fix

Author: luigi

codegen/smithy-kotlin-codegen/src/main/kotlin/software/amazon/smithy/kotlin/codegen/service/ktor/Authentication.kt

@@ -18,7 +18,10 @@ internal fun KtorStubGenerator.writeAuthentication() {
 
         writer.withBlock("internal object BearerValidation {", "}") {
             withBlock("public fun bearerValidation(token: String): UserPrincipal? {", "}") {
-                write("// TODO: implement me")
+                write("// TODO: implement me:")
+                write("//  Validate the provided bearer token and return a UserPrincipal if valid.")
+                write("//  Return a UserPrincipal with user information (e.g., user id, roles) if valid,")
+                write("//  or return null if the token is invalid or expired.")
                 write("if (true) return UserPrincipal(#S) else return null", "Authenticated User")
             }
         }
@@ -39,16 +42,14 @@ internal fun KtorStubGenerator.writeAuthentication() {
                 }
                 withBlock("sigV4(name = #S) {", "}", "aws-sigv4") {
                     write("region = #T.region", ServiceTypes(pkgName).serviceFrameworkConfig)
-                    val serviceSigV4AuthTrait = serviceShape.getTrait<SigV4Trait>()
-                    if (serviceSigV4AuthTrait != null) {
-                        write("service = #S", serviceSigV4AuthTrait.name)
+                    serviceShape.getTrait<SigV4Trait>()?.let {
+                        write("service = #S", it.name)
                     }
                 }
                 withBlock("sigV4A(name = #S) {", "}", "aws-sigv4a") {
                     write("region = #T.region", ServiceTypes(pkgName).serviceFrameworkConfig)
-                    val serviceSigV4AAuthTrait = serviceShape.getTrait<SigV4ATrait>()
-                    if (serviceSigV4AAuthTrait != null) {
-                        write("service = #S", serviceSigV4AAuthTrait.name)
+                    serviceShape.getTrait<SigV4ATrait>()?.let {
+                        write("service = #S", it.name)
                     }
                 }
                 write("provider(#S) { authenticate { ctx -> ctx.principal(Unit) } }", "no-auth")

codegen/smithy-kotlin-codegen/src/main/kotlin/software/amazon/smithy/kotlin/codegen/service/ktor/AuthenticationAWS.kt

@@ -20,6 +20,18 @@ internal fun KtorStubGenerator.writePerOperationHandlers() {
                 write("//   1. Use`#T.Builder()`", outputSymbol)
                 write("//   2. Set fields like `#T.variable = ...`", outputSymbol)
                 write("//   3. Return the built object using `return #T.build()`", outputSymbol)
+                write("//")
+                val errorSymbolNames: List<String> = shape.errors.map { errorShapeId ->
+                    val errorShape = ctx.model.expectShape(errorShapeId)
+                    ctx.symbolProvider.toSymbol(errorShape).name
+                }
+                write("// You may also throw custom errors if needed.")
+                write("// Custom errors can be created using the same builder pattern.")
+                if (errorSymbolNames.isNotEmpty()) {
+                    write("// Available errors : ${errorSymbolNames.joinToString(", ")}")
+                } else {
+                    write("// There are no available errors for this operation.")
+                }
                 write("return #T.Builder().build()", outputSymbol)
             }
         }

codegen/smithy-kotlin-codegen/src/main/kotlin/software/amazon/smithy/kotlin/codegen/service/ktor/OperationHandlers.kt

@@ -5,7 +5,6 @@ namespace com.cbor
 use smithy.protocols#rpcv2Cbor
 
 @rpcv2Cbor
-@httpBearerAuth
 service CborServiceTest {
     version: "1.0.0"
     operations: [
@@ -17,7 +16,6 @@ service CborServiceTest {
 }
 
