From 54b576378fb0488b124b7691b205b098dc106455 Mon Sep 17 00:00:00 2001 From: "Justin \"J.R.\" Hill" Date: Sat, 16 Sep 2023 03:35:48 +0900 Subject: [PATCH 01/22] feat(java-sdk): Add OpenFgaClient --- .openapi-generator/FILES | 5 + .../sdk/api/client/ListStoresOptions.java | 36 +++ .../openfga/sdk/api/client/OpenFgaClient.java | 283 ++++++++++++++++++ .../ReadAuthorizationModelsOptions.java | 36 +++ .../sdk/api/client/ReadChangesOptions.java | 46 +++ .../configuration/ClientConfiguration.java | 94 ++++++ .../sdk/api/configuration/Configuration.java | 15 - .../sdk/api/OpenFgaApiIntegrationTest.java | 2 +- .../sdk/api/auth/OAuth2ClientTest.java | 7 +- .../api/configuration/ConfigurationTest.java | 14 +- 10 files changed, 512 insertions(+), 26 deletions(-) create mode 100644 src/main/java/dev/openfga/sdk/api/client/ListStoresOptions.java create mode 100644 src/main/java/dev/openfga/sdk/api/client/OpenFgaClient.java create mode 100644 src/main/java/dev/openfga/sdk/api/client/ReadAuthorizationModelsOptions.java create mode 100644 src/main/java/dev/openfga/sdk/api/client/ReadChangesOptions.java create mode 100644 src/main/java/dev/openfga/sdk/api/configuration/ClientConfiguration.java diff --git a/.openapi-generator/FILES b/.openapi-generator/FILES index 4a6526e..597e909 100644 --- a/.openapi-generator/FILES +++ b/.openapi-generator/FILES @@ -82,8 +82,13 @@ src/main/java/dev/openfga/sdk/api/auth/CredentialsFlowResponse.java src/main/java/dev/openfga/sdk/api/auth/OAuth2Client.java src/main/java/dev/openfga/sdk/api/client/ApiClient.java src/main/java/dev/openfga/sdk/api/client/ApiResponse.java +src/main/java/dev/openfga/sdk/api/client/ListStoresOptions.java +src/main/java/dev/openfga/sdk/api/client/OpenFgaClient.java +src/main/java/dev/openfga/sdk/api/client/ReadAuthorizationModelsOptions.java +src/main/java/dev/openfga/sdk/api/client/ReadChangesOptions.java src/main/java/dev/openfga/sdk/api/configuration/ApiToken.java src/main/java/dev/openfga/sdk/api/configuration/BaseConfiguration.java +src/main/java/dev/openfga/sdk/api/configuration/ClientConfiguration.java src/main/java/dev/openfga/sdk/api/configuration/ClientCredentials.java src/main/java/dev/openfga/sdk/api/configuration/Configuration.java src/main/java/dev/openfga/sdk/api/configuration/ConfigurationOverride.java diff --git a/src/main/java/dev/openfga/sdk/api/client/ListStoresOptions.java b/src/main/java/dev/openfga/sdk/api/client/ListStoresOptions.java new file mode 100644 index 0000000..2716fcc --- /dev/null +++ b/src/main/java/dev/openfga/sdk/api/client/ListStoresOptions.java @@ -0,0 +1,36 @@ +/* + * OpenFGA + * A high performance and flexible authorization/permission engine built for developers and inspired by Google Zanzibar. + * + * The version of the OpenAPI document: 0.1 + * Contact: community@openfga.dev + * + * NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech). + * https://openapi-generator.tech + * Do not edit the class manually. + */ + +package dev.openfga.sdk.api.client; + +public class ListStoresOptions { + private Integer pageSize; + private String continuationToken; + + public ListStoresOptions pageSize(Integer pageSize) { + this.pageSize = pageSize; + return this; + } + + public Integer getPageSize() { + return pageSize; + } + + public ListStoresOptions continuationToken(String continuationToken) { + this.continuationToken = continuationToken; + return this; + } + + public String getContinuationToken() { + return continuationToken; + } +} diff --git a/src/main/java/dev/openfga/sdk/api/client/OpenFgaClient.java b/src/main/java/dev/openfga/sdk/api/client/OpenFgaClient.java new file mode 100644 index 0000000..9f798d5 --- /dev/null +++ b/src/main/java/dev/openfga/sdk/api/client/OpenFgaClient.java @@ -0,0 +1,283 @@ +/* + * OpenFGA + * A high performance and flexible authorization/permission engine built for developers and inspired by Google Zanzibar. + * + * The version of the OpenAPI document: 0.1 + * Contact: community@openfga.dev + * + * NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech). + * https://openapi-generator.tech + * Do not edit the class manually. + */ + +package dev.openfga.sdk.api.client; + +import static dev.openfga.sdk.util.StringUtil.isNullOrWhitespace; + +import dev.openfga.sdk.api.*; +import dev.openfga.sdk.api.configuration.*; +import dev.openfga.sdk.api.model.*; +import dev.openfga.sdk.errors.*; +import java.util.concurrent.CompletableFuture; + +public class OpenFgaClient { + private final ClientConfiguration configuration; + private final OpenFgaApi api; + + private static final String CLIENT_BULK_REQUEST_ID_HEADER = "X-OpenFGA-Client-Bulk-Request-Id"; + private static final String CLIENT_METHOD_HEADER = "X-OpenFGA-Client-Method"; + private static final int DEFAULT_MAX_METHOD_PARALLEL_REQS = 10; + + public OpenFgaClient(ApiClient apiClient, ClientConfiguration configuration) throws FgaInvalidParameterException { + this.configuration = configuration; + this.api = new OpenFgaApi(apiClient, configuration); + } + + /* *********** + * Utilities * + *************/ + + public void setStoreId(String storeId) { + configuration.storeId(storeId); + } + + public void setAuthorizationModelId(String authorizationModelId) { + configuration.authorizationModelId(authorizationModelId); + } + + /* ******** + * Stores * + **********/ + + /** + * ListStores - Get a paginated list of stores. + */ + public CompletableFuture listStores() throws FgaInvalidParameterException, ApiException { + return api.listStores(null, null); + } + + public CompletableFuture listStores(ListStoresOptions options) + throws FgaInvalidParameterException, ApiException { + return api.listStores(options.getPageSize(), options.getContinuationToken()); + } + + /** + * CreateStore - Initialize a store + */ + public CompletableFuture createStore(CreateStoreRequest request) + throws FgaInvalidParameterException, ApiException { + return api.createStore(request); + } + + /** + * GetStore - Get information about the current store. + * + * @throws FgaInvalidParameterException When the Store ID is null, empty, or whitespace + */ + public CompletableFuture getStore() throws FgaInvalidParameterException, ApiException { + String storeId = configuration.getStoreIdChecked(); + return api.getStore(storeId); + } + + /** + * DeleteStore - Delete a store + * + * @throws FgaInvalidParameterException When the Store ID is null, empty, or whitespace + */ + public CompletableFuture deleteStore() throws FgaInvalidParameterException, ApiException { + String storeId = configuration.getStoreIdChecked(); + return api.deleteStore(storeId); + } + + /* ********************** + * Authorization Models * + ************************/ + + /** + * ReadAuthorizationModels - Read all authorization models + * + * @throws FgaInvalidParameterException When the Store ID is null, empty, or whitespace + */ + public CompletableFuture ReadAuthorizationModels( + ReadAuthorizationModelsOptions options) throws FgaInvalidParameterException, ApiException { + String storeId = configuration.getStoreIdChecked(); + return api.readAuthorizationModels(storeId, options.getPageSize(), options.getContinuationToken()); + } + + /** + * WriteAuthorizationModel - Create a new version of the authorization model + * + * @throws FgaInvalidParameterException When the Store ID is null, empty, or whitespace + */ + public CompletableFuture writeAuthorizationModel( + WriteAuthorizationModelRequest request) throws FgaInvalidParameterException, ApiException { + String storeId = configuration.getStoreIdChecked(); + return api.writeAuthorizationModel(storeId, request); + } + + /** + * ReadAuthorizationModel - Read the current authorization model + * + * @throws FgaInvalidParameterException When either the Store ID or Authorization Model ID are null, empty, or whitespace + */ + public CompletableFuture readAuthorizationModel() + throws FgaInvalidParameterException, ApiException { + String storeId = configuration.getStoreIdChecked(); + String authorizationModelId = configuration.getAuthorizationModelIdChecked(); + return api.readAuthorizationModel(storeId, authorizationModelId); + } + + /** + * ReadLatestAuthorizationModel - Read the latest authorization model for the current store + * + * @throws FgaInvalidParameterException When the Store ID is null, empty, or whitespace + */ + public CompletableFuture readLatestAuthorizationModel() + throws FgaInvalidParameterException, ApiException { + String storeId = configuration.getStoreIdChecked(); + return api.readAuthorizationModels(storeId, 1, null).thenApply(response -> new ReadAuthorizationModelResponse() + .authorizationModel(response.getAuthorizationModels().get(0))); + } + + /* ********************* + * Relationship Tuples * + ***********************/ + + /** + * Read Changes - Read the list of historical relationship tuple writes and deletes + * + * @throws FgaInvalidParameterException When the Store ID is null, empty, or whitespace + */ + public CompletableFuture ReadChanges(ReadChangesOptions options) + throws FgaInvalidParameterException, ApiException { + String storeId = configuration.getStoreIdChecked(); + return api.readChanges(storeId, options.getType(), options.getPageSize(), options.getContinuationToken()); + } + + /** + * Read - Read tuples previously written to the store (does not evaluate) + * + * @throws FgaInvalidParameterException When the Store ID is null, empty, or whitespace + */ + public CompletableFuture read(ReadRequest body) throws FgaInvalidParameterException, ApiException { + String storeId = configuration.getStoreIdChecked(); + return api.read(storeId, body); + } + + /** + * Write - Create or delete relationship tuples + * + * @throws FgaInvalidParameterException When the Store ID is null, empty, or whitespace + */ + public CompletableFuture write(WriteRequest request) throws FgaInvalidParameterException, ApiException { + String storeId = configuration.getStoreIdChecked(); + return api.write(storeId, request); + } + + /** + * WriteTuples - Utility method to write tuples, wraps Write + * + * @throws FgaInvalidParameterException When the Store ID is null, empty, or whitespace + */ + public CompletableFuture writeTuples(TupleKeys tupleKeys) + throws FgaInvalidParameterException, ApiException { + var request = new WriteRequest().writes(tupleKeys); + String storeId = configuration.getStoreIdChecked(); + String authorizationModelId = configuration.getAuthorizationModelId(); + if (!isNullOrWhitespace(authorizationModelId)) { + request.authorizationModelId(authorizationModelId); + } + return api.write(storeId, request); + } + + /** + * DeleteTuples - Utility method to delete tuples, wraps Write + * + * @throws FgaInvalidParameterException When the Store ID is null, empty, or whitespace + */ + public CompletableFuture deleteTuples(TupleKeys tupleKeys) + throws FgaInvalidParameterException, ApiException { + var request = new WriteRequest().deletes(tupleKeys); + String storeId = configuration.getStoreIdChecked(); + String authorizationModelId = configuration.getAuthorizationModelId(); + if (!isNullOrWhitespace(authorizationModelId)) { + request.authorizationModelId(authorizationModelId); + } + return api.write(storeId, request); + } + + /* ********************** + * Relationship Queries * + ***********************/ + + /** + * Check - Check if a user has a particular relation with an object (evaluates) + * + * @throws FgaInvalidParameterException