wip(examples): rename examples and add shorter expirations

Author: ndyakov

examples/entraid/clientcert/main.go

@@ -9,11 +9,13 @@ import (
 	"fmt"
 	"log"
 	"os"
+	"time"
 
 	"config"
 
 	entraid "github.com/redis/go-redis-entraid"
 	"github.com/redis/go-redis-entraid/identity"
+	"github.com/redis/go-redis-entraid/manager"
 	"github.com/redis/go-redis/v9"
 )
 
@@ -28,6 +30,12 @@ func main() {
 
 	// Create a confidential identity credentials provider with certificate authentication
 	cp, err := entraid.NewConfidentialCredentialsProvider(entraid.ConfidentialCredentialsProviderOptions{
+		CredentialsProviderOptions: entraid.CredentialsProviderOptions{
+			TokenManagerOptions: manager.TokenManagerOptions{
+				ExpirationRefreshRatio: 0.001,           // Set to refresh very early
+				LowerRefreshBound:      time.Second * 1, // Set lower bound to 1 second
+			},
+		},
 		ConfidentialIdentityProviderOptions: identity.ConfidentialIdentityProviderOptions{
 			ClientID:        cfg.AzureClientID,
 			ClientSecret:    cfg.AzureClientSecret,
@@ -102,6 +110,35 @@ func main() {
 		log.Fatalf("Failed to get test key from cluster: %v", err)
 	}
 	fmt.Printf("Retrieved value from cluster: %s\n", clusterVal)
+
+	// Wait for token to expire
+	fmt.Println("Waiting for token to expire...")
+	time.Sleep(3 * time.Second)
+
+	// Test token refresh by retrying operations
+	fmt.Println("Testing token refresh...")
+
+	// Retry standalone operations
+	for i := 0; i < 3; i++ {
+		pong, err = redisClient.Ping(ctx).Result()
+		if err != nil {
+			log.Printf("Failed to ping Redis (attempt %d): %v", i+1, err)
+			continue
+		}
+		fmt.Printf("Successfully pinged Redis standalone after token refresh: %s\n", pong)
+		break
+	}
+
+	// Retry cluster operations
+	for i := 0; i < 3; i++ {
+		clusterPong, err = clusterClient.Ping(ctx).Result()
+		if err != nil {
+			log.Printf("Failed to ping Redis cluster (attempt %d): %v", i+1, err)
+			continue
+		}
+		fmt.Printf("Successfully pinged Redis cluster after token refresh: %s\n", clusterPong)
+		break
+	}
 }
 
 func decodeBase64Pem(pemData string) string {

examples/entraid/clientsecret/main.go

@@ -5,11 +5,13 @@ import (
 	"fmt"
 	"log"
 	"os"
+	"time"
 
 	"config"
 
 	entraid "github.com/redis/go-redis-entraid"
 	"github.com/redis/go-redis-entraid/identity"
+	"github.com/redis/go-redis-entraid/manager"
 	"github.com/redis/go-redis/v9"
 )
 
@@ -25,6 +27,12 @@ func main() {
 	// Create a confidential identity credentials provider
 	// This example uses client secret authentication
 	cp, err := entraid.NewConfidentialCredentialsProvider(entraid.ConfidentialCredentialsProviderOptions{
+		CredentialsProviderOptions: entraid.CredentialsProviderOptions{
+			TokenManagerOptions: manager.TokenManagerOptions{
+				ExpirationRefreshRatio: 0.001,           // Set to refresh very early
+				LowerRefreshBound:      time.Second * 1, // Set lower bound to 1 second
+			},
+		},
 		ConfidentialIdentityProviderOptions: identity.ConfidentialIdentityProviderOptions{
 			ClientID:        cfg.AzureClientID,
 			ClientSecret:    cfg.AzureClientSecret,
@@ -97,4 +105,33 @@ func main() {
 		log.Fatalf("Failed to get test key from cluster: %v", err)
 	}
 	fmt.Printf("Retrieved value from cluster: %s\n", clusterVal)
+
+	// Wait for token to expire
+	fmt.Println("Waiting for token to expire...")
+	time.Sleep(3 * time.Second)
+
+	// Test token refresh by retrying operations
+	fmt.Println("Testing token refresh...")
+
+	// Retry standalone operations
+	for i := 0; i < 3; i++ {
+		pong, err = redisClient.Ping(ctx).Result()
+		if err != nil {
+			log.Printf("Failed to ping Redis (attempt %d): %v", i+1, err)
+			continue
+		}
+		fmt.Printf("Successfully pinged Redis standalone after token refresh: %s\n", pong)
+		break
+	}
+
+	// Retry cluster operations
+	for i := 0; i < 3; i++ {
+		clusterPong, err = clusterClient.Ping(ctx).Result()
+		if err != nil {
+			log.Printf("Failed to ping Redis cluster (attempt %d): %v", i+1, err)
+			continue
+		}
+		fmt.Printf("Successfully pinged Redis cluster after token refresh: %s\n", clusterPong)
+		break
+	}
 }

