseAwsJsonCredentials {
-        protected TestClass(Supplier<Secret> usernameAndPasswordJson) {
+        TestClass(Supplier<Secret> usernameAndPasswordJson) {
             super("TestId", "TestDescription", usernameAndPasswordJson);
         }
 
+        TestClass(BaseAwsJsonCredentials toSnapshot) {
+            super(toSnapshot);
+        }
+
         // expose so we can test it
-        public String getFieldFromSecretJson(String fieldname) {
-            return super.getFieldFromSecretJson(fieldname);
+
+        @Override
+        public String getMandatoryField(JSONObject secretJson, String fieldname) {
+            return super.getMandatoryField(secretJson, fieldname);
+        }
+
+        @Override
+        public String getOptionalField(JSONObject secretJson, String fieldname) {
+            return super.getOptionalField(secretJson, fieldname);
+        }
+
+        @Override
+        public JSONObject getSecretJson() {
+            return super.getSecretJson();
         }
     }
 
@@ -223,4 +329,27 @@ public T get() {
             return supplied;
         }
     }
+
+    public static class StubSingleShotSupplier<T> implements Supplier<T> {
+        private final T supplied;
+        private Throwable whereWeWereCalledFromTheFirstTime = null;
+
+        public StubSingleShotSupplier(T supplied) {
+            this.supplied = supplied;
+        }
+
+        public void forgetPreviousCalls() {
+            whereWeWereCalledFromTheFirstTime = null;
+        }
+
+        @Override
+        public T get() {
+            if (whereWeWereCalledFromTheFirstTime != null) {
+                throw new IllegalStateException("This provider has already been called before",
+                        whereWeWereCalledFromTheFirstTime);
+            }
+            whereWeWereCalledFromTheFirstTime = new Throwable("First call to the supplier was from here.");
+            return supplied;
+        }
+    }
 }