Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Overhaul Refresh Token Retry Mechanism #4

Merged
merged 3 commits into from
Apr 28, 2020
Merged

Overhaul Refresh Token Retry Mechanism #4

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
3 commits
Select commit Hold shift + click to select a range
31e9537
Overhaul token refresh mechanism and discard dispatchGroup
erenkabakci Apr 27, 2020
c380259
Change testing approach drastically
erenkabakci Apr 28, 2020
8ac9e97
Update swift.yml
erenkabakci Apr 28, 2020
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Jump to
Jump to file
Failed to load files.
Diff view
Diff view
2 changes: 1 addition & 1 deletion .github/workflows/swift.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -15,4 +15,4 @@ jobs:
- name: Build
run: swift build -v
- name: Run tests
run: swift test -v
run: xcodebuild test -project fusion.xcodeproj -scheme fusion -destination 'platform=iOS Simulator,name=iPhone 11'
1 change: 1 addition & 0 deletions Sources/NetworkError.swift
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -30,6 +30,7 @@ public enum NetworkError: Error, Equatable {
case urlError(URLError?)
case parsingFailure
case corruptUrl
case timeout
case unauthorized
case forbidden
case generic(HttpStatusCode)
Expand Down
2 changes: 1 addition & 1 deletion Sources/SessionPublisherProtocol.swift
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -32,7 +32,7 @@ public protocol SessionPublisherProtocol: AnyObject {
extension URLSession: SessionPublisherProtocol {
public func dataTaskPublisher(for request: URLRequest) -> AnyPublisher<(data: Data, response: URLResponse), Error> {
self.dataTaskPublisher(for: request)
.receive(on: DispatchQueue.main)
.subscribe(on: DispatchQueue.global())
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I don't think networking framework should decide where to subscribe and publish it's changes

Copy link
Owner Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

It's a design decision that I took while creating the framework. For the consumer it doesn't change anything actually but I wanted fusion to provide a hassle-free development for the consumer. Therefore all the executions happen on the background thread and the deliveries happen on the main queue.

If at any point a consumer wants to use a different thread, they are free to use subscribe or receive

.mapError { NetworkError.urlError($0) }
.eraseToAnyPublisher()
}
Expand Down
131 changes: 65 additions & 66 deletions Sources/WebService/AuthenticatedWebService/AuthenticatedWebService.swift
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -33,10 +33,10 @@ public enum AuthorizationHeaderScheme: String {

public struct AuthenticatedWebServiceConfiguration {
let authorizationHeaderScheme: AuthorizationHeaderScheme
let refreshTriggerErrors: [Error]
let refreshTriggerErrors: [NetworkError]

public init(authorizationHeaderScheme: AuthorizationHeaderScheme = .none,
refreshTriggerErrors: [Error] = [NetworkError.unauthorized]) {
refreshTriggerErrors: [NetworkError] = [NetworkError.unauthorized]) {
self.authorizationHeaderScheme = authorizationHeaderScheme
self.refreshTriggerErrors = refreshTriggerErrors
}
Expand All @@ -56,84 +56,83 @@ open class AuthenticatedWebService: WebService {
self.configuration = configuration
super.init(urlSession: urlSession)
}

override public func execute<T>(urlRequest: URLRequest) -> AnyPublisher<T, Error> where T : Decodable {
var urlRequest = urlRequest
var currentAccessToken: String?

authenticationQueue.sync {
currentAccessToken = self.tokenProvider.accessToken.value
func appendTokenAndExecute(accessToken: AccessToken) -> AnyPublisher<T, Error> {
urlRequest.setValue(self.configuration.authorizationHeaderScheme.rawValue + accessToken, forHTTPHeaderField: "Authorization")
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

should be deffered

Copy link
Owner Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

again, the consumer of this is deferred already. There is no direct access to this publisher without any defer mechanism.

return super.execute(urlRequest: urlRequest)
.subscribe(on: DispatchQueue.global())
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

same here, don't think it's responsibility of the framework itself

Copy link
Owner Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

It's a design decision that I took while creating the framework. For the consumer it doesn't change anything actually but I wanted fusion to provide a hassle-free development for the consumer. Therefore all the executions happen on the background thread and the deliveries happen on the main queue.