examples/entraid/defaultcredentials/main.go

@@ -5,11 +5,13 @@ import (
 	"fmt"
 	"log"
 	"os"
+	"time"
 
 	"config"
 
 	entraid "github.com/redis/go-redis-entraid"
 	"github.com/redis/go-redis-entraid/identity"
+	"github.com/redis/go-redis-entraid/manager"
 	"github.com/redis/go-redis/v9"
 )
 
@@ -29,6 +31,12 @@ func main() {
 	// 3. Azure CLI credentials
 	// 4. Visual Studio Code credentials
 	cp, err := entraid.NewDefaultAzureCredentialsProvider(entraid.DefaultAzureCredentialsProviderOptions{
+		CredentialsProviderOptions: entraid.CredentialsProviderOptions{
+			TokenManagerOptions: manager.TokenManagerOptions{
+				ExpirationRefreshRatio: 0.001,           // Set to refresh very early
+				LowerRefreshBound:      time.Second * 1, // Set lower bound to 1 second
+			},
+		},
 		DefaultAzureIdentityProviderOptions: identity.DefaultAzureIdentityProviderOptions{
 			Scopes: []string{"https://redis.azure.com/.default"},
 		},
@@ -93,4 +101,33 @@ func main() {
 		log.Fatalf("Failed to get test key from cluster: %v", err)
 	}
 	fmt.Printf("Retrieved value from cluster: %s\n", clusterVal)
+
+	// Wait for token to expire
+	fmt.Println("Waiting for token to expire...")
+	time.Sleep(3 * time.Second)
+
+	// Test token refresh by retrying operations
+	fmt.Println("Testing token refresh...")
+
+	// Retry standalone operations
+	for i := 0; i < 3; i++ {
+		pong, err = redisClient.Ping(ctx).Result()
+		if err != nil {
+			log.Printf("Failed to ping Redis (attempt %d): %v", i+1, err)
+			continue
+		}
+		fmt.Printf("Successfully pinged Redis standalone after token refresh: %s\n", pong)
+		break
+	}
+
+	// Retry cluster operations
+	for i := 0; i < 3; i++ {
+		clusterPong, err = clusterClient.Ping(ctx).Result()
+		if err != nil {
+			log.Printf("Failed to ping Redis cluster (attempt %d): %v", i+1, err)
+			continue
+		}
+		fmt.Printf("Successfully pinged Redis cluster after token refresh: %s\n", clusterPong)
+		break
+	}
 }

examples/entraid/managedidentity_user/go.mod renamed to examples/entraid/managedidentity_systemassigned/go.mod

@@ -1,4 +1,4 @@
-module managedidentity_user
+module managedidentity_systemassigned
 
 go 1.23.4
 

examples/entraid/managedidentity_system/go.sum renamed to examples/entraid/managedidentity_systemassigned/go.sum

@@ -5,11 +5,13 @@ import (
 	"fmt"
 	"log"
 	"os"
+	"time"
 
 	"config"
 
 	entraid "github.com/redis/go-redis-entraid"
 	"github.com/redis/go-redis-entraid/identity"
+	"github.com/redis/go-redis-entraid/manager"
 	"github.com/redis/go-redis/v9"
 )
 
