🐛 Correctly handle nested configs #183
Conversation
Apologies for the extensiveness of this change. The configuration handling likely needs a refactor to make it easier to support future modification. - Add Apache Commons Configuration2 - Adapt configuration2's INIConfiguration to support AWS quirks - Remove Ini4j (unmaintained, has park page for website) - Refactor file handling code Resolves oktadev#141
|
|
||
| /** | ||
| * A simple abstract class used to load AWS CLI settings files like the `credentials` or `config` files. | ||
| */ | ||
| public abstract class Settings { | ||
|
|
||
| final Ini settings = new Ini(); | ||
| private final AwsINIConfiguration settings; |
There was a problem hiding this comment.
A huge chunk of the change stems from hiding this as exposing it causing Ini4j's API to leak into everywhere and my original attempt at this had Apache Commons Configuration2's API leaked into everywhere.
| @@ -0,0 +1,875 @@ | |||
| /* | |||
There was a problem hiding this comment.
🤔 before calling me on this. I admit that this is a copy/paste from Apache Commons Configuration2. I tried to extend their class and it wasn't open to extension in this manner. I will look into contributing an extension point to their project so that we can later replace this with something much cleaner.
There was a problem hiding this comment.
It's literally this code:
https://github.com/apache/commons-configuration/blob/trunk/src/main/java/org/apache/commons/configuration2/INIConfiguration.java
With some changes I'll highlight in the review.
| import org.apache.commons.configuration2.ex.ConfigurationException; | ||
| import org.apache.commons.configuration2.ex.ConfigurationRuntimeException; | ||
| import org.apache.commons.configuration2.tree.*; | ||
| import org.apache.commons.lang3.StringUtils; |
There was a problem hiding this comment.
➕ added this so I could effectively right trim.
| String line = in.readLine(); | ||
| while (line != null) | ||
| { | ||
| line = StringUtils.stripEnd(line, null); |
There was a problem hiding this comment.
➕ right trim instead of trim the entire line:
https://github.com/apache/commons-configuration/blob/trunk/src/main/java/org/apache/commons/configuration2/INIConfiguration.java#L433
| { | ||
| key = line; | ||
| } | ||
| key = StringUtils.stripEnd(key, null); |
There was a problem hiding this comment.
➕ right trim instead of trim the key:
https://github.com/apache/commons-configuration/blob/trunk/src/main/java/org/apache/commons/configuration2/INIConfiguration.java#L461
| void instantiateInvalidConfiguration() { | ||
| assertThrows(IOException.class, () -> new Configuration(new StringReader("someinvalidini"))); | ||
| } | ||
|
|
There was a problem hiding this comment.
This is technically a valid INI file. I couldn't figure out how to construct an invalid INI file. Ini4j got this wrong.
| Reader reader = FileHelper.getReader(FileHelper.getOktaDirectory(), "profiles"); | ||
|
|
||
| return new MultipleProfile(reader); | ||
| } |
There was a problem hiding this comment.
🎨 I reordered the methods here to be in step-down order (Clean Code). Sorry for the diff carnage.
| FileHelper.usingPath(FileHelper.getOktaDirectory().resolve("profiles"), (reader, writer) -> { | ||
| MultipleProfile multipleProfile = new MultipleProfile(reader); | ||
| multipleProfile.addOrUpdateProfile(environment.oktaProfile, environment.awsRoleToAssume, start); | ||
| multipleProfile.save(writer); |
There was a problem hiding this comment.
🎨 I replaced the explicit resource management with a utility method that structurally ensures correct use without burdening every site of use.
| private Path getSessionPath() throws IOException { | ||
| return FileHelper.resolveFilePath(FileHelper.getOktaDirectory(), ".current-session"); | ||
| } | ||
|
|
There was a problem hiding this comment.
🎨 a good chunk of the diff in this file is method reordering to show methods in the order they are used (step down rule from Clean Code).
| } | ||
|
|
||
| public interface PathW { | ||
| void useFile(Writer writer) throws IOException; |
There was a problem hiding this comment.
❓ I'm not sure I love the names of these utility methods or interfaces, but I couldn't come up with anything better. I like the outcome in code tho.
| @@ -60,21 +59,8 @@ public Credentials(Reader reader) throws IOException { | |||
| */ | |||
| public void addOrUpdateProfile(String name, String awsAccessKey, String awsSecretKey, String awsSessionToken) { | |||
| name = "default".equals(name) ? "default" : name + environment.credentialsSuffix; | |||
There was a problem hiding this comment.
Should this also be using DEFAULT_PROFILE_NAME instead?
There was a problem hiding this comment.
Definitely. I’ll fix that. Good catch.
- Use defined constant instead of magic string
|
@frosforever thank you for the code review. Any other concerns before I merge this? |
| Instant expiry = Instant.parse(profileExpiry); | ||
| return expiry; | ||
| private Instant getExpiry(String profile) { | ||
| String profileExpiry = getProperty(profile, "profile_expiry"); |
There was a problem hiding this comment.
Should this use static PROFILE_EXPIRY
| public MultipleProfile(Reader reader) throws IOException { | ||
| super(reader); | ||
| private String getRoleArn(String profile) { | ||
| return getProperty(profile, "okta_roleArn"); |
There was a problem hiding this comment.
should this use static OKTA_ROLE_ARN
There was a problem hiding this comment.
Thanks again. I've fixed these.
- Use defined constants instead of magic strings
Problem Statement
Issue #141 states:
Solution
Add Apache Commons Configuration2
Adapt configuration2's INIConfiguration to support AWS quirks
Remove Ini4j (unmaintained, has park page for website)
Refactor file handling code
Resolves #141
Apologies for the extensiveness of this change. The configuration
handling likely needs a refactor to make it easier to support future
modification.