Added option 'tokenProvider' to use custom auth provider (#107)

Author: alex268

jdbc/src/main/java/tech/ydb/jdbc/settings/YdbConfig.java

@@ -202,6 +202,7 @@ public DriverPropertyInfo[] toPropertyInfo() throws SQLException {
             YdbConnectionProperties.USE_METADATA.toInfo(properties),
             YdbConnectionProperties.IAM_ENDPOINT.toInfo(properties),
             YdbConnectionProperties.METADATA_URL.toInfo(properties),
+            YdbConnectionProperties.TOKEN_PROVIDER.toInfo(properties),
             YdbConnectionProperties.GRPC_COMPRESSION.toInfo(properties),
 
             YdbClientProperties.KEEP_QUERY_TEXT.toInfo(properties),

jdbc/src/main/java/tech/ydb/jdbc/settings/YdbConnectionProperties.java

@@ -1,9 +1,12 @@
 package tech.ydb.jdbc.settings;
 
+import java.lang.reflect.InvocationTargetException;
 import java.sql.SQLException;
 import java.util.Properties;
+import java.util.function.Supplier;
 import java.util.logging.Level;
 import java.util.logging.Logger;
+import java.util.regex.Pattern;
 
 import tech.ydb.auth.TokenAuthProvider;
 import tech.ydb.auth.iam.CloudAuthHelper;
@@ -16,6 +19,8 @@
 
 public class YdbConnectionProperties {
     private static final Logger LOGGER = Logger.getLogger(YdbDriver.class.getName());
+    private static final String ID_PATTERN = "\\p{javaJavaIdentifierStart}\\p{javaJavaIdentifierPart}*";
+    private static final Pattern FQCN = Pattern.compile(ID_PATTERN + "(\\." + ID_PATTERN + ")*");
 
     static final YdbProperty<String> TOKEN = YdbProperty.content(YdbConfig.TOKEN_KEY, "Authentication token");
 
@@ -48,6 +53,9 @@ public class YdbConnectionProperties {
     static final YdbProperty<String> METADATA_URL = YdbProperty.content("metadataURL",
             "Custom URL for the metadata service authentication");
 
+    static final YdbProperty<Object> TOKEN_PROVIDER = YdbProperty.object("tokenProvider",
+            "Custom token provider, use object instance or class full name impementing Supplier<String>");
+
     static final YdbProperty<String> GRPC_COMPRESSION = YdbProperty.string(
             "grpcCompression", "Use specified GRPC compressor (supported only none and gzip)"
     );
@@ -65,13 +73,12 @@ public class YdbConnectionProperties {
     private final YdbValue<Boolean> useMetadata;
     private final YdbValue<String> iamEndpoint;
     private final YdbValue<String> metadataUrl;
+    private final YdbValue<Object> tokenProvider;
     private final YdbValue<String> grpcCompression;
 
-    public YdbConnectionProperties(YdbConfig config) throws SQLException {
-        this.username = config.getUsername();
-        this.password = config.getPassword();
-
-        Properties props = config.getProperties();
+    public YdbConnectionProperties(String username, String password, Properties props) throws SQLException {
+        this.username = username;
+        this.password = password;
 
         this.localDatacenter = LOCAL_DATACENTER.readValue(props);
         this.useSecureConnection = USE_SECURE_CONNECTION.readValue(props);
@@ -83,9 +90,14 @@ public YdbConnectionProperties(YdbConfig config) throws SQLException {
         this.useMetadata = USE_METADATA.readValue(props);
         this.iamEndpoint = IAM_ENDPOINT.readValue(props);
         this.metadataUrl = METADATA_URL.readValue(props);
+        this.tokenProvider = TOKEN_PROVIDER.readValue(props);
         this.grpcCompression = GRPC_COMPRESSION.readValue(props);
     }
 
+    public YdbConnectionProperties(YdbConfig config) throws SQLException {
+        this(config.getUsername(), config.getPassword(), config.getProperties());
+    }
+
     String getLocalDataCenter() {
         return localDatacenter.getValue();
     }
@@ -98,7 +110,7 @@ byte[] getSecureConnectionCert() {
         return secureConnectionCertificate.getValue();
     }
 