 @http(method: "POST", uri: "/post", code: 201)
-@auth([])
 operation PostTest {
     input: PostTestInput
     output: PostTestOutput

tests/codegen/service-codegen-tests/model/service-cbor-test.smithy

@@ -5,7 +5,6 @@ namespace com.constraints
 use smithy.protocols#rpcv2Cbor
 
 @rpcv2Cbor
-@httpBearerAuth
 service ServiceConstraintsTest {
     version: "1.0.0"
     operations: [

tests/codegen/service-codegen-tests/model/service-constraints-test.smithy

@@ -5,7 +5,6 @@ namespace com.json
 use aws.protocols#restJson1
 
 @restJson1
-@httpBearerAuth
 service JsonServiceTest {
     version: "1.0.0"
     operations: [

tests/codegen/service-codegen-tests/model/service-json-test.smithy

@@ -111,58 +111,6 @@ internal fun generateCborServiceTest() {
     """.trimIndent()
     manifest.writeFile("src/main/kotlin/$packagePath/operations/HttpErrorTestOperation.kt", httpErrorTestOperation)
 
-    val bearerValidation = """
-        package $packageName.auth
-        
-        internal object BearerValidation {
-            public fun bearerValidation(token: String): UserPrincipal? {
-                // TODO: implement me
-                if (token == "correctToken") return UserPrincipal("Authenticated User") else return null
-            }
-        }
-    """.trimIndent()
-    manifest.writeFile("src/main/kotlin/$packagePath/auth/Validation.kt", bearerValidation)
-
-    val awsValidation = """
-        package $packageName.auth
-        
-        import aws.smithy.kotlin.runtime.auth.awscredentials.Credentials
-        
-        internal object SigV4CredentialStore {
-            private val table: Map<String, Credentials> = mapOf(
-                "AKIAIOSFODNN7EXAMPLE" to Credentials(accessKeyId = "AKIAIOSFODNN7EXAMPLE", secretAccessKey = "wJalrXUtnFEMI/K7MDENG+bPxRfiCYEXAMPLEKEY"),
-                "EXAMPLEACCESSKEY1234" to Credentials(accessKeyId = "EXAMPLEACCESSKEY1234", secretAccessKey = "wJalrXUtnFEMI/K7MDENG+bPxRfiCYEXAMPLEKEY"),
-            )
-            internal fun get(accessKeyId: String): Credentials? {
-                // TODO: implement me: return Credentials(accessKeyId = ..., secretAccessKey = ...)
-                return table[accessKeyId]
-            }
-        }
-        
-        internal object SigV4aPublicKeyStore {
-            private val table: MutableMap<String, java.security.PublicKey> = mutableMapOf()
-        
-            init {
-                val pem = ""${'"'}
-                    -----BEGIN PUBLIC KEY-----
-                    MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAE4BB0k4K89eCESVtC39Kzm0HA+lYx
-                    8YF3OZDop7htXAyhGAXn4U70ViNmtG+eWu2bQOXGEIMtoBAEoRk11WXOAw==
-                    -----END PUBLIC KEY-----
-                ""${'"'}.trimIndent()
-                val clean = pem.replace("-----BEGIN PUBLIC KEY-----", "").replace("-----END PUBLIC KEY-----", "").replace("\\s".toRegex(), "")
-                val keyBytes = java.util.Base64.getDecoder().decode(clean)
-                val spec = java.security.spec.X509EncodedKeySpec(keyBytes)
-                val kf = java.security.KeyFactory.getInstance("EC")
-                table["EXAMPLEACCESSKEY1234"] = kf.generatePublic(spec)
-            }
-        
-            internal fun get(accessKeyId: String): java.security.PublicKey? {
-                return table[accessKeyId]
-            }
-        }
-    """.trimIndent()
-    manifest.writeFile("src/main/kotlin/$packagePath/auth/AWSValidation.kt", awsValidation)
-
     val settingGradleKts = """
         rootProject.name = "service-cbor-test"
         includeBuild("../../../../../")

tests/codegen/service-codegen-tests/src/main/kotlin/com/test/CborServiceTestGenerator.kt

@@ -61,58 +61,6 @@ internal fun generateServiceConstraintsTest() {
         .build()
     KotlinCodegenPlugin().execute(context)
 