If at any point a consumer wants to use a different thread, they are free to use subscribe or receive

.eraseToAnyPublisher()
}

return Deferred {
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

this deferred can be removed

Copy link
Owner Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This, I am not sure since this was sort of the fixing point for the racing refrehTokens. I will let @emanuelschmoczer elaborate on this.

self.tokenProvider.accessToken
.compactMap { $0 }
.setFailureType(to: Error.self)
.flatMap { accessToken -> AnyPublisher<T, Error> in
return appendTokenAndExecute(accessToken: accessToken)
}
}

guard let accessToken = currentAccessToken else {
return Fail<T, Error>(error: NetworkError.unauthorized).eraseToAnyPublisher()
.timeout(10, scheduler: DispatchQueue.main, customError: { NetworkError.timeout })
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Again, I don't think this timeout and queue logic is responsibility of this framework

Copy link
Owner Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

if there is no timeOut, the request will hang forever. so it's an extra thing to think about for the consumer. Token refreshing is a core feature of this framework, which comes with the retry mechanism and so on. If we keep all in but the timeout outside, then the consumer has to think about this extra responsibility. Does it make a difference if it's done inside or outside?

.catch { [weak self] error -> AnyPublisher<T, Error> in
guard let self = self else {
return Fail<T, Error>(error: NetworkError.unknown).eraseToAnyPublisher()
}

if self.configuration.refreshTriggerErrors.contains(where: { return $0.reflectedString == error.reflectedString }){
return self.retrySynchronizedTokenRefresh()
.flatMap {
appendTokenAndExecute(accessToken: $0)
}.eraseToAnyPublisher()
}
return Fail<T, Error>(error: error).eraseToAnyPublisher()
}

urlRequest.setValue(self.configuration.authorizationHeaderScheme.rawValue + accessToken, forHTTPHeaderField: "Authorization")

return super.execute(urlRequest: urlRequest)
.catch { [weak self] error -> AnyPublisher<T, Error> in
guard let self = self else {
return Fail<T, Error>(error: NetworkError.unknown).eraseToAnyPublisher()
}

if self.configuration.refreshTriggerErrors.contains(where: { return $0.reflectedString == error.reflectedString }){
self.retrySynchronizedTokenRefresh()

return self.execute(urlRequest: urlRequest)
.delay(for: 0.2, scheduler: self.authenticationQueue)
.eraseToAnyPublisher()
}
return Fail<T, Error>(error: error).eraseToAnyPublisher()
}.eraseToAnyPublisher()
.receive(on: DispatchQueue.main)
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

same here

Copy link
Owner Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

It's a design decision that I took while creating the framework. For the consumer it doesn't change anything actually but I wanted fusion to provide a hassle-free development for the consumer. Therefore all the executions happen on the background thread and the deliveries happen on the main queue.

If at any point a consumer wants to use a different thread, they are free to use subscribe or receive

.eraseToAnyPublisher()
}



override public func execute(urlRequest: URLRequest) -> AnyPublisher<Void, Error> {
var urlRequest = urlRequest
var currentAccessToken: String?

authenticationQueue.sync {
currentAccessToken = self.tokenProvider.accessToken.value
func appendTokenAndExecute(accessToken: AccessToken) -> AnyPublisher<Void, Error> {
urlRequest.setValue(self.configuration.authorizationHeaderScheme.rawValue + accessToken, forHTTPHeaderField: "Authorization")
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

should be deferred

Copy link
Owner Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Consumer is deferred already.

return super.execute(urlRequest: urlRequest)
.subscribe(on: DispatchQueue.global())
.eraseToAnyPublisher()
}

guard let accessToken = currentAccessToken else {
return Fail<Void, Error>(error: NetworkError.unauthorized).eraseToAnyPublisher()
return Deferred {
self.tokenProvider.accessToken
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

deferred can be removed

Copy link
Owner Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@emanuelschmoczer

