Add basic testkit tests for AuthProvider

Author: bigmontz

packages/bolt-connection/src/connection-provider/authentication-provider.js

@@ -33,7 +33,7 @@ export default class AuthenticationProvider {
       await this._getFreshAuthToken()
     }
 
-    if (this._renewableAuthToken.authToken !== connection.authToken || this._isTokenExpired()) {
+    if (this._renewableAuthToken.authToken !== connection.authToken || this._isTokenExpired) {
       return await connection.connect(this._userAgent, this._authToken)
     }
 
@@ -68,7 +68,7 @@ export default class AuthenticationProvider {
   async _getFreshAuthToken () {
     if (this._isTokenExpired) {
       const promise = new Promise((resolve, reject) => {
-        this.scheduleRefresh({
+        this._scheduleRefresh({
           onSuccess: resolve,
           onError: reject
         })

packages/neo4j-driver-deno/lib/bolt-connection/connection-provider/authentication-provider.js

@@ -33,7 +33,7 @@ export default class AuthenticationProvider {
       await this._getFreshAuthToken()
     }
 
-    if (this._renewableAuthToken.authToken !== connection.authToken || this._isTokenExpired()) {
+    if (this._renewableAuthToken.authToken !== connection.authToken || this._isTokenExpired) {
       return await connection.connect(this._userAgent, this._authToken)
     }
 
@@ -68,7 +68,7 @@ export default class AuthenticationProvider {
   async _getFreshAuthToken () {
     if (this._isTokenExpired) {
       const promise = new Promise((resolve, reject) => {
-        this.scheduleRefresh({
+        this._scheduleRefresh({
           onSuccess: resolve,
           onError: reject
         })

packages/neo4j-driver-deno/lib/bolt-connection/connection-provider/connection-provider-direct.js

@@ -61,9 +61,9 @@ export default class DirectConnectionProvider extends PooledConnectionProvider {
     this._log.warn(
       `Direct driver ${this._id} will close connection to ${address} for database '${database}' because of an error ${error.code} '${error.message}'`
     )
-
+    
     this._authenticationProvider.handleError({ connection, code: error.code })
-
+    
     if (error.code === 'Neo.ClientError.Security.AuthorizationExpired') {
       this._connectionPool.apply(address, (conn) => conn.authToken === null)
     }

packages/neo4j-driver/src/index.js

@@ -84,6 +84,22 @@ const {
   urlUtil
 } = internal
 
+function createAuthProvider (authTokenOrProvider) {
+  if (typeof authTokenOrProvider === 'function') {
+    return authTokenOrProvider
+  }
+
+  let authToken = authTokenOrProvider
+  // Sanitize authority token. Nicer error from server when a scheme is set.
+  authToken = authToken ?? {}
+  authToken.scheme = authToken.scheme ?? 'none'
+  return function () {
+    return {
+      authToken
+    }
+  }
+}
+
 /**
  * Construct a new Neo4j Driver. This is your main entry point for this
  * library.
@@ -262,9 +278,7 @@ function driver (url, authToken, config = {}) {
     config.trust = trust
   }
 
-  // Sanitize authority token. Nicer error from server when a scheme is set.
-  authToken = authToken || {}
-  authToken.scheme = authToken.scheme || 'none'
+  const authTokenProvider = createAuthProvider(authToken)
 
   // Use default user agent or user agent specified by user.
   config.userAgent = config.userAgent || USER_AGENT
@@ -286,7 +300,7 @@ function driver (url, authToken, config = {}) {
           config,
           log,
           hostNameResolver,
-          authToken,
+          authTokenProvider,
           address,
           userAgent: config.userAgent,
           routingContext: parsedUrl.query
@@ -303,7 +317,7 @@ function driver (url, authToken, config = {}) {
           id,
           config,
           log,
-          authToken,
+          authTokenProvider,
           address,
           userAgent: config.userAgent
         })

packages/testkit-backend/src/context.js

@@ -12,6 +12,8 @@ export default class Context {
     this._bookmarkSupplierRequests = {}
     this._notifyBookmarksRequests = {}
     this._bookmarksManagers = {}
+    this._authTokenProviders = {}
+    this._authTokenProviderRequests = {}
     this._binder = binder
     this._environmentLogLevel = environmentLogLevel
   }
@@ -161,6 +163,34 @@ export default class Context {
     delete this._bookmarksManagers[id]
   }
 
+  addAuthTokenProvider (authTokenProviderFactory) {
+    this._id++
+    this._authTokenProviders[this._id] = authTokenProviderFactory(this._id)
+    return this._id
+  }
+
+  getAuthTokenProvider (id) {
+    return this._authTokenProviders[id]
+  }
+
+  removeAuthTokenProvider (id) {
+    delete this._authTokenProviders[id]
+  }
+
+  addAuthTokenProviderRequest (resolve, reject) {
+    return this._add(this._authTokenProviderRequests, {
+      resolve, reject
+    })
+  }
+
+  removeAuthTokenProviderRequest (id) {
+    delete this._authTokenProviderRequests[id]
+  }
+
+  getAuthTokenProviderRequest (id) {
+    return this._authTokenProviderRequests[id]
+  }
+
   _add (map, object) {
     this._id++
     map[this._id] = object

packages/testkit-backend/src/cypher-native-binders.js

@@ -253,10 +253,34 @@ export default function CypherNativeBinders (neo4j) {
     throw Error(err)
   }
 
