refactor(auth): use globalState abstraction

Author: justinmk3

packages/amazonq/test/unit/codewhisperer/util/authUtil.test.ts

@@ -21,7 +21,7 @@ import {
     createTestAuth,
 } from 'aws-core-vscode/test'
 import { Auth, Connection, isAnySsoConnection, isBuilderIdConnection } from 'aws-core-vscode/auth'
-import { vscodeComponent } from 'aws-core-vscode/shared'
+import { globals, vscodeComponent } from 'aws-core-vscode/shared'
 
 const enterpriseSsoStartUrl = 'https://enterprise.awsapps.com/start'
 
@@ -30,7 +30,7 @@ describe('AuthUtil', async function () {
     let authUtil: AuthUtil
 
     beforeEach(async function () {
-        auth = createTestAuth()
+        auth = createTestAuth(globals.globalState)
         authUtil = new AuthUtil(auth)
     })
 
@@ -286,7 +286,7 @@ describe('getChatAuthState()', function () {
     let laterDate: Date
 
     beforeEach(async function () {
-        auth = createTestAuth()
+        auth = createTestAuth(globals.globalState)
         authUtil = new AuthUtil(auth)
 
         laterDate = new Date(Date.now() + 10_000_000)

packages/core/src/auth/secondaryAuth.ts

@@ -98,8 +98,7 @@ export class SecondaryAuth<T extends Connection = Connection> {
         public readonly toolId: ToolId,
         public readonly toolLabel: string,
         public readonly isUsable: (conn: Connection) => conn is T,
-        private readonly auth: Auth,
-        private readonly memento = globals.context.globalState
+        private readonly auth: Auth
     ) {
         const handleConnectionChanged = async (newActiveConn?: Connection) => {
             if (newActiveConn === undefined && this.#activeConnection?.id) {
@@ -176,7 +175,7 @@ export class SecondaryAuth<T extends Connection = Connection> {
     }
 
     public async saveConnection(conn: T) {
-        await this.memento.update(this.key, conn.id)
+        await globals.context.globalState.update(this.key, conn.id)
         this.#savedConnection = conn
         this.#onDidChangeActiveConnection.fire(this.activeConnection)
     }
@@ -207,7 +206,7 @@ export class SecondaryAuth<T extends Connection = Connection> {
 
     /** Stop using the saved connection and fallback to using the active connection, if it is usable. */
     public async clearSavedConnection() {
-        await this.memento.update(this.key, undefined)
+        await globals.context.globalState.update(this.key, undefined)
         this.#savedConnection = undefined
         this.#onDidChangeActiveConnection.fire(this.activeConnection)
     }
@@ -252,18 +251,18 @@ export class SecondaryAuth<T extends Connection = Connection> {
     })
 
     private async loadSavedConnection() {
-        const id = cast(this.memento.get(this.key), Optional(String))
+        const id = cast(globals.context.globalState.get(this.key), Optional(String))
         if (id === undefined) {
             return
         }
 
         const conn = await this.auth.getConnection({ id })
         if (conn === undefined) {
             getLogger().warn(`auth (${this.toolId}): removing saved connection "${this.key}" as it no longer exists`)
-            await this.memento.update(this.key, undefined)
+            await globals.context.globalState.update(this.key, undefined)
         } else if (!this.isUsable(conn)) {
             getLogger().warn(`auth (${this.toolId}): saved connection "${this.key}" is not valid`)
-            await this.memento.update(this.key, undefined)
+            await globals.context.globalState.update(this.key, undefined)
         } else {
             await this.auth.refreshConnectionState(conn)
             return conn

packages/core/src/shared/credentials/credentialsProfileMru.ts

@@ -3,23 +3,21 @@
  * SPDX-License-Identifier: Apache-2.0
  */
 
-import * as vscode from 'vscode'
+import globals from '../extensionGlobals'
 
 /**
  * Tracks the credentials selected by the user, ordered by most recent.
  */
 export class CredentialsProfileMru {
     public static readonly maxCredentialMruSize = 5
 
-    private static readonly configurationStateName: string = 'recentCredentials'
-
-    public constructor(private readonly _context: vscode.ExtensionContext) {}
+    public constructor() {}
 