-    public GrpcTransportBuilder applyToGrpcTransport(GrpcTransportBuilder builder) {
+    public GrpcTransportBuilder applyToGrpcTransport(GrpcTransportBuilder builder) throws SQLException {
         if (localDatacenter.hasValue()) {
             builder = builder.withBalancingSettings(BalancingSettings.fromLocation(localDatacenter.getValue()));
         }
@@ -180,6 +192,43 @@ public GrpcTransportBuilder applyToGrpcTransport(GrpcTransportBuilder builder) {
             } else {
                 builder = builder.withAuthProvider(CloudAuthHelper.getServiceAccountJsonAuthProvider(json));
             }
+            usedProvider = "service account file credentitals";
+        }
+
+        if (tokenProvider.hasValue()) {
+            if (usedProvider != null) {
+                LOGGER.log(Level.WARNING, "Dublicate authentication config! Token Provider credentials replaces {0}",
+                        usedProvider);
+            }
+
+            Object provider = tokenProvider.getValue();
+            if (provider instanceof Supplier) {
+                Supplier<?> prov = (Supplier<?>) provider;
+                builder = builder.withAuthProvider((rpc) -> () -> prov.get().toString());
+            } else if (provider instanceof String) {
+                String className = (String) provider;
+                if (!FQCN.matcher(className).matches()) {
+                    throw new SQLException("tokenProvider must be full class name or instance of Supplier<String>");
+                }
+
+                try {
+                    Class<?> clazz = Class.forName(className);
+                    if (!Supplier.class.isAssignableFrom(clazz)) {
+                        throw new SQLException("tokenProvider " + className + " is not implement Supplier<String>");
+                    }
+                    Supplier<?> prov = clazz.asSubclass(Supplier.class)
+                            .getConstructor(new Class<?>[0])
+                            .newInstance(new Object[0]);
+                    builder = builder.withAuthProvider((rpc) -> () -> prov.get().toString());
+                } catch (ClassNotFoundException ex) {
+                    throw new SQLException("tokenProvider " + className + " not found", ex);
+                } catch (NoSuchMethodException | SecurityException | InstantiationException | IllegalAccessException
+                        | IllegalArgumentException | InvocationTargetException ex) {
+                    throw new SQLException("Cannot construct tokenProvider " + className, ex);
+                }
+            } else {
+                throw new SQLException("Cannot parse tokenProvider " + provider.getClass().getName());
+            }
         }
 
         if (grpcCompression.hasValue()) {

jdbc/src/main/java/tech/ydb/jdbc/settings/YdbProperty.java

@@ -43,6 +43,11 @@ public YdbValue<T> readValue(Properties props) throws SQLException {
             }
         }
 
+        if (clazz == Object.class) {
+            T typed = clazz.cast(value);
+            return new YdbValue<>(true, typed.toString(), typed);
+        }
+
         if (value instanceof String) {
             try {
                 String stringValue = (String) value;
@@ -69,6 +74,10 @@ DriverPropertyInfo toInfo(Properties values) throws SQLException {
         return info;
     }
 
+    public static YdbProperty<Object> object(String name, String description) {
+        return new YdbProperty<>(name, description, null, Object.class, v -> v);
+    }
+
     public static YdbProperty<String> string(String name, String description) {
         return string(name, description, null);
     }
@@ -143,11 +152,6 @@ public static YdbProperty<Duration> duration(String name, String description, St
         });
     }
 