+  function parseAuthToken (authToken) {
+    switch (authToken.scheme) {
+      case 'basic':
+        return neo4j.auth.basic(
+          authToken.principal,
+          authToken.credentials,
+          authToken.realm
+        )
+      case 'kerberos':
+        return neo4j.auth.kerberos(authToken.credentials)
+      case 'bearer':
+        return neo4j.auth.bearer(authToken.credentials)
+      default:
+        return neo4j.auth.custom(
+          authToken.principal,
+          authToken.credentials,
+          authToken.realm,
+          authToken.scheme,
+          authToken.parameters
+        )
+    }
+  }
+
   this.valueResponse = valueResponse
   this.objectToCypher = objectToCypher
   this.objectToNative = objectToNative
   this.objectMemberBitIntToNumber = objectMemberBitIntToNumber
   this.nativeToCypher = nativeToCypher
   this.cypherToNative = cypherToNative
+  this.parseAuthToken = parseAuthToken
 }

packages/testkit-backend/src/feature/common.js

@@ -16,6 +16,7 @@ const features = [
   'Feature:Bolt:4.3',
   'Feature:Bolt:4.4',
   'Feature:Bolt:5.0',
+  'Feature:Bolt:5.1',
   'Feature:Bolt:Patch:UTC',
   'Feature:API:ConnectionAcquisitionTimeout',
   'Feature:API:Driver:GetServerInfo',

packages/testkit-backend/src/request-handlers-rx.js

@@ -21,6 +21,9 @@ export {
   BookmarkManagerClose,
   BookmarksSupplierCompleted,
   BookmarksConsumerCompleted,
+  NewAuthTokenProvider,
+  AuthTokenProviderCompleted,
+  AuthTokenProviderClose,
   StartSubTest
 } from './request-handlers.js'
 

packages/testkit-backend/src/request-handlers.js

@@ -11,34 +11,23 @@ export function isFrontendError (error) {
 export function NewDriver (neo4j, context, data, wire) {
   const {
     uri,
-    authorizationToken: { data: authToken },
+    authorizationToken,
+    authTokenProviderId,
     userAgent,
     resolverRegistered
   } = data
-  let parsedAuthToken = authToken
-  switch (authToken.scheme) {
-    case 'basic':
-      parsedAuthToken = neo4j.auth.basic(
-        authToken.principal,
-        authToken.credentials,
-        authToken.realm
-      )
-      break
-    case 'kerberos':
-      parsedAuthToken = neo4j.auth.kerberos(authToken.credentials)
-      break
-    case 'bearer':
-      parsedAuthToken = neo4j.auth.bearer(authToken.credentials)
-      break
-    default:
-      parsedAuthToken = neo4j.auth.custom(
-        authToken.principal,
-        authToken.credentials,
-        authToken.realm,
-        authToken.scheme,
-        authToken.parameters
-      )
+
+  let parsedAuthToken = null
+
+  if (authorizationToken != null && authTokenProviderId != null) {
+    throw new Error('Can not set authorizationToken and authTokenProviderId')
+  } else if (authorizationToken) {
+    const { data: authToken } = authorizationToken
+    parsedAuthToken = context.binder.parseAuthToken(authToken)
+  } else {
+    parsedAuthToken = context.getAuthTokenProvider(authTokenProviderId)
   }
+
   const resolver = resolverRegistered
     ? address =>
         new Promise((resolve, reject) => {
@@ -491,6 +480,34 @@ export function BookmarksConsumerCompleted (
   notifyBookmarksRequest.resolve()
 }
 
+export function NewAuthTokenProvider (_, context, _data, wire) {
+  const id = context.addAuthTokenProvider(authTokenProviderId => {
+    return () => new Promise((resolve, reject) => {
+      const id = context.addAuthTokenProviderRequest(resolve, reject)
+      wire.writeResponse(responses.AuthTokenProviderRequest({ id, authTokenProviderId }))
+    })
+  })
+
+  wire.writeResponse(responses.AuthTokenProvider({ id }))
+}
+
+export function AuthTokenProviderCompleted (_, context, { requestId, auth }, _wire) {
+  const request = context.getAuthTokenProviderRequest(requestId)
+  const renewableToken = {
+    expectedExpirationTime: auth.data.expiresInMs != null
+      ? new Date(new Date().getUTCMilliseconds() + auth.data.expiresInMs)
+      : undefined,
+    authToken: context.binder.parseAuthToken(auth.data.auth.data)
+  }
+  request.resolve(renewableToken)
+  context.removeAuthTokenProviderRequest(requestId)
+}
+
+export function AuthTokenProviderClose (_, context, { id }, wire) {
+  context.removeAuthTokenProvider(id)
+  wire.writeResponse(responses.AuthTokenProvider({ id }))
+}
+
 export function GetRoutingTable (_, context, { driverId, database }, wire) {
   const driver = context.getDriver(driverId)
   const routingTable =

packages/testkit-backend/src/responses.js

@@ -88,6 +88,14 @@ export function RoutingTable ({ routingTable }) {
   })
 }
 
+export function AuthTokenProvider ({ id }) {
+  return response('AuthTokenProvider', { id })
+}
+
+export function AuthTokenProviderRequest ({ id, authTokenProviderId }) {
+  return response('AuthTokenProviderRequest', { id, authTokenProviderId })
+}
+
 // Testkit controller messages
 export function RunTest () {
   return response('RunTest', null)