     /**
      * @description Returns the most recently used credentials names
      */
     public getMruList(): string[] {
-        return this._context.globalState.get<string[]>(CredentialsProfileMru.configurationStateName, [])
+        return globals.globalState.tryGet<string[]>('recentCredentials', Object, [])
     }
 
     /**
@@ -38,6 +36,6 @@ export class CredentialsProfileMru {
 
         mru.splice(CredentialsProfileMru.maxCredentialMruSize)
 
-        await this._context.globalState.update(CredentialsProfileMru.configurationStateName, mru)
+        await globals.globalState.update('recentCredentials', mru)
     }
 }

packages/core/src/shared/credentials/defaultCredentialSelectionDataProvider.ts

@@ -46,7 +46,7 @@ export class DefaultCredentialSelectionDataProvider implements CredentialSelecti
         public readonly existingProfileNames: string[],
         protected context: vscode.ExtensionContext
     ) {
-        this._credentialsMru = new CredentialsProfileMru(context)
+        this._credentialsMru = new CredentialsProfileMru()
     }
 
     public async pickCredentialProfile(

packages/core/src/shared/utilities/mementos.ts

@@ -9,7 +9,14 @@ import globals from '../extensionGlobals'
 import { getCodeCatalystDevEnvId } from '../vscode/env'
 
 /**
- * Divides a memento at the specified key, creating a 'scoped' memento.
+ * Creates a memento interface to a nested object stored at `key`.
+ *
+ * For example, `partition(m, 'foo')` creates a nested object at "foo":
+ *
+ *     "foo": {
+ *     }
+ *
+ * and returns a memento that gets/sets keys only on "foo" (not its container `m`).
  */
 export function partition(memento: vscode.Memento, key: string): vscode.Memento {
     const get = () => cast(memento.get(key), Optional(Record(String, Unknown)))
@@ -22,19 +29,20 @@ export function partition(memento: vscode.Memento, key: string): vscode.Memento
     }
 }
 
+/** Avoids sharing globalState with remote vscode instances. */
 export function getEnvironmentSpecificMemento(): vscode.Memento {
     if (!vscode.env.remoteName) {
         // local compute: no further partitioning
-        return globals.context.globalState
+        return globals.globalState
     }
 
     const devEnvId = getCodeCatalystDevEnvId()
 
     if (devEnvId !== undefined) {
         // dev env: partition to dev env ID (compute backend might not always be the same)
-        return partition(globals.context.globalState, devEnvId)
+        return partition(globals.globalState, devEnvId)
     }
 
     // remote env: keeps a shared "global state" for all workspaces that report the same machine ID
-    return partition(globals.context.globalState, globals.machineId)
+    return partition(globals.globalState, globals.machineId)
 }

packages/core/src/test/codecatalyst/auth.test.ts

@@ -10,6 +10,7 @@ import { FakeSecretStorage } from '../fakeExtensionContext'
 import { createBuilderIdProfile, createSsoProfile, createTestAuth } from '../credentials/testUtil'
 import Sinon from 'sinon'
 import { isAnySsoConnection } from '../../auth/connection'
+import globals from '../../shared/extensionGlobals'
 
 const enterpriseSsoStartUrl = 'https://enterprise.awsapps.com/start'
 
@@ -18,7 +19,7 @@ describe('CodeCatalystAuthenticationProvider', async function () {
     let codecatalystAuth: CodeCatalystAuthenticationProvider
 
     beforeEach(async function () {
-        auth = createTestAuth()
+        auth = createTestAuth(globals.globalState)
         codecatalystAuth = new CodeCatalystAuthenticationProvider(
             new CodeCatalystAuthStorage(new FakeSecretStorage()),
             auth

packages/core/src/test/credentials/auth.test.ts

@@ -28,7 +28,7 @@ describe('Auth', function () {
     let auth: ReturnType<typeof createTestAuth>
 
     beforeEach(function () {
-        auth = createTestAuth()
+        auth = createTestAuth(globals.globalState)
     })
 
     it('can create a new sso connection', async function () {

packages/core/src/test/credentials/secondaryAuth.test.ts

@@ -21,33 +21,33 @@ describe('SecondaryAuth', function () {
     let onDidChangeActiveConnection: SinonStub
 
