Improve code docs

Author: pjdarton

src/main/java/io/jenkins/plugins/credentials/secretsmanager/factory/BaseAwsJsonCredentials.java

@@ -23,19 +23,19 @@
 @Restricted(NoExternalUse.class)
 public abstract class BaseAwsJsonCredentials extends BaseStandardCredentials {
     /** How to access the JSON */
-    private final Supplier<Secret> supplierOfSecretData;
+    private final Supplier<Secret> json;
 
     /**
      * Constructs a new instance with new data.
      * 
-     * @param id                 The value for {@link #getId()}.
-     * @param description        The value for {@link #getDescription()}.
-     * @param secretJsonSupplier Supplies the data that {@link #getSecretJson()}
-     *                           will decode.
+     * @param id          The value for {@link #getId()}.
+     * @param description The value for {@link #getDescription()}.
+     * @param json        Supplies the data that {@link #getSecretJson()} will
+     *                    decode.
      */
-    protected BaseAwsJsonCredentials(String id, String description, Supplier<Secret> secretJsonSupplier) {
+    protected BaseAwsJsonCredentials(String id, String description, Supplier<Secret> json) {
         super(id, description);
-        this.supplierOfSecretData = secretJsonSupplier;
+        this.json = json;
     }
 
     /**
@@ -45,14 +45,15 @@ protected BaseAwsJsonCredentials(String id, String description, Supplier<Secret>
      */
     protected BaseAwsJsonCredentials(BaseAwsJsonCredentials toSnapshot) {
         super(toSnapshot.getId(), toSnapshot.getDescription());
-        final Secret secretDataToSnapshot = toSnapshot.supplierOfSecretData.get();
-        this.supplierOfSecretData = new Snapshot<Secret>(secretDataToSnapshot);
+        final Secret secretDataToSnapshot = toSnapshot.json.get();
+        this.json = new Snapshot<Secret>(secretDataToSnapshot);
     }
 
     // Note:
     // We MUST NOT tell anyone what the JSON is, or give any hints as to its
-    // contents, as that could then leak sensitive data so we have to suppress the
-    // informative exception(s) and just tell the user that it didn't work.
+    // contents, as that could then leak sensitive data so, if anything goes wrong,
+    // we have to suppress the informative exception(s) and just tell the user that
+    // it didn't work.
 
     /**
      * Reads the secret JSON and returns the field requested.
@@ -98,7 +99,7 @@ protected String getOptionalField(@NonNull JSONObject secretJson, @NonNull Strin
      */
     @NonNull
     protected JSONObject getSecretJson() {
-        final Secret secret = supplierOfSecretData.get();
+        final Secret secret = json.get();
         final String rawSecretJson = secret == null ? "" : secret.getPlainText();
         if (rawSecretJson.isEmpty()) {
             throw new CredentialsUnavailableException("secret", Messages.noValidJsonError(getId()));

src/main/java/io/jenkins/plugins/credentials/secretsmanager/factory/ssh_user_private_key/AwsJsonSshUserPrivateKey.java

@@ -19,6 +19,14 @@
 import io.jenkins.plugins.credentials.secretsmanager.Messages;
 import io.jenkins.plugins.credentials.secretsmanager.factory.BaseAwsJsonCredentials;
 
+/**
+ * Similar to {@link AwsSshUserPrivateKey} but expects the AWS secret data to be
+ * JSON containing two or three fields, {@value #JSON_FIELDNAME_FOR_USERNAME},
+ * {@value #JSON_FIELDNAME_FOR_PRIVATE_KEY} and optionally a
+ * {@value #JSON_FIELDNAME_FOR_PASSPHRASE} that provide the username, key and
+ * (optional) passphrase. The secret JSON may contain other fields too, but
+ * we'll ignore them.
+ */
 public class AwsJsonSshUserPrivateKey extends BaseAwsJsonCredentials implements SSHUserPrivateKey {
     /**
      * Name of the JSON field that we expect to be present and to contain the
@@ -42,17 +50,16 @@ public class AwsJsonSshUserPrivateKey extends BaseAwsJsonCredentials implements
     /**
      * Constructs a new instance.
      * 
-     * @param id                       The value for {@link #getId()}.
-     * @param description              The value for {@link #getDescription()}.
-     * @param jsonContainingPrivateKey Supplies JSON containing a
-     *                                 {@value #JSON_FIELDNAME_FOR_USERNAME} field,
-     *                                 a {@value #JSON_FIELDNAME_FOR_PRIVATE_KEY}
-     *                                 field and optionally a
-     *                                 {@value #JSON_FIELDNAME_FOR_PASSPHRASE}
-     *                                 field.
+     * @param id          The value for {@link #getId()}.
+     * @param description The value for {@link #getDescription()}.
+     * @param json        Supplies JSON containing a
+     *                    {@value #JSON_FIELDNAME_FOR_USERNAME} field, a
+     *                    {@value #JSON_FIELDNAME_FOR_PRIVATE_KEY} field and
+     *                    optionally a {@value #JSON_FIELDNAME_FOR_PASSPHRASE}
+     *                    field.
      */
-    public AwsJsonSshUserPrivateKey(String id, String description, Supplier<Secret> jsonContainingPrivateKey) {
-        super(id, description, jsonContainingPrivateKey);
+    public AwsJsonSshUserPrivateKey(String id, String description, Supplier<Secret> json) {
+        super(id, description, json);
     }
 