-    val bearerValidation = """
-        package $packageName.auth
-        
-        internal object BearerValidation {
-            public fun bearerValidation(token: String): UserPrincipal? {
-                // TODO: implement me
-                if (token == "correctToken") return UserPrincipal("Authenticated User") else return null
-            }
-        }
-    """.trimIndent()
-    manifest.writeFile("src/main/kotlin/$packagePath/auth/Validation.kt", bearerValidation)
-
-    val awsValidation = """
-        package $packageName.auth
-        
-        import aws.smithy.kotlin.runtime.auth.awscredentials.Credentials
-        
-        internal object SigV4CredentialStore {
-            private val table: Map<String, Credentials> = mapOf(
-                "AKIAIOSFODNN7EXAMPLE" to Credentials(accessKeyId = "AKIAIOSFODNN7EXAMPLE", secretAccessKey = "wJalrXUtnFEMI/K7MDENG+bPxRfiCYEXAMPLEKEY"),
-                "EXAMPLEACCESSKEY1234" to Credentials(accessKeyId = "EXAMPLEACCESSKEY1234", secretAccessKey = "wJalrXUtnFEMI/K7MDENG+bPxRfiCYEXAMPLEKEY"),
-            )
-            internal fun get(accessKeyId: String): Credentials? {
-                // TODO: implement me: return Credentials(accessKeyId = ..., secretAccessKey = ...)
-                return table[accessKeyId]
-            }
-        }
-        
-        internal object SigV4aPublicKeyStore {
-            private val table: MutableMap<String, java.security.PublicKey> = mutableMapOf()
-        
-            init {
-                val pem = ""${'"'}
-                    -----BEGIN PUBLIC KEY-----
-                    MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAE4BB0k4K89eCESVtC39Kzm0HA+lYx
-                    8YF3OZDop7htXAyhGAXn4U70ViNmtG+eWu2bQOXGEIMtoBAEoRk11WXOAw==
-                    -----END PUBLIC KEY-----
-                ""${'"'}.trimIndent()
-                val clean = pem.replace("-----BEGIN PUBLIC KEY-----", "").replace("-----END PUBLIC KEY-----", "").replace("\\s".toRegex(), "")
-                val keyBytes = java.util.Base64.getDecoder().decode(clean)
-                val spec = java.security.spec.X509EncodedKeySpec(keyBytes)
-                val kf = java.security.KeyFactory.getInstance("EC")
-                table["EXAMPLEACCESSKEY1234"] = kf.generatePublic(spec)
-            }
-        
-            internal fun get(accessKeyId: String): java.security.PublicKey? {
-                return table[accessKeyId]
-            }
-        }
-    """.trimIndent()
-    manifest.writeFile("src/main/kotlin/$packagePath/auth/AWSValidation.kt", awsValidation)
-
     val settingGradleKts = """
         rootProject.name = "service-constraints-test"
         includeBuild("../../../../../")

tests/codegen/service-codegen-tests/src/main/kotlin/com/test/ConstraintsServiceTestGenerator.kt

@@ -187,58 +187,6 @@ internal fun generateJsonServiceTest() {
     """.trimIndent()
     manifest.writeFile("src/main/kotlin/$packagePath/operations/HttpErrorTestOperation.kt", httpErrorTestOperation)
 
