Add in getHttpAuthenticationService to GrpcAuthenticationProvider

[dapowers87]

Signed-off-by: David Powers ddpowers@amazon.com

Description

Create an optional plugin to get an HTTP Auth service for the GRPC Auth Provider

Check List

• New functionality includes testing.
• New functionality has been documented.
  • New functionality has javadoc added
• Commits are signed with a real name per the DCO

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.
For more information on following Developer Certificate of Origin and signing off your commits, please check here.

[dlvenable]

This will throw an exception when the Optional is empty. This code should be refactored to check that the Optional is present. And only if it is add it to the service builder.

[dlvenable]

Can we add tests for this code?

[dlvenable]

Please add a simple unit test to verify the default behavior.

[dlvenable]

Please be sure to include the unit test here. You can use a mock which calls actual methods to verify the behavior.

[dlvenable]

We may wish to clarify this. This service is to intercept the HTTP request as part of performing gRPC authentication. Perhaps:

Allows implementors to provide an {@link HttpService} to either intercept the HTTP request prior to validation, or to perform validation on the HTTP request. This may be optional, in which case it is not used.

[dlvenable]

Please make a similar change in the otel_metrics_source.

[codecov-commenter]

Codecov Report

Merging #1529 (bc6219d) into main (96ab0f7) will not change coverage.
The diff coverage is n/a.

@@            Coverage Diff            @@
##               main    #1529   +/-   ##
=========================================
  Coverage     94.18%   94.18%           
  Complexity     1181     1181           
=========================================
  Files           165      165           
  Lines          3386     3386           
  Branches        277      277           
=========================================
  Hits           3189     3189           
  Misses          141      141           
  Partials         56       56           

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 96ab0f7...bc6219d. Read the comment docs.

[dlvenable]

This try-catch block only needs to be around the SOURCE.start(buffer) call. It will make it more understand if you tighten it to only be there.

when(server.stop()).thenReturn(completableFuture);

try(MockedStatic<Server> armeriaServerMock = ...) {
  armeriaServerMock.when(Server::builder).thenReturn(serverBuilder);
  SOURCE.start(buffer);
}

verify(serverBuilder, never()).service(isA(GrpcService.class), isA(Function.class));
verify(serverBuilder).service(isA(GrpcService.class));

[dlvenable]

This is a good test. Please also add one that verifies the opposite when the Optional is not empty.

verify(serverBuilder).service(isA(GrpcService.class), isA(Function.class));
verify(serverBuilder, never()).service(isA(GrpcService.class));

[dlvenable]

Please be sure to include the unit test here. You can use a mock which calls actual methods to verify the behavior.

[dlvenable]

We are generally preferring Hamcrest matchers. But, I'm fine with this.

e.g.

assertThat(provider.getHttpAuthenticationService(), notNullValue());

[dapowers87]

Noted going forward ✅

[dlvenable]

This should be extracted into a variable and re-used. Otherwise you are "testing" twice.

Optional<Function<? super HttpService, ? extends HttpService>> actualHttpService = provider.getHttpAuthenticationService());

Personally I'm also fine using var here. But, I know that can be contentious.

var actualHttpService = provider.getHttpAuthenticationService());

[dapowers87]

I'm all for var!

[dlvenable]

Thanks for making these improvements to the authentication support and the code!