     /**

src/main/java/io/jenkins/plugins/credentials/secretsmanager/factory/username_password/AwsJsonUsernamePasswordCredentials.java

@@ -42,15 +42,14 @@ public class AwsJsonUsernamePasswordCredentials extends BaseAwsJsonCredentials
     /**
      * Constructs a new instance.
      * 
-     * @param id                      The value for {@link #getId()}.
-     * @param description             The value for {@link #getDescription()}.
-     * @param usernameAndPasswordJson Supplies JSON containing a
-     *                                {@value #JSON_FIELDNAME_FOR_USERNAME} field
-     *                                and a {@value #JSON_FIELDNAME_FOR_PASSWORD}
-     *                                field.
+     * @param id          The value for {@link #getId()}.
+     * @param description The value for {@link #getDescription()}.
+     * @param json        Supplies JSON containing a
+     *                    {@value #JSON_FIELDNAME_FOR_USERNAME} field and a
+     *                    {@value #JSON_FIELDNAME_FOR_PASSWORD} field.
      */
-    public AwsJsonUsernamePasswordCredentials(String id, String description, Supplier<Secret> usernameAndPasswordJson) {
-        super(id, description, usernameAndPasswordJson);
+    public AwsJsonUsernamePasswordCredentials(String id, String description, Supplier<Secret> json) {
+        super(id, description, json);
     }
 
     /**

src/test/java/io/jenkins/plugins/credentials/secretsmanager/factory/BaseAwsJsonCredentialsSnapshotTakerTest.java

@@ -108,9 +108,11 @@ public void snapshotGivenInstanceThenCreatesSnapshot() throws Exception {
         // Given
         final ST instance = makeInstanceOrThrow();
         final C credential = makeCredential();
-        final Method[] allMethods = credentialBeingSnapshotted.getDeclaredMethods();
-        final Map<Method, Object> expectedResults = new IdentityHashMap<>();
-        for (final Method m : allMethods) {
+        final String expectedId = credential.getId();
+        final String expectedDescription = credential.getDescription();
+        // Use reflection to call all the getter methods
+        final Map<Method, Object> expectedSnapshotContents = new IdentityHashMap<>();
+        for (final Method m : credentialBeingSnapshotted.getDeclaredMethods()) {
             if (m.getParameterCount() != 0 || !m.isAccessible()) {
                 continue;
             }
@@ -120,35 +122,37 @@ public void snapshotGivenInstanceThenCreatesSnapshot() throws Exception {
             } catch (IllegalAccessException e) {
                 continue;
             }
-            expectedResults.put(m, expectedValue);
+            expectedSnapshotContents.put(m, expectedValue);
         }
-        final String expectedId = credential.getId();
-        final String expectedDescription = credential.getDescription();
 
         // When
         final C actual = instance.snapshot(credential);
-        limitedUseSupplier.noFurtherUsePermitted();
-        final String actualId = actual.getId();
-        final String actualDescription = actual.getDescription();
-        final Map<Method, Object> actualResults = new IdentityHashMap<>();
-        for (final Method m : expectedResults.keySet()) {
-            final Object actualValue = m.invoke(actual);
-            actualResults.put(m, actualValue);
-        }
+        limitedUseSupplier.stopAnyFurtherCallsToTheSupplier();
 
         // Then
         assertThat(actual).isNotNull();
         assertThat(actual).isNotSameAs(credential);
         assertThat(actual).isInstanceOf(credentialBeingSnapshotted);
+        // ...now check it contains the right data AND that getting that data doesn't
+        // trigger the supplier.
+        final String actualId = actual.getId();
         assertThat(actualId).as("getId()").isEqualTo(expectedId);
+        final String actualDescription = actual.getDescription();
         assertThat(actualDescription).as("getDescription").isEqualTo(expectedDescription);
-        for (final Method m : expectedResults.keySet()) {
-            final Object expectedValue = expectedResults.get(m);
-            final Object actualValue = actualResults.get(m);
+        for (final Method m : expectedSnapshotContents.keySet()) {
+            final Object expectedValue = expectedSnapshotContents.get(m);
+            final Object actualValue = m.invoke(actual);
             assertThat(actualValue).as(m.toGenericString()).isEqualTo(expectedValue);
         }
     }
 
+    /**
+     * {@link Supplier} that can be told to stop supplying so that we can verify
+     * that accessing a "snapshot" is using snapshotted values rather than still
+     * using live values from here.
+     *
+     * @param <T> Type being supplied.
+     */
     private static class LimitedUseSupplier<T> implements Supplier<T> {
         private final T supplied;
         private boolean noFurtherUsePermitted = false;
@@ -157,7 +161,11 @@ public LimitedUseSupplier(T supplied) {
             this.supplied = supplied;
         }
 
-        public void noFurtherUsePermitted() {
+        /**
+         * Causes all subsequent calls to {@link #get()} to throw an
+         * {@link IllegalStateException}.
+         */
+        public void stopAnyFurtherCallsToTheSupplier() {
             noFurtherUsePermitted = true;
         }