When the Store ID is null, empty, or whitespace + */ + public CompletableFuture check(CheckRequest request) + throws FgaInvalidParameterException, ApiException { + String storeId = configuration.getStoreIdChecked(); + return api.check(storeId, request); + } + + /* + * BatchCheck - Run a set of checks (evaluates) + */ + // TODO + + /** + * Expand - Expands the relationships in userset tree format (evaluates) + * + * @throws FgaInvalidParameterException When the Store ID is null, empty, or whitespace + */ + public CompletableFuture expand(ExpandRequest request) + throws FgaInvalidParameterException, ApiException { + String storeId = configuration.getStoreIdChecked(); + return api.expand(storeId, request); + } + + /** + * ListObjects - List the objects of a particular type that the user has a certain relation to (evaluates) + * + * @throws FgaInvalidParameterException When the Store ID is null, empty, or whitespace + */ + public CompletableFuture listObjects(ListObjectsRequest request) + throws FgaInvalidParameterException, ApiException { + String storeId = configuration.getStoreIdChecked(); + return api.listObjects(storeId, request); + } + + /* + * ListRelations - List all the relations a user has with an object (evaluates) + */ + // TODO + + /* ************ + * Assertions * + **************/ + + /** + * ReadAssertions - Read assertions for a particular authorization model + * + * @throws FgaInvalidParameterException When either the Store ID or Authorization Model ID is null, empty, or whitespace + */ + public CompletableFuture readAssertions() + throws FgaInvalidParameterException, ApiException { + String storeId = configuration.getStoreIdChecked(); + String authorizationModelId = configuration.getAuthorizationModelIdChecked(); + return api.readAssertions(storeId, authorizationModelId); + } + + /** + * WriteAssertions - Updates assertions for a particular authorization model + * + * @throws FgaInvalidParameterException When either the Store ID or Authorization Model ID is null, empty, or whitespace + */ + public CompletableFuture writeAssertions(WriteAssertionsRequest request) + throws FgaInvalidParameterException, ApiException { + String storeId = configuration.getStoreIdChecked(); + String authorizationModelId = configuration.getAuthorizationModelIdChecked(); + return api.writeAssertions(storeId, authorizationModelId, request); + } +} diff --git a/src/main/java/dev/openfga/sdk/api/client/ReadAuthorizationModelsOptions.java b/src/main/java/dev/openfga/sdk/api/client/ReadAuthorizationModelsOptions.java new file mode 100644 index 0000000..3479f6b --- /dev/null +++ b/src/main/java/dev/openfga/sdk/api/client/ReadAuthorizationModelsOptions.java @@ -0,0 +1,36 @@ +/* + * OpenFGA + * A high performance and flexible authorization/permission engine built for developers and inspired by Google Zanzibar. + * + * The version of the OpenAPI document: 0.1 + * Contact: community@openfga.dev + * + * NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech). + * https://openapi-generator.tech + * Do not edit the class manually. + */ + +package dev.openfga.sdk.api.client; + +public class ReadAuthorizationModelsOptions { + private Integer pageSize; + private String continuationToken; + + public ReadAuthorizationModelsOptions pageSize(Integer pageSize) { + this.pageSize = pageSize; + return this; + } + + public Integer getPageSize() { + return pageSize; + } + + public ReadAuthorizationModelsOptions continuationToken(String continuationToken) { + this.continuationToken = continuationToken; + return this; + } + + public String getContinuationToken() { + return continuationToken; + } +} diff --git a/src/main/java/dev/openfga/sdk/api/client/ReadChangesOptions.java b/src/main/java/dev/openfga/sdk/api/client/ReadChangesOptions.java new file mode 100644 index 0000000..bf1b403 --- /dev/null +++ b/src/main/java/dev/openfga/sdk/api/client/ReadChangesOptions.java @@ -0,0 +1,46 @@ +/* + * OpenFGA + * A high performance and flexible authorization/permission engine built for developers and inspired by Google Zanzibar. + * + * The version of the OpenAPI document: 0.1 + * Contact: community@openfga.dev + * + * NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech). + * https://openapi-generator.tech + * Do not edit the class manually. + */ + +package dev.openfga.sdk.api.client; + +public class ReadChangesOptions { + private String type; + private Integer pageSize; + private String continuationToken; + + public ReadChangesOptions type(String type) { + this.type = type; + return this; + } + + public String getType() { + return type; + } + + public ReadChangesOptions pageSize(Integer pageSize) { + this.pageSize = pageSize; + return this; + } + + public Integer getPageSize() { + return pageSize; + } + + public ReadChangesOptions continuationToken(String continuationToken) { + this.continuationToken = continuationToken; + return this; + } + + public String getContinuationToken() { + return continuationToken; + } +} diff --git a/src/main/java/dev/openfga/sdk/api/configuration/ClientConfiguration.java b/src/main/java/dev/openfga/sdk/api/configuration/ClientConfiguration.java new file mode 100644 index 0000000..1187dcb --- /dev/null +++ b/src/main/java/dev/openfga/sdk/api/configuration/ClientConfiguration.java @@ -0,0 +1,94 @@ +/* + * OpenFGA + * A high performance and flexible authorization/permission engine built for developers and inspired by Google Zanzibar. + * + * The version of the OpenAPI document: 0.1 + * Contact: community@openfga.dev + * + * NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech). + * https://openapi-generator.tech + * Do not edit the class manually. + */ + +package dev.openfga.sdk.api.configuration; + +import