.compactMap { $0 }
.setFailureType(to: Error.self)
.flatMap { accessToken -> AnyPublisher<Void, Error> in
return appendTokenAndExecute(accessToken: accessToken)
}.eraseToAnyPublisher()
}
.timeout(10, scheduler: DispatchQueue.main, customError: { NetworkError.timeout })
.catch { [weak self] error -> AnyPublisher<Void, Error> in
guard let self = self else {
return Fail<Void, Error>(error: NetworkError.unknown).eraseToAnyPublisher()
}

if self.configuration.refreshTriggerErrors.contains(where: { return $0.reflectedString == error.reflectedString }){
return self.retrySynchronizedTokenRefresh()
.flatMap {
appendTokenAndExecute(accessToken: $0)
Comment on lines +111 to +123
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

you have duplicated calls to appendTokenAndExecute in one function, which I think design issue

Copy link
Owner Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

yes, it looks weird indeed. This was a recursive function before, for the sake of readability and understandability we changed it to this. So the first appending happens when the request is executed for the first time, the second one is if it fails due to a 401. So it decorates the request and fires again. Should we go back to the recursion?

}.eraseToAnyPublisher()
}
return Fail<Void, Error>(error: error).eraseToAnyPublisher()
}

urlRequest.setValue(self.configuration.authorizationHeaderScheme.rawValue + accessToken, forHTTPHeaderField: "Authorization")

return super.execute(urlRequest: urlRequest)
.catch { [weak self] error -> AnyPublisher<Void, Error> in
guard let self = self else {
return Fail<Void, Error>(error: NetworkError.unknown).eraseToAnyPublisher()
}

if self.configuration.refreshTriggerErrors.contains(where: { return $0.reflectedString == error.reflectedString }){
self.retrySynchronizedTokenRefresh()

return self.execute(urlRequest: urlRequest)
.delay(for: 0.2, scheduler: self.authenticationQueue)
.eraseToAnyPublisher()
}
return Fail<Void, Error>(error: error).eraseToAnyPublisher()
}.eraseToAnyPublisher()
.receive(on: DispatchQueue.main)
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

should be responsibility of the consumer

Copy link
Owner Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

It's a design decision that I took while creating the framework. For the consumer it doesn't change anything actually but I wanted fusion to provide a hassle-free development for the consumer. Therefore all the executions happen on the background thread and the deliveries happen on the main queue.

If at any point a consumer wants to use a different thread, they are free to use subscribe or receive

.eraseToAnyPublisher()
}

private func retrySynchronizedTokenRefresh() {
let dispatchGroup = DispatchGroup()
dispatchGroup.enter()

authenticationQueue.sync(flags: .barrier) {
self.tokenProvider.invalidateAccessToken()
self.tokenProvider.reissueAccessToken()
.sink(receiveCompletion: { _ in
dispatchGroup.leave()
},
receiveValue: { _ in })
.store(in: &self.subscriptions)
dispatchGroup.wait()
}
private func retrySynchronizedTokenRefresh() -> AnyPublisher<AccessToken, Error> {
tokenProvider.invalidateAccessToken()
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

this should be deffered

Copy link
Owner Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

the consumer of this publisher is already deferred

return tokenProvider.reissueAccessToken()
.eraseToAnyPublisher()
}
}

Expand Down
9 changes: 6 additions & 3 deletions Sources/WebService/AuthenticatedWebService/AuthenticationTokenProvidable.swift
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -25,10 +25,13 @@
import Combine
import Foundation

public typealias AccessToken = String
public typealias RefreshToken = String

public protocol AuthenticationTokenProvidable: AnyObject {
var accessToken: CurrentValueSubject<String?, Never> { get }
var refreshToken: CurrentValueSubject<String?, Never> { get }
func reissueAccessToken() -> AnyPublisher<Never, Error>
var accessToken: CurrentValueSubject<AccessToken?, Never> { get }
var refreshToken: CurrentValueSubject<RefreshToken?, Never> { get }
func reissueAccessToken() -> AnyPublisher<AccessToken, Error>
func invalidateAccessToken()
func invalidateRefreshToken()
}
28 changes: 18 additions & 10 deletions Sources/WebService/WebService.swift
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -13,7 +13,7 @@
//
// The above copyright notice and this permission notice shall be included in all
// copies or substantial portions of the Software.
//
//
// THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
// IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
// FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
Expand All @@ -35,7 +35,7 @@ CustomDecodable{
public let jsonDecoder: JSONDecoder = JSONDecoder()
private let session: SessionPublisherProtocol
@ThreadSafe open var subscriptions = Set<AnyCancellable>()