     beforeEach(async function () {
-        auth = createTestAuth()
+        auth = createTestAuth(globals.globalState)
         sandbox = createSandbox()
         conn = await auth.createConnection(createBuilderIdProfile({ scopes: scopes }))
         isValid = (conn: Connection): conn is Connection => {
             return isSsoConnection(conn) && hasScopes(conn, scopes)
         }
-        secondaryAuth = getSecondaryAuth(auth, 'testId', 'testLabel', isValid)
+        // await globals.globalState.clear()
+        secondaryAuth = getSecondaryAuth(auth, 'codecatalyst', 'testLabel', isValid)
         onDidChangeActiveConnection = sandbox.stub()
         secondaryAuth.onDidChangeActiveConnection(onDidChangeActiveConnection)
-        await globals.globalState.clear()
     })
 
     afterEach(async function () {
         sandbox.restore()
     })
 
-    it('When no SecondaryAuth set or valid PrimaryAuth exist', async function () {
+    it('no SecondaryAuth set or valid PrimaryAuth exist', async function () {
         assert.strictEqual(secondaryAuth.activeConnection?.id, undefined)
     })
 
-    it('When no SecondaryAuth set but valid PrimaryAuth is used', async function () {
+    it('no SecondaryAuth set but valid PrimaryAuth is used', async function () {
         await auth.useConnection(conn)
         assert.strictEqual(onDidChangeActiveConnection.calledOnce, true)
         assert.strictEqual(secondaryAuth.activeConnection?.id, conn.id)
     })
 
-    it('When valid PrimaryAuth is set BUT SecondaryAuth is already using the same connection', async function () {
+    it('valid PrimaryAuth is set BUT SecondaryAuth is already using the same connection', async function () {
         await secondaryAuth.useNewConnection(conn)
         // we save this connection so we expect it to trigger an event
         assert.strictEqual(onDidChangeActiveConnection.called, true)
@@ -60,7 +60,7 @@ describe('SecondaryAuth', function () {
         assert.strictEqual(secondaryAuth.activeConnection?.id, conn.id)
     })
 
-    it('When valid PrimaryAuth changes BUT no SecondaryAuth is set + valid PrimaryAuth currently exists', async function () {
+    it('valid PrimaryAuth changes BUT SecondaryAuth not set + valid PrimaryAuth exists', async function () {
         // Make primary auth already exist
         await auth.useConnection(conn)
         assert.strictEqual(onDidChangeActiveConnection.called, true)
@@ -74,7 +74,7 @@ describe('SecondaryAuth', function () {
         assert.strictEqual(secondaryAuth.activeConnection?.id, otherValidConn.id)
     })
 
-    it('When valid PrimaryAuth deleted BUT SecondaryAuth is already set', async function () {
+    it('valid PrimaryAuth deleted BUT SecondaryAuth is set', async function () {
         await secondaryAuth.useNewConnection(conn)
 
         // add valid connection to the PrimaryAuth
@@ -89,7 +89,7 @@ describe('SecondaryAuth', function () {
         assert.strictEqual(secondaryAuth.activeConnection?.id, conn.id)
     })
 
-    it('When valid SecondaryAuth deleted BUT valid PrimaryAuth already exists', async function () {
+    it('valid SecondaryAuth deleted BUT valid PrimaryAuth exists', async function () {
         await secondaryAuth.useNewConnection(conn)
 
         // add valid connection to the PrimaryAuth
@@ -101,11 +101,21 @@ describe('SecondaryAuth', function () {
         await auth.deleteConnection(conn)
 
         // we fallback to the PrimaryAuth connection
-        assert.strictEqual(secondaryAuth.activeConnection?.id, otherConn.id)
         assert.strictEqual(onDidChangeActiveConnection.called, true)
+        assert.deepStrictEqual(
+            {
+                id: secondaryAuth.activeConnection?.id,
+                label: secondaryAuth.activeConnection?.label,
+            },
+            {
+                id: otherConn.id,
+                label: otherConn.label,
+            }
+        )
+        assert.strictEqual(secondaryAuth.activeConnection?.id, otherConn.id)
     })
 