static dev.openfga.sdk.util.StringUtil.isNullOrWhitespace; + +import dev.openfga.sdk.errors.FgaInvalidParameterException; + +public class ClientConfiguration extends Configuration { + private String storeId; + private String authorizationModelId; + + public void assertValidStoreId() throws FgaInvalidParameterException { + if (isNullOrWhitespace(storeId)) { + throw new FgaInvalidParameterException("storeId", "ClientConfiguration"); + } + } + + /** + * Set the Store ID. + * + * @param storeId The URL. + * @return This object. + */ + public Configuration storeId(String storeId) { + this.storeId = storeId; + return this; + } + + /** + * Get the Authorization Model ID. + * + * @return The Authorization Model ID. + */ + public String getStoreId() { + return storeId; + } + + /** + * Get the Store ID. + * + * @return The Store ID. + * @throws FgaInvalidParameterException when the Store ID is null, empty, or whitespace + */ + public String getStoreIdChecked() throws FgaInvalidParameterException { + if (isNullOrWhitespace(storeId)) { + throw new FgaInvalidParameterException("storeId", "ClientConfiguration"); + } + return storeId; + } + + /** + * Set the Authorization Model ID. + * + * @param authorizationModelId The URL. + * @return This object. + */ + public Configuration authorizationModelId(String authorizationModelId) { + this.authorizationModelId = authorizationModelId; + return this; + } + + /** + * Get the Authorization Model ID. + * + * @return The Authorization Model ID. + */ + public String getAuthorizationModelId() { + return authorizationModelId; + } + + /** + * Get the Authorization Model ID. + * + * @return The Authorization Model ID. + * @throws FgaInvalidParameterException when the Authorization Model ID is null, empty, or whitespace + */ + public String getAuthorizationModelIdChecked() throws FgaInvalidParameterException { + if (isNullOrWhitespace(authorizationModelId)) { + throw new FgaInvalidParameterException("authorizationModelId", "ClientConfiguration"); + } + return authorizationModelId; + } +} diff --git a/src/main/java/dev/openfga/sdk/api/configuration/Configuration.java b/src/main/java/dev/openfga/sdk/api/configuration/Configuration.java index feeb8a9..3e4e910 100644 --- a/src/main/java/dev/openfga/sdk/api/configuration/Configuration.java +++ b/src/main/java/dev/openfga/sdk/api/configuration/Configuration.java @@ -47,21 +47,6 @@ public Configuration() { this.connectTimeout = DEFAULT_CONNECT_TIMEOUT; } - public Configuration(String apiUrl) { - this.apiUrl = apiUrl; - this.userAgent = DEFAULT_USER_AGENT; - this.readTimeout = DEFAULT_READ_TIMEOUT; - this.connectTimeout = DEFAULT_CONNECT_TIMEOUT; - } - - public Configuration(String apiUrl, Credentials credentials) { - this.apiUrl = apiUrl; - this.credentials = credentials; - this.userAgent = DEFAULT_USER_AGENT; - this.readTimeout = DEFAULT_READ_TIMEOUT; - this.connectTimeout = DEFAULT_CONNECT_TIMEOUT; - } - /** * Assert that the configuration is valid. */ diff --git a/src/test-integration/java/dev/openfga/sdk/api/OpenFgaApiIntegrationTest.java b/src/test-integration/java/dev/openfga/sdk/api/OpenFgaApiIntegrationTest.java index 3cc1196..53911eb 100644 --- a/src/test-integration/java/dev/openfga/sdk/api/OpenFgaApiIntegrationTest.java +++ b/src/test-integration/java/dev/openfga/sdk/api/OpenFgaApiIntegrationTest.java @@ -38,7 +38,7 @@ public class OpenFgaApiIntegrationTest { @BeforeEach public void initializeApi() throws Exception { - Configuration apiConfig = new Configuration("http://localhost:8080"); + Configuration apiConfig = new Configuration().apiUrl("http://localhost:8080"); ApiClient apiClient = new ApiClient(HttpClient.newBuilder(), mapper); api = new OpenFgaApi(apiClient, apiConfig); } diff --git a/src/test/java/dev/openfga/sdk/api/auth/OAuth2ClientTest.java b/src/test/java/dev/openfga/sdk/api/auth/OAuth2ClientTest.java index a311150..8819c66 100644 --- a/src/test/java/dev/openfga/sdk/api/auth/OAuth2ClientTest.java +++ b/src/test/java/dev/openfga/sdk/api/auth/OAuth2ClientTest.java @@ -22,20 +22,21 @@ class OAuth2ClientTest { private final ObjectMapper mapper = new ObjectMapper(); private HttpClientMock mockHttpClient; - private Credentials credentials; private OAuth2Client oAuth2; @BeforeEach public void setup() throws FgaInvalidParameterException { mockHttpClient = new HttpClientMock(); - credentials = new Credentials(new ClientCredentials() + var credentials = new Credentials(new ClientCredentials() .clientId(CLIENT_ID) .clientSecret(CLIENT_SECRET) .apiAudience(AUDIENCE) .apiTokenIssuer(API_TOKEN_ISSUER)); - oAuth2 = new OAuth2Client(new Configuration("", credentials), mockHttpClient, mapper); + var configuration = new Configuration().apiUrl("").credentials(credentials); + + oAuth2 = new OAuth2Client(configuration, mockHttpClient, mapper); } @Test diff --git a/src/test/java/dev/openfga/sdk/api/configuration/ConfigurationTest.java b/src/test/java/dev/openfga/sdk/api/configuration/ConfigurationTest.java index 40ba83a..4a6428c 100644 --- a/src/test/java/dev/openfga/sdk/api/configuration/ConfigurationTest.java +++ b/src/test/java/dev/openfga/sdk/api/configuration/ConfigurationTest.java @@ -28,7 +28,7 @@ class ConfigurationTest { void apiUrl_nullDefaults() throws FgaInvalidParameterException { // Given String apiUrl = null; - var config = new Configuration(apiUrl); + var config = new Configuration().apiUrl(apiUrl); // When config.assertValid(); @@ -41,7 +41,7 @@ void apiUrl_nullDefaults() throws FgaInvalidParameterException { void apiUrl_emptyStringDefaults() throws FgaInvalidParameterException { // Given String apiUrl = ""; - var config = new Configuration(apiUrl); + var config = new Configuration().apiUrl(apiUrl); // When