@@ -24,6 +26,12 @@ func main() {
 
 	// Create a managed identity credentials provider for system-assigned identity
 	cp, err := entraid.NewManagedIdentityCredentialsProvider(entraid.ManagedIdentityCredentialsProviderOptions{
+		CredentialsProviderOptions: entraid.CredentialsProviderOptions{
+			TokenManagerOptions: manager.TokenManagerOptions{
+				ExpirationRefreshRatio: 0.001,           // Set to refresh very early
+				LowerRefreshBound:      time.Second * 1, // Set lower bound to 1 second
+			},
+		},
 		ManagedIdentityProviderOptions: identity.ManagedIdentityProviderOptions{
 			// For system-assigned identity, we don't need to specify ClientID
 			Scopes:              cfg.GetRedisScopes(),
@@ -91,4 +99,33 @@ func main() {
 		log.Fatalf("Failed to get test key from cluster: %v", err)
 	}
 	fmt.Printf("Retrieved value from cluster: %s\n", clusterVal)
+
+	// Wait for token to expire
+	fmt.Println("Waiting for token to expire...")
+	time.Sleep(3 * time.Second)
+
+	// Test token refresh by retrying operations
+	fmt.Println("Testing token refresh...")
+
+	// Retry standalone operations
+	for i := 0; i < 3; i++ {
+		pong, err = redisClient.Ping(ctx).Result()
+		if err != nil {
+			log.Printf("Failed to ping Redis (attempt %d): %v", i+1, err)
+			continue
+		}
+		fmt.Printf("Successfully pinged Redis standalone after token refresh: %s\n", pong)
+		break
+	}
+
+	// Retry cluster operations
+	for i := 0; i < 3; i++ {
+		clusterPong, err = clusterClient.Ping(ctx).Result()
+		if err != nil {
+			log.Printf("Failed to ping Redis cluster (attempt %d): %v", i+1, err)
+			continue
+		}
+		fmt.Printf("Successfully pinged Redis cluster after token refresh: %s\n", clusterPong)
+		break
+	}
 }

examples/entraid/managedidentity_system/main.go renamed to examples/entraid/managedidentity_systemassigned/main.go

@@ -1,4 +1,4 @@
-module managedidentity_system
+module managedidentity_userassigned
 
 go 1.23.4
 

examples/entraid/managedidentity_system/go.mod renamed to examples/entraid/managedidentity_userassigned/go.mod

@@ -5,11 +5,13 @@ import (
 	"fmt"
 	"log"
 	"os"
+	"time"
 
 	"config"
 
 	entraid "github.com/redis/go-redis-entraid"
 	"github.com/redis/go-redis-entraid/identity"
+	"github.com/redis/go-redis-entraid/manager"
 	"github.com/redis/go-redis/v9"
 )
 
@@ -26,6 +28,10 @@ func main() {
 	cp, err := entraid.NewManagedIdentityCredentialsProvider(entraid.ManagedIdentityCredentialsProviderOptions{
 		CredentialsProviderOptions: entraid.CredentialsProviderOptions{
 			ClientID: cfg.AzureClientID,
+			TokenManagerOptions: manager.TokenManagerOptions{
+				ExpirationRefreshRatio: 0.001,           // Set to refresh very early
+				LowerRefreshBound:      time.Second * 1, // Set lower bound to 1 second
+			},
 		},
 		ManagedIdentityProviderOptions: identity.ManagedIdentityProviderOptions{
 			ManagedIdentityType:  identity.UserAssignedObjectID,
@@ -94,4 +100,33 @@ func main() {
 		log.Fatalf("Failed to get test key from cluster: %v", err)
 	}
 	fmt.Printf("Retrieved value from cluster: %s\n", clusterVal)
+
+	// Wait for token to expire
+	fmt.Println("Waiting for token to expire...")
+	time.Sleep(3 * time.Second)
+
+	// Test token refresh by retrying operations
+	fmt.Println("Testing token refresh...")
+
+	// Retry standalone operations
+	for i := 0; i < 3; i++ {
+		pong, err = redisClient.Ping(ctx).Result()
+		if err != nil {
+			log.Printf("Failed to ping Redis (attempt %d): %v", i+1, err)
+			continue
+		}
+		fmt.Printf("Successfully pinged Redis standalone after token refresh: %s\n", pong)
+		break
+	}
+
+	// Retry cluster operations
+	for i := 0; i < 3; i++ {
+		clusterPong, err = clusterClient.Ping(ctx).Result()
+		if err != nil {
+			log.Printf("Failed to ping Redis cluster (attempt %d): %v", i+1, err)
+			continue
+		}
+		fmt.Printf("Successfully pinged Redis cluster after token refresh: %s\n", clusterPong)
+		break
+	}
 }

examples/entraid/managedidentity_user/go.sum renamed to examples/entraid/managedidentity_userassigned/go.sum

@@ -8,7 +8,6 @@ const (
 	// UserAssignedObjectID is the type of identity that is managed by the user.
 	UserAssignedObjectID = "UserAssignedObjectID"
 
-
 	// ClientSecretCredentialType is the type of credentials that uses a client secret to authenticate.
 	ClientSecretCredentialType = "ClientSecret"
 	// ClientCertificateCredentialType is the type of credentials that uses a client certificate to authenticate.