PR fixes for OIDC feature branch

katcharov · katcharov · commit 4a844b14cac1 · 2024-04-26T12:54:56.000-06:00
diff --git a/driver-core/src/main/com/mongodb/ConnectionString.java b/driver-core/src/main/com/mongodb/ConnectionString.java
@@ -230,9 +230,9 @@
  * </ul>
  * <p>Authentication configuration:</p>
  * <ul>
- * <li>{@code authMechanism=MONGO-CR|GSSAPI|PLAIN|MONGODB-X509}: The authentication mechanism to use if a credential was supplied.
+ * <li>{@code authMechanism=MONGO-CR|GSSAPI|PLAIN|MONGODB-X509|MONGODB-OIDC}: The authentication mechanism to use if a credential was supplied.
  * The default is unspecified, in which case the client will pick the most secure mechanism available based on the sever version.  For the
- * GSSAPI and MONGODB-X509 mechanisms, no password is accepted, only the username.
+ * GSSAPI, MONGODB-X509, and MONGODB-OIDC mechanisms, no password is accepted, only the username.
  * </li>
  * <li>{@code authSource=string}: The source of the authentication credentials.  This is typically the database that
  * the credentials have been created.  The value defaults to the database specified in the path portion of the connection string.
diff --git a/driver-core/src/main/com/mongodb/internal/Locks.java b/driver-core/src/main/com/mongodb/internal/Locks.java
@@ -54,7 +54,7 @@ public static void withLockAsync(final StampedLock lock, final AsyncRunnable run
         }, callback);
     }
 
-    public static void withLock(final StampedLock lock, final Runnable runnable) {
+    public static void withInterruptibleLock(final StampedLock lock, final Runnable runnable) {
         long stamp;
         try {
             stamp = lock.writeLockInterruptibly();
diff --git a/driver-core/src/main/com/mongodb/internal/connection/OidcAuthenticator.java b/driver-core/src/main/com/mongodb/internal/connection/OidcAuthenticator.java
@@ -126,7 +126,9 @@ protected SaslClient createSaslClient(final ServerAddress serverAddress) {
     @Nullable
     public BsonDocument createSpeculativeAuthenticateCommand(final InternalConnection connection) {
         try {
-            String cachedAccessToken = getCachedAccessToken();
+            String cachedAccessToken = getMongoCredentialWithCache()
+                    .getOidcCacheEntry()
+                    .getCachedAccessToken();
             if (cachedAccessToken != null) {
                 return wrapInSpeculative(prepareTokenAsJwt(cachedAccessToken));
             } else {
@@ -284,7 +286,7 @@ private void authenticationLoopAsync(final InternalConnection connection, final
 
     private byte[] evaluate(final byte[] challenge) {
         byte[][] jwt = new byte[1][];
-        Locks.withLock(getMongoCredentialWithCache().getOidcLock(), () -> {
+        Locks.withInterruptibleLock(getMongoCredentialWithCache().getOidcLock(), () -> {
             OidcCacheEntry oidcCacheEntry = getMongoCredentialWithCache().getOidcCacheEntry();
             String cachedRefreshToken = oidcCacheEntry.getRefreshToken();
             IdpInfo cachedIdpInfo = oidcCacheEntry.getIdpInfo();
@@ -358,7 +360,7 @@ private byte[] evaluate(final byte[] challenge) {
     private String validatedCachedAccessToken() {
         MongoCredentialWithCache mongoCredentialWithCache = getMongoCredentialWithCache();
         OidcCacheEntry cacheEntry = mongoCredentialWithCache.getOidcCacheEntry();
-        String cachedAccessToken = getCachedAccessToken();
+        String cachedAccessToken = cacheEntry.getCachedAccessToken();
         String invalidConnectionAccessToken = connectionLastAccessToken;
 
         if (cachedAccessToken != null) {
@@ -377,7 +379,7 @@ private boolean clientIsComplete() {
 
     private boolean shouldRetryHandler() {
         boolean[] result = new boolean[1];
-        Locks.withLock(getMongoCredentialWithCache().getOidcLock(), () -> {
+        Locks.withInterruptibleLock(getMongoCredentialWithCache().getOidcLock(), () -> {
             MongoCredentialWithCache mongoCredentialWithCache = getMongoCredentialWithCache();
             OidcCacheEntry cacheEntry = mongoCredentialWithCache.getOidcCacheEntry();
             if (fallbackState == FallbackState.PHASE_1_CACHED_TOKEN) {
@@ -402,13 +404,6 @@ private boolean shouldRetryHandler() {
         return result[0];
     }
 
-    @Nullable
-    private String getCachedAccessToken() {
-        return getMongoCredentialWithCache()
-                .getOidcCacheEntry()
-                .getCachedAccessToken();
-    }
-
     static final class OidcCacheEntry {
         @Nullable
         private final String accessToken;

Original file line number	Diff line number	Diff line change
`@@ -54,7 +54,7 @@ public static void withLockAsync(final StampedLock lock, final AsyncRunnable run`
`54`	`54`	`}, callback);`
`55`	`55`	`}`
`56`	`56`
`57`		`- public static void withLock(final StampedLock lock, final Runnable runnable) {`
	`57`	`+ public static void withInterruptibleLock(final StampedLock lock, final Runnable runnable) {`
`58`	`58`	`long stamp;`
`59`	`59`	`try {`
`60`	`60`	`stamp = lock.writeLockInterruptibly();`