config.assertValid(); @@ -54,7 +54,7 @@ void apiUrl_emptyStringDefaults() throws FgaInvalidParameterException { void apiUrl_whitespaceStringDefaults() throws FgaInvalidParameterException { // Given String apiUrl = " \t\r\n"; - var config = new Configuration(apiUrl); + var config = new Configuration().apiUrl(apiUrl); // When config.assertValid(); @@ -70,7 +70,7 @@ void apiUrl_stringNoProtocolFails() { // When FgaInvalidParameterException e = assertThrows(FgaInvalidParameterException.class, () -> { - var config = new Configuration(apiUrl); + var config = new Configuration().apiUrl(apiUrl); config.assertValid(); }); @@ -85,7 +85,7 @@ void apiUrl_stringInvalidProtocolFails() { // When FgaInvalidParameterException e = assertThrows(FgaInvalidParameterException.class, () -> { - var config = new Configuration(apiUrl); + var config = new Configuration().apiUrl(apiUrl); config.assertValid(); }); @@ -100,7 +100,7 @@ void apiUrl_stringNoHostFails() { // When FgaInvalidParameterException e = assertThrows(FgaInvalidParameterException.class, () -> { - var config = new Configuration(apiUrl); + var config = new Configuration().apiUrl(apiUrl); config.assertValid(); }); @@ -115,7 +115,7 @@ void apiUrl_stringBadPortFails() { // When FgaInvalidParameterException e = assertThrows(FgaInvalidParameterException.class, () -> { - var config = new Configuration(apiUrl); + var config = new Configuration().apiUrl(apiUrl); config.assertValid(); }); From ebf9b403f253f3c5748ff8c20176ed80b3e85f25 Mon Sep 17 00:00:00 2001 From: "Justin \"J.R.\" Hill" Date: Thu, 21 Sep 2023 15:16:22 -0700 Subject: [PATCH 02/22] refactor: Simplify OpenFgaClient method signatures --- .openapi-generator/FILES | 1 + .../java/dev/openfga/sdk/api/OpenFgaApi.java | 7 +- .../openfga/sdk/api/client/OpenFgaClient.java | 139 +++++++++++------- src/test-integration/java/package-info.java | 9 ++ 4 files changed, 104 insertions(+), 52 deletions(-) create mode 100644 src/test-integration/java/package-info.java diff --git a/.openapi-generator/FILES b/.openapi-generator/FILES index 597e909..09b50f9 100644 --- a/.openapi-generator/FILES +++ b/.openapi-generator/FILES @@ -154,6 +154,7 @@ src/main/java/dev/openfga/sdk/errors/FgaInvalidParameterException.java src/main/java/dev/openfga/sdk/util/Pair.java src/main/java/dev/openfga/sdk/util/StringUtil.java src/test-integration/java/dev/openfga/sdk/api/OpenFgaApiIntegrationTest.java +src/test-integration/java/package-info.java src/test/java/dev/openfga/sdk/api/OpenFgaApiTest.java src/test/java/dev/openfga/sdk/api/OpenFgaApiTest.java src/test/java/dev/openfga/sdk/api/auth/OAuth2ClientTest.java diff --git a/src/main/java/dev/openfga/sdk/api/OpenFgaApi.java b/src/main/java/dev/openfga/sdk/api/OpenFgaApi.java index 1b27e63..c4f2e25 100644 --- a/src/main/java/dev/openfga/sdk/api/OpenFgaApi.java +++ b/src/main/java/dev/openfga/sdk/api/OpenFgaApi.java @@ -52,6 +52,11 @@ import java.util.concurrent.CompletableFuture; import java.util.function.Consumer; +/** + * A low-level API representation of an OpenFGA server. + *

+ * Most code should favor the simpler and higher-level {@link OpenFgaClient} when calling an OpenFGA server. + */ public class OpenFgaApi { private final HttpClient memberVarHttpClient; private final ObjectMapper memberVarObjectMapper; @@ -61,8 +66,6 @@ public class OpenFgaApi { private final Consumer> memberVarResponseInterceptor; private final Consumer> memberVarAsyncResponseInterceptor; - // TODO: In every request, get access token, (Assuming plain access token, or OAuth2 CredentialsMethod) - public OpenFgaApi(ApiClient apiClient, Configuration configuration) throws FgaInvalidParameterException { memberVarHttpClient = apiClient.getHttpClient(); memberVarObjectMapper = apiClient.getObjectMapper(); diff --git a/src/main/java/dev/openfga/sdk/api/client/OpenFgaClient.java b/src/main/java/dev/openfga/sdk/api/client/OpenFgaClient.java index 9f798d5..3dc09fa 100644 --- a/src/main/java/dev/openfga/sdk/api/client/OpenFgaClient.java +++ b/src/main/java/dev/openfga/sdk/api/client/OpenFgaClient.java @@ -52,31 +52,34 @@ public void setAuthorizationModelId(String authorizationModelId) { /** * ListStores - Get a paginated list of stores. */ - public CompletableFuture listStores() throws FgaInvalidParameterException, ApiException { - return api.listStores(null, null); + public CompletableFuture listStores() throws FgaInvalidParameterException { + configuration.assertValid(); + return call(() -> api.listStores(null, null)); } public CompletableFuture listStores(ListStoresOptions options) - throws FgaInvalidParameterException, ApiException { - return api.listStores(options.getPageSize(), options.getContinuationToken()); + throws FgaInvalidParameterException { + configuration.assertValid(); + return call(() -> api.listStores(options.getPageSize(), options.getContinuationToken())); } /** * CreateStore - Initialize a store */ public CompletableFuture createStore(CreateStoreRequest request) - throws FgaInvalidParameterException, ApiException { - return api.createStore(request); + throws FgaInvalidParameterException { + configuration.assertValid(); + return call(() -> api.createStore(request)); } /** * GetStore - Get information about the current store. - * * @throws FgaInvalidParameterException When the Store ID is null, empty, or whitespace */ - public CompletableFuture getStore() throws FgaInvalidParameterException, ApiException { + public CompletableFuture getStore() throws FgaInvalidParameterException { + configuration.assertValid(); String storeId = configuration.getStoreIdChecked(); - return api.getStore(storeId); + return call(() -> api.getStore(storeId)); } /** @@ -84,9 +87,10 @@ public CompletableFuture getStore() throws