-    val bearerValidation = """
-        package $packageName.auth
-        
-        internal object BearerValidation {
-            public fun bearerValidation(token: String): UserPrincipal? {
-                // TODO: implement me
-                if (token == "correctToken") return UserPrincipal("Authenticated User") else return null
-            }
-        }
-    """.trimIndent()
-    manifest.writeFile("src/main/kotlin/$packagePath/auth/Validation.kt", bearerValidation)
-
-    val awsValidation = """
-        package $packageName.auth
-        
-        import aws.smithy.kotlin.runtime.auth.awscredentials.Credentials
-        
-        internal object SigV4CredentialStore {
-            private val table: Map<String, Credentials> = mapOf(
-                "AKIAIOSFODNN7EXAMPLE" to Credentials(accessKeyId = "AKIAIOSFODNN7EXAMPLE", secretAccessKey = "wJalrXUtnFEMI/K7MDENG+bPxRfiCYEXAMPLEKEY"),
-                "EXAMPLEACCESSKEY1234" to Credentials(accessKeyId = "EXAMPLEACCESSKEY1234", secretAccessKey = "wJalrXUtnFEMI/K7MDENG+bPxRfiCYEXAMPLEKEY"),
-            )
-            internal fun get(accessKeyId: String): Credentials? {
-                // TODO: implement me: return Credentials(accessKeyId = ..., secretAccessKey = ...)
-                return table[accessKeyId]
-            }
-        }
-        
-        internal object SigV4aPublicKeyStore {
-            private val table: MutableMap<String, java.security.PublicKey> = mutableMapOf()
-        
-            init {
-                val pem = ""${'"'}
-                    -----BEGIN PUBLIC KEY-----
-                    MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAE4BB0k4K89eCESVtC39Kzm0HA+lYx
-                    8YF3OZDop7htXAyhGAXn4U70ViNmtG+eWu2bQOXGEIMtoBAEoRk11WXOAw==
-                    -----END PUBLIC KEY-----
-                ""${'"'}.trimIndent()
-                val clean = pem.replace("-----BEGIN PUBLIC KEY-----", "").replace("-----END PUBLIC KEY-----", "").replace("\\s".toRegex(), "")
-                val keyBytes = java.util.Base64.getDecoder().decode(clean)
-                val spec = java.security.spec.X509EncodedKeySpec(keyBytes)
-                val kf = java.security.KeyFactory.getInstance("EC")
-                table["EXAMPLEACCESSKEY1234"] = kf.generatePublic(spec)
-            }
-        
-            internal fun get(accessKeyId: String): java.security.PublicKey? {
-                return table[accessKeyId]
-            }
-        }
-    """.trimIndent()
-    manifest.writeFile("src/main/kotlin/$packagePath/auth/AWSValidation.kt", awsValidation)
-
     val settingGradleKts = """
         rootProject.name = "service-json-test"
         includeBuild("../../../../../")

tests/codegen/service-codegen-tests/src/main/kotlin/com/test/JsonServiceTestGenerator.kt

@@ -22,13 +22,13 @@ import kotlin.test.assertTrue
 
 @TestInstance(TestInstance.Lifecycle.PER_CLASS)
 class AuthenticationServiceTest {
-    val closeGracePeriodMillis: Long = 5_000L
-    val closeTimeoutMillis: Long = 1_000L
-    val requestBodyLimit: Long = 10L * 1024 * 1024
-    val port: Int = ServerSocket(0).use { it.localPort }
-
-    val portListnerTimeout = 60L
+    val closeGracePeriodMillis = TestParams.CLOSE_GRACE_PERIOD_MILLIS
+    val closeTimeoutMillis = TestParams.CLOSE_TIMEOUT_MILLIS
+    val gracefulWindow = TestParams.GRACEFUL_WINDOW
+    val requestBodyLimit = TestParams.REQUEST_BODY_LIMIT
+    val portListenerTimeout = TestParams.PORT_LISTENER_TIMEOUT
 
+    val port: Int = ServerSocket(0).use { it.localPort }
     val baseUrl = "http://localhost:$port"
 
     val projectDir: Path = Paths.get("build/service-authentication-test")
@@ -38,12 +38,12 @@ class AuthenticationServiceTest {
     @BeforeAll
     fun boot() {
         proc = startService("netty", port, closeGracePeriodMillis, closeTimeoutMillis, requestBodyLimit, projectDir)
-        val ready = waitForPort(port, portListnerTimeout)
-        assertTrue(ready, "Service did not start within $portListnerTimeout s")
+        val ready = waitForPort(port, portListenerTimeout)
+        assertTrue(ready, "Service did not start within $portListenerTimeout s")
     }
 
     @AfterAll
-    fun shutdown() = cleanupService(proc)
+    fun shutdown() = cleanupService(proc, gracefulWindow)
 
     @Test
     fun `checks bearer authentication with correct token`() {