-    it('When SecondaryAuth is invalid, but is reauthenticated elsewhere', async function () {
+    it('SecondaryAuth is invalid, but is reauthenticated elsewhere', async function () {
         // PrimaryAuth has its own conn, we don't care about this
         await auth.useConnection(conn)
 

packages/core/src/test/credentials/testUtil.ts

@@ -10,7 +10,6 @@ import { CredentialsProviderManager } from '../../auth/providers/credentialsProv
 import { SsoClient } from '../../auth/sso/clients'
 import { builderIdStartUrl, SsoToken } from '../../auth/sso/model'
 import { DeviceFlowAuthorization, SsoAccessTokenProvider } from '../../auth/sso/ssoAccessTokenProvider'
-import { FakeMemento } from '../fakeExtensionContext'
 import { captureEvent, EventCapturer } from '../testUtil'
 import { stub } from '../utilities/stubber'
 import globals from '../../shared/extensionGlobals'
@@ -29,8 +28,17 @@ export const ssoConnection: SsoConnection = {
     startUrl: 'https://nkomonen.awsapps.com/start',
     getToken: sinon.stub(),
 }
-export const builderIdConnection: SsoConnection = { ...ssoConnection, startUrl: builderIdStartUrl, label: 'builderId' }
-export const iamConnection: IamConnection = { type: 'iam', id: '0', label: 'iam', getCredentials: sinon.stub() }
+export const builderIdConnection: SsoConnection = {
+    ...ssoConnection,
+    startUrl: builderIdStartUrl,
+    label: 'builderId',
+}
+export const iamConnection: IamConnection = {
+    type: 'iam',
+    id: '0',
+    label: 'iam',
+    getCredentials: sinon.stub(),
+}
 
 export function createSsoProfile(props?: Partial<Omit<SsoProfile, 'type'>>): SsoProfile {
     return {
@@ -80,7 +88,7 @@ type TestAuth = Auth & {
     getTestTokenProvider(connection: Pick<Connection, 'id'>): ReturnType<typeof createTestTokenProvider>
 }
 
-export function createTestAuth(): TestAuth {
+export function createTestAuth(globalState: vscode.Memento): TestAuth {
     const tokenProviders = new Map<string, ReturnType<typeof createTestTokenProvider>>()
 
     function getTokenProvider(...[profile]: ConstructorParameters<typeof SsoAccessTokenProvider>) {
@@ -108,7 +116,7 @@ export function createTestAuth(): TestAuth {
     const ssoClient = stub(SsoClient, { region: 'not set' })
     ssoClient.logout.resolves()
 
-    const store = new ProfileStore(new FakeMemento())
+    const store = new ProfileStore(globalState)
     const credentialsManager = new CredentialsProviderManager()
     const auth = new Auth(store, credentialsManager, () => ssoClient, getTokenProvider)
 

packages/core/src/test/globalSetup.test.ts

@@ -16,7 +16,7 @@ import { CodelensRootRegistry } from '../shared/fs/codelensRootRegistry'
 import { CloudFormationTemplateRegistry } from '../shared/fs/templateRegistry'
 import { getLogger, LogLevel } from '../shared/logger'
 import { setLogger } from '../shared/logger/logger'
-import { FakeExtensionContext, FakeMemento } from './fakeExtensionContext'
+import { FakeExtensionContext } from './fakeExtensionContext'
 import { TestLogger } from './testLogger'
 import * as testUtil from './testUtil'
 import { getTestWindow, resetTestWindow } from './shared/vscode/window'
@@ -52,7 +52,10 @@ export async function mochaGlobalSetup(extensionId: string) {
         const fakeContext = await FakeExtensionContext.create()
         fakeContext.globalStorageUri = (await testUtil.createTestWorkspaceFolder('globalStoragePath')).uri
         fakeContext.extensionPath = globals.context.extensionPath
-        Object.assign(globals, { context: fakeContext })
+        Object.assign(globals, {
+            context: fakeContext,
+            globalState: new GlobalState(fakeContext.globalState),
+        })
     }
 }
 
@@ -84,9 +87,8 @@ export const mochaHooks = {
         globals.telemetry.clearRecords()
         globals.telemetry.logger.clear()
         TelemetryDebounceInfo.instance.clear()
-        const fakeGlobalState = new FakeMemento()
-        ;(globals.context as FakeExtensionContext).globalState = fakeGlobalState
-        ;(globals as any).globalState = new GlobalState(fakeGlobalState)
+        // mochaGlobalSetup() set this to a fake, so it's safe to clear it here.
+        await globals.globalState.clear()
 
         await testUtil.closeAllEditors()
     },