FgaInvalidParameter * * @throws FgaInvalidParameterException When the Store ID is null, empty, or whitespace */ - public CompletableFuture deleteStore() throws FgaInvalidParameterException, ApiException { + public CompletableFuture deleteStore() throws FgaInvalidParameterException { + configuration.assertValid(); String storeId = configuration.getStoreIdChecked(); - return api.deleteStore(storeId); + return call(() -> api.deleteStore(storeId)); } /* ********************** @@ -98,10 +102,11 @@ public CompletableFuture deleteStore() throws FgaInvalidParameterException * * @throws FgaInvalidParameterException When the Store ID is null, empty, or whitespace */ - public CompletableFuture ReadAuthorizationModels( - ReadAuthorizationModelsOptions options) throws FgaInvalidParameterException, ApiException { + public CompletableFuture readAuthorizationModels( + ReadAuthorizationModelsOptions options) throws FgaInvalidParameterException { + configuration.assertValid(); String storeId = configuration.getStoreIdChecked(); - return api.readAuthorizationModels(storeId, options.getPageSize(), options.getContinuationToken()); + return call(() -> api.readAuthorizationModels(storeId, options.getPageSize(), options.getContinuationToken())); } /** @@ -110,9 +115,10 @@ public CompletableFuture ReadAuthorizationModel * @throws FgaInvalidParameterException When the Store ID is null, empty, or whitespace */ public CompletableFuture writeAuthorizationModel( - WriteAuthorizationModelRequest request) throws FgaInvalidParameterException, ApiException { + WriteAuthorizationModelRequest request) throws FgaInvalidParameterException { + configuration.assertValid(); String storeId = configuration.getStoreIdChecked(); - return api.writeAuthorizationModel(storeId, request); + return call(() -> api.writeAuthorizationModel(storeId, request)); } /** @@ -121,10 +127,11 @@ public CompletableFuture writeAuthorizationMode * @throws FgaInvalidParameterException When either the Store ID or Authorization Model ID are null, empty, or whitespace */ public CompletableFuture readAuthorizationModel() - throws FgaInvalidParameterException, ApiException { + throws FgaInvalidParameterException { + configuration.assertValid(); String storeId = configuration.getStoreIdChecked(); String authorizationModelId = configuration.getAuthorizationModelIdChecked(); - return api.readAuthorizationModel(storeId, authorizationModelId); + return call(() -> api.readAuthorizationModel(storeId, authorizationModelId)); } /** @@ -133,10 +140,12 @@ public CompletableFuture readAuthorizationModel( * @throws FgaInvalidParameterException When the Store ID is null, empty, or whitespace */ public CompletableFuture readLatestAuthorizationModel() - throws FgaInvalidParameterException, ApiException { + throws FgaInvalidParameterException { + configuration.assertValid(); String storeId = configuration.getStoreIdChecked(); - return api.readAuthorizationModels(storeId, 1, null).thenApply(response -> new ReadAuthorizationModelResponse() - .authorizationModel(response.getAuthorizationModels().get(0))); + return call(() -> api.readAuthorizationModels(storeId, 1, null)) + .thenApply(response -> new ReadAuthorizationModelResponse() + .authorizationModel(response.getAuthorizationModels().get(0))); } /* ********************* @@ -149,9 +158,11 @@ public CompletableFuture readLatestAuthorization * @throws FgaInvalidParameterException When the Store ID is null, empty, or whitespace */ public CompletableFuture ReadChanges(ReadChangesOptions options) - throws FgaInvalidParameterException, ApiException { + throws FgaInvalidParameterException { + configuration.assertValid(); String storeId = configuration.getStoreIdChecked(); - return api.readChanges(storeId, options.getType(), options.getPageSize(), options.getContinuationToken()); + return call(() -> + api.readChanges(storeId, options.getType(), options.getPageSize(), options.getContinuationToken())); } /** @@ -159,9 +170,10 @@ public CompletableFuture ReadChanges(ReadChangesOptions opt * * @throws FgaInvalidParameterException When the Store ID is null, empty, or whitespace */ - public CompletableFuture read(ReadRequest body) throws FgaInvalidParameterException, ApiException { + public CompletableFuture read(ReadRequest body) throws FgaInvalidParameterException { + configuration.assertValid(); String storeId = configuration.getStoreIdChecked(); - return api.read(storeId, body); + return call(() -> api.read(storeId, body)); } /** @@ -169,9 +181,10 @@ public CompletableFuture read(ReadRequest body) throws FgaInvalidP * * @throws FgaInvalidParameterException When the Store ID is null, empty, or whitespace */ - public CompletableFuture write(WriteRequest request) throws FgaInvalidParameterException, ApiException { + public CompletableFuture write(WriteRequest request) throws FgaInvalidParameterException { + configuration.assertValid(); String storeId = configuration.getStoreIdChecked(); - return api.write(storeId, request); + return call(() -> api.write(storeId, request)); } /** @@ -179,15 +192,17 @@ public CompletableFuture write(WriteRequest request) throws FgaInvalidPa * * @throws FgaInvalidParameterException When the Store ID is null, empty, or whitespace */ - public CompletableFuture writeTuples(TupleKeys tupleKeys) - throws FgaInvalidParameterException, ApiException { - var request = new WriteRequest().writes(tupleKeys); + public CompletableFuture writeTuples(TupleKeys tupleKeys) throws FgaInvalidParameterException { + configuration.assertValid(); String storeId = configuration.getStoreIdChecked(); + + var request = new WriteRequest().writes(tupleKeys); String authorizationModelId = configuration.getAuthorizationModelId(); if (!isNullOrWhitespace(authorizationModelId)) { request.authorizationModelId(authorizationModelId); } - return api.write(storeId, request); + + return call(() -> api.write(storeId, request)); } /** @@ -195,15 +210,17 @@ public CompletableFuture writeTuples(TupleKeys tupleKeys) * * @throws FgaInvalidParameterException When the Store ID is null, empty, or whitespace */ - public CompletableFuture deleteTuples(TupleKeys tupleKeys) - throws FgaInvalidParameterException, ApiException { - var request = new WriteRequest().deletes(tupleKeys); + public CompletableFuture deleteTuples(TupleKeys tupleKeys) throws FgaInvalidParameterException { + configuration.assertValid(); String storeId = configuration.getStoreIdChecked(); + + var request = new WriteRequest().deletes(tupleKeys); String authorizationModelId = configuration.getAuthorizationModelId(); if (!isNullOrWhitespace(authorizationModelId)) { request.authorizationModelId(authorizationModelId); } - return api.write(storeId, request); + + return call(() -> api.write(storeId, request)); } /* ********************** @@ -215,14 +232,16 @@ public CompletableFuture deleteTuples(TupleKeys tupleKeys) * * @throws FgaInvalidParameterException When the Store ID is null, empty, or whitespace */ - public CompletableFuture check(CheckRequest request) - throws FgaInvalidParameterException, ApiException { + public CompletableFuture check(CheckRequest request) throws FgaInvalidParameterException { + configuration.assertValid(); String storeId = configuration.getStoreIdChecked(); - return api.check(storeId, request); + return call(() -> api.check(storeId, request)); } - /* + /** * BatchCheck - Run a set of checks (evaluates) + * + * @throws FgaInvalidParameterException When the Store ID is null, empty, or whitespace */ // TODO @@ -231,10 +250,10 @@ public CompletableFuture check(CheckRequest request) * * @throws FgaInvalidParameterException When the Store ID is null, empty, or whitespace */ - public CompletableFuture expand(ExpandRequest request) - throws FgaInvalidParameterException, ApiException { + public CompletableFuture expand(ExpandRequest request) throws FgaInvalidParameterException { + configuration.assertValid(); String storeId = configuration.getStoreIdChecked(); - return api.expand(storeId, request); + return call(() -> api.expand(storeId, request)); } /** @@ -243,9 +262,10 @@ public CompletableFuture expand(ExpandRequest request) * @throws FgaInvalidParameterException When the Store ID is null, empty, or whitespace */ public CompletableFuture listObjects(ListObjectsRequest request) - throws FgaInvalidParameterException, ApiException { + throws FgaInvalidParameterException { + configuration.assertValid(); String storeId = configuration.getStoreIdChecked(); - return api.listObjects(storeId, request); + return call(() -> api.listObjects(storeId, request)); } /* @@ -262,11 +282,11 @@ public CompletableFuture listObjects(ListObjectsRequest req * * @throws FgaInvalidParameterException When either the Store ID or Authorization Model ID is null, empty, or whitespace */ - public CompletableFuture readAssertions() - throws FgaInvalidParameterException, ApiException { + public CompletableFuture readAssertions() throws FgaInvalidParameterException { + configuration.assertValid(); String storeId = configuration.getStoreIdChecked(); String authorizationModelId = configuration.getAuthorizationModelIdChecked(); - return api.readAssertions(storeId, authorizationModelId); + return call(() -> api.readAssertions(storeId, authorizationModelId)); } /** @@ -274,10 +294,29 @@ public CompletableFuture readAssertions() * * @throws FgaInvalidParameterException When either the Store ID or Authorization Model ID is null, empty, or whitespace */ - public CompletableFuture writeAssertions(WriteAssertionsRequest request) - throws FgaInvalidParameterException, ApiException { + public CompletableFuture writeAssertions(WriteAssertionsRequest request) throws FgaInvalidParameterException { + configuration.assertValid(); String storeId = configuration.getStoreIdChecked(); String authorizationModelId = configuration.getAuthorizationModelIdChecked(); - return api.writeAssertions(storeId, authorizationModelId, request); + return call(() -> api.writeAssertions(storeId, authorizationModelId, request)); + } + + /** + * A {@link FunctionalInterface} for calling a low-level API from {@link OpenFgaApi}. It wraps exceptions + * encountered with {@link CompletableFuture#failedFuture(Throwable)} + * + * @param The type of API response + */ + @FunctionalInterface + private interface CheckedInvocation { + CompletableFuture call() throws FgaInvalidParameterException, ApiException; + } + + private CompletableFuture call(CheckedInvocation action) { + try { + return action.call(); + } catch (FgaInvalidParameterException | ApiException exception) { + return CompletableFuture.failedFuture(exception); + } } } diff --git a/src/test-integration/java/package-info.java b/src/test-integration/java/package-info.java new file mode 100644 index 0000000..3cca732 --- /dev/null +++ b/src/test-integration/java/package-info.java @@ -0,0 +1,9 @@ +/** + * This is an autogenerated Java SDK for OpenFGA. + * It provides a wrapper around the OpenFGA API definition. + *