-    @Deprecated
-    public static YdbProperty<byte[]> bytes(String name, String description) {
-        return new YdbProperty<>(name, description, null, byte[].class, YdbLookup::byteFileReference);
-    }
-
     public static YdbProperty<String> content(String name, String description) {
         return new YdbProperty<>(name, description, null, String.class, YdbLookup::stringFileReference);
     }

jdbc/src/test/java/tech/ydb/jdbc/settings/BadTokenProvider.java

@@ -0,0 +1,20 @@
+package tech.ydb.jdbc.settings;
+
+import java.util.function.Supplier;
+
+/**
+ *
+ * @author Aleksandr Gorshenin
+ */
+public class BadTokenProvider implements Supplier<String> {
+    private final String token;
+
+    public BadTokenProvider(String token) {
+        this.token = token;
+    }
+
+    @Override
+    public String get() {
+        return token;
+    }
+}

jdbc/src/test/java/tech/ydb/jdbc/settings/NonSupplierTokenProvider.java

@@ -0,0 +1,11 @@
+package tech.ydb.jdbc.settings;
+
+/**
+ *
+ * @author Aleksandr Gorshenin
+ */
+public class NonSupplierTokenProvider {
+    public String getToken() {
+        return "STATIC";
+    }
+}

jdbc/src/test/java/tech/ydb/jdbc/settings/StaticTokenProvider.java

@@ -0,0 +1,14 @@
+package tech.ydb.jdbc.settings;
+
+import java.util.function.Supplier;
+
+/**
+ *
+ * @author Aleksandr Gorshenin
+ */
+public class StaticTokenProvider implements Supplier<String>{
+    @Override
+    public String get() {
+        return "STATIC";
+    }
+}