public init(urlSession: SessionPublisherProtocol = URLSession(configuration: URLSessionConfiguration.ephemeral,
delegate: nil,
delegateQueue: nil)) {
Expand All @@ -49,9 +49,11 @@ CustomDecodable{
return Fail(error: NetworkError.unknown).eraseToAnyPublisher()
}
return CurrentValueSubject((output.data, httpResponse)).eraseToAnyPublisher()
}.eraseToAnyPublisher()
}
.receive(on: DispatchQueue.main)
.eraseToAnyPublisher()
}

public func execute<T>(urlRequest: URLRequest) -> AnyPublisher<T, Error> where T : Decodable {
Deferred {
Future { [weak self] promise in
Expand All @@ -62,8 +64,9 @@ CustomDecodable{

var urlRequest = urlRequest
urlRequest.appendAdditionalHeaders(headers: self.defaultHttpHeaders)

self.rawResponse(urlRequest: urlRequest)
.subscribe(on: DispatchQueue.global())
.tryMap {
try self.mapHttpResponseCodes(output: $0)

Expand All @@ -80,21 +83,24 @@ CustomDecodable{
receiveValue: { promise(.success($0)) })
.store(in: &self.subscriptions)
}
}.eraseToAnyPublisher()
}
.receive(on: DispatchQueue.main)
.eraseToAnyPublisher()
}

public func execute(urlRequest: URLRequest) -> AnyPublisher<Void, Error> {
Deferred {
Future { [weak self] promise in
guard let self = self else {
promise(.failure(NetworkError.unknown))
return
}

var urlRequest = urlRequest
urlRequest.appendAdditionalHeaders(headers: self.defaultHttpHeaders)

self.rawResponse(urlRequest: urlRequest)
.subscribe(on: DispatchQueue.global())
.tryMap {
try self.mapHttpResponseCodes(output: $0)
return
Expand All @@ -107,7 +113,9 @@ CustomDecodable{
receiveValue: { promise(.success($0)) })
.store(in: &self.subscriptions)
}
}.eraseToAnyPublisher()
}
.receive(on: DispatchQueue.main)
.eraseToAnyPublisher()
}

open func mapHttpResponseCodes(output: (data:Data, response: HTTPURLResponse)) throws {
Expand Down
22 changes: 12 additions & 10 deletions Tests/MockSession.swift
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -35,16 +35,18 @@ open class MockSession: SessionPublisherProtocol {
public func dataTaskPublisher(for urlRequest: URLRequest) -> AnyPublisher<(data: Data, response: URLResponse), Error> {
methodCallStack.append(#function)
finalUrlRequest = urlRequest
return Future<(data: Data, response: URLResponse), Error> { promise in
usleep(20)
if let successResponse = self.result?.0 {
promise(.success((successResponse.0,
HTTPURLResponse(url: URL(string: "foo.com")!,
statusCode: successResponse.1,
httpVersion: nil,
headerFields: nil)!)))
} else if let errorResponse = self.result?.1 {
promise(.failure(NetworkError.urlError(errorResponse)))
return Deferred {
Future<(data: Data, response: URLResponse), Error> { promise in
usleep(20)
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

why do we need this timeout? it doesn't make any sense to me and looks like a system design issue

Copy link
Owner Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I put it just to simulate a slower execution in tests. It has nothing to do with the production code. I wanted to execute them slightly after each other. I guess it can be removed.

if let successResponse = self.result?.0 {
promise(.success((successResponse.0,
HTTPURLResponse(url: URL(string: "foo.com")!,
statusCode: successResponse.1,
httpVersion: nil,
headerFields: nil)!)))
} else if let errorResponse = self.result?.1 {
promise(.failure(NetworkError.urlError(errorResponse)))
}
}
}.eraseToAnyPublisher()
}
Expand Down