jdbc/src/test/java/tech/ydb/jdbc/settings/YdbConnectionPropertiesTest.java

@@ -0,0 +1,110 @@
+package tech.ydb.jdbc.settings;
+
+import java.sql.SQLException;
+import java.util.Properties;
+import java.util.function.Supplier;
+
+import org.junit.jupiter.api.Assertions;
+import org.junit.jupiter.api.Test;
+
+import tech.ydb.auth.AuthIdentity;
+import tech.ydb.core.grpc.GrpcTransport;
+import tech.ydb.core.grpc.GrpcTransportBuilder;
+import tech.ydb.jdbc.impl.helper.ExceptionAssert;
+
+/**
+ *
+ * @author Aleksandr Gorshenin
+ */
+public class YdbConnectionPropertiesTest {
+    private static final String YDB_URL = "grpc://localhost/local";
+
+    @Test
+    public void tokenProviderObject() throws SQLException {
+        Properties props = new Properties();
+        props.put("tokenProvider", (Supplier<String>) () -> "SUPPLIER");
+        YdbConnectionProperties cp = new YdbConnectionProperties(null, null, props);
+        GrpcTransportBuilder builder = cp.applyToGrpcTransport(GrpcTransport.forConnectionString(YDB_URL));
+        try (AuthIdentity identity = builder.getAuthProvider().createAuthIdentity(null)) {
+            Assertions.assertEquals("SUPPLIER", identity.getToken());
+        }
+    }
+
+    @Test
+    public void tokenProviderToStringTest() throws SQLException {
+        Properties props = new Properties();
+        props.put("tokenProvider", (Supplier<Object>) () -> new StringBuilder("test"));
+        YdbConnectionProperties cp = new YdbConnectionProperties(null, null, props);
+        GrpcTransportBuilder builder = cp.applyToGrpcTransport(GrpcTransport.forConnectionString(YDB_URL));
+        try (AuthIdentity identity = builder.getAuthProvider().createAuthIdentity(null)) {
+            Assertions.assertEquals("test", identity.getToken());
+        }
+    }
+
+    @Test
+    public void tokenProviderClassTest() throws SQLException {
+        Properties props = new Properties();
+        props.put("tokenProvider", "tech.ydb.jdbc.settings.StaticTokenProvider");
+        YdbConnectionProperties cp = new YdbConnectionProperties(null, null, props);
+        GrpcTransportBuilder builder = cp.applyToGrpcTransport(GrpcTransport.forConnectionString(YDB_URL));
+        try (AuthIdentity identity = builder.getAuthProvider().createAuthIdentity(null)) {
+            Assertions.assertEquals("STATIC", identity.getToken());
+        }
+    }
+
+    @Test
+    public void tokenProviderWrongClassNameTest() throws SQLException {
+        Properties props = new Properties();
+        props.put("tokenProvider", "1tech.ydb.jdbc.settings.StaticTokenProvider");
+        YdbConnectionProperties cp = new YdbConnectionProperties(null, null, props);
+        ExceptionAssert.sqlException(
+                "tokenProvider must be full class name or instance of Supplier<String>",
+                () -> cp.applyToGrpcTransport(GrpcTransport.forConnectionString(YDB_URL))
+        );
+    }
+
+    @Test
+    public void tokenProviderUnknownClassTest() throws SQLException {
+        Properties props = new Properties();
+        props.put("tokenProvider", "tech.ydb.jdbc.settings.TestTokenProvider");
+        YdbConnectionProperties cp = new YdbConnectionProperties(null, null, props);
+        ExceptionAssert.sqlException(
+                "tokenProvider tech.ydb.jdbc.settings.TestTokenProvider not found",
+                () -> cp.applyToGrpcTransport(GrpcTransport.forConnectionString(YDB_URL))
+        );
+    }
+
+    @Test
+    public void tokenProviderInvalidClassTest() throws SQLException {
+        Properties props = new Properties();
+        props.put("tokenProvider", "tech.ydb.jdbc.settings.BadTokenProvider");
+        YdbConnectionProperties cp = new YdbConnectionProperties(null, null, props);
+        ExceptionAssert.sqlException(
+                "Cannot construct tokenProvider tech.ydb.jdbc.settings.BadTokenProvider",
+                () -> cp.applyToGrpcTransport(GrpcTransport.forConnectionString(YDB_URL))
+        );
+    }
+
+    @Test
+    public void tokenProviderNonSupplierClassTest() throws SQLException {
+        Properties props = new Properties();
+        props.put("tokenProvider", "tech.ydb.jdbc.settings.NonSupplierTokenProvider");
+        YdbConnectionProperties cp = new YdbConnectionProperties(null, null, props);
+        ExceptionAssert.sqlException(
+                "tokenProvider tech.ydb.jdbc.settings.NonSupplierTokenProvider is not implement Supplier<String>",
+                () -> cp.applyToGrpcTransport(GrpcTransport.forConnectionString(YDB_URL))
+        );
+    }
+
+    @Test
+    public void tokenProviderWrongObjectTest() throws SQLException {
+        Properties props = new Properties();
+        props.put("tokenProvider", new Object());
+        YdbConnectionProperties cp = new YdbConnectionProperties(null, null, props);
+
+        ExceptionAssert.sqlException(
+                "Cannot parse tokenProvider java.lang.Object",
+                () -> cp.applyToGrpcTransport(GrpcTransport.forConnectionString(YDB_URL))
+        );
+    }
+}

jdbc/src/test/java/tech/ydb/jdbc/settings/YdbDriverProperitesTest.java

@@ -316,6 +316,7 @@ static DriverPropertyInfo[] defaultPropertyInfo(@Nullable String localDatacenter
             new DriverPropertyInfo("useMetadata", ""),
             new DriverPropertyInfo("iamEndpoint", ""),
             new DriverPropertyInfo("metadataURL", ""),
+            new DriverPropertyInfo("tokenProvider", ""),
             new DriverPropertyInfo("grpcCompression", ""),
             new DriverPropertyInfo("keepQueryText", ""),
             new DriverPropertyInfo("sessionKeepAliveTime", ""),
@@ -362,6 +363,7 @@ static DriverPropertyInfo[] customizedPropertyInfo() {
             new DriverPropertyInfo("useMetadata", "true"),
             new DriverPropertyInfo("iamEndpoint", "iam.endpoint.com"),
             new DriverPropertyInfo("metadataURL", "https://metadata.com"),
+            new DriverPropertyInfo("tokenProvider", "tech.ydb.jdbc.settings.StaticTokenProvider"),
             new DriverPropertyInfo("grpcCompression", "gzip"),
             new DriverPropertyInfo("keepQueryText", "true"),
             new DriverPropertyInfo("sessionKeepAliveTime", "15m"),