+ * Most interaction should be centered around the high-level {@link dev.openfga.sdk.api.client.OpenFgaClient}. + * + * @see OpenFGA Docs + * @see Source + */ From f1b61990a56c929dd8246dc1cc286ecef154f84b Mon Sep 17 00:00:00 2001 From: "Justin \"J.R.\" Hill" Date: Thu, 21 Sep 2023 17:41:05 -0700 Subject: [PATCH 03/22] test: Client tests and integ tests --- .openapi-generator/FILES | 2 + .../configuration/ClientConfiguration.java | 43 +- .../client/OpenFgaClientIntegrationTest.java | 334 ++++ .../sdk/api/client/OpenFgaClientTest.java | 1581 +++++++++++++++++ 4 files changed, 1958 insertions(+), 2 deletions(-) create mode 100644 src/test-integration/java/dev/openfga/sdk/api/client/OpenFgaClientIntegrationTest.java create mode 100644 src/test/java/dev/openfga/sdk/api/client/OpenFgaClientTest.java diff --git a/.openapi-generator/FILES b/.openapi-generator/FILES index 09b50f9..026799b 100644 --- a/.openapi-generator/FILES +++ b/.openapi-generator/FILES @@ -154,10 +154,12 @@ src/main/java/dev/openfga/sdk/errors/FgaInvalidParameterException.java src/main/java/dev/openfga/sdk/util/Pair.java src/main/java/dev/openfga/sdk/util/StringUtil.java src/test-integration/java/dev/openfga/sdk/api/OpenFgaApiIntegrationTest.java +src/test-integration/java/dev/openfga/sdk/api/client/OpenFgaClientIntegrationTest.java src/test-integration/java/package-info.java src/test/java/dev/openfga/sdk/api/OpenFgaApiTest.java src/test/java/dev/openfga/sdk/api/OpenFgaApiTest.java src/test/java/dev/openfga/sdk/api/auth/OAuth2ClientTest.java +src/test/java/dev/openfga/sdk/api/client/OpenFgaClientTest.java src/test/java/dev/openfga/sdk/api/configuration/ClientCredentialsTest.java src/test/java/dev/openfga/sdk/api/configuration/ConfigurationTest.java src/test/java/dev/openfga/sdk/api/model/AnyTest.java diff --git a/src/main/java/dev/openfga/sdk/api/configuration/ClientConfiguration.java b/src/main/java/dev/openfga/sdk/api/configuration/ClientConfiguration.java index 1187dcb..afdb40c 100644 --- a/src/main/java/dev/openfga/sdk/api/configuration/ClientConfiguration.java +++ b/src/main/java/dev/openfga/sdk/api/configuration/ClientConfiguration.java @@ -15,6 +15,7 @@ import static dev.openfga.sdk.util.StringUtil.isNullOrWhitespace; import dev.openfga.sdk.errors.FgaInvalidParameterException; +import java.time.Duration; public class ClientConfiguration extends Configuration { private String storeId; @@ -32,7 +33,7 @@ public void assertValidStoreId() throws FgaInvalidParameterException { * @param storeId The URL. * @return This object. */ - public Configuration storeId(String storeId) { + public ClientConfiguration storeId(String storeId) { this.storeId = storeId; return this; } @@ -65,7 +66,7 @@ public String getStoreIdChecked() throws FgaInvalidParameterException { * @param authorizationModelId The URL. * @return This object. */ - public Configuration authorizationModelId(String authorizationModelId) { + public ClientConfiguration authorizationModelId(String authorizationModelId) { this.authorizationModelId = authorizationModelId; return this; } @@ -91,4 +92,42 @@ public String getAuthorizationModelIdChecked() throws FgaInvalidParameterExcepti } return authorizationModelId; } + + /* Overrides beyond this point required for typing. */ + + @Override + public ClientConfiguration override(ConfigurationOverride configurationOverride) { + super.override(configurationOverride); + return this; + } + + @Override + public ClientConfiguration apiUrl(String apiUrl) { + super.apiUrl(apiUrl); + return this; + } + + @Override + public ClientConfiguration credentials(Credentials credentials) { + super.credentials(credentials); + return this; + } + + @Override + public ClientConfiguration userAgent(String userAgent) { + super.userAgent(userAgent); + return this; + } + + @Override + public ClientConfiguration readTimeout(Duration readTimeout) { + super.readTimeout(readTimeout); + return this; + } + + @Override + public ClientConfiguration connectTimeout(Duration connectTimeout) { + super.connectTimeout(connectTimeout); + return this; + } } diff --git a/src/test-integration/java/dev/openfga/sdk/api/client/OpenFgaClientIntegrationTest.java b/src/test-integration/java/dev/openfga/sdk/api/client/OpenFgaClientIntegrationTest.java new file mode 100644 index 0000000..be1c83b --- /dev/null +++ b/src/test-integration/java/dev/openfga/sdk/api/client/OpenFgaClientIntegrationTest.java @@ -0,0 +1,334 @@ +/* + * OpenFGA + * A high performance and flexible authorization/permission engine built for developers and inspired by Google Zanzibar. + * + * The version of the OpenAPI document: 0.1 + * Contact: community@openfga.dev + * + * NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech). + * https://openapi-generator.tech + * Do not edit the class manually. + */ + +package dev.openfga.sdk.api.client; + +import static org.junit.jupiter.api.Assertions.*; + +import com.fasterxml.jackson.core.JsonProcessingException; +import com.fasterxml.jackson.databind.ObjectMapper; +import dev.openfga.sdk.api.configuration.*; +import dev.openfga.sdk.api.model.*; +import java.net.http.HttpClient; +import java.util.List; +import org.junit.jupiter.api.BeforeEach; +import org.junit.jupiter.api.Test; + +public class OpenFgaClientIntegrationTest { + private static final ObjectMapper mapper = new ObjectMapper().findAndRegisterModules(); + private static final String DEFAULT_AUTH_MODEL = + "{\"schema_version\":\"1.1\",\"type_definitions\":[{\"type\":\"user\"},{\"type\":\"document\",\"relations\":{\"reader\":{\"this\":{}},\"writer\":{\"this\":{}},\"owner\":{\"this\":{}}},\"metadata\":{\"relations\":{\"reader\":{\"directly_related_user_types\":[{\"type\":\"user\"}]},\"writer\":{\"directly_related_user_types\":[{\"type\":\"user\"}]},\"owner\":{\"directly_related_user_types\":[{\"type\":\"user\"}]}}}}]}"; + private static final String DEFAULT_USER = "user:81684243-9356-4421-8fbf-a4f8d36aa31b"; + private static final String DEFAULT_DOC = "document:2021-budget"; + public static final TupleKey DEFAULT_TUPLE_KEY = + new TupleKey().user(DEFAULT_USER).relation("reader")._object(DEFAULT_DOC); + public static final List DEFAULT_TUPLE_KEYS = List.of(DEFAULT_TUPLE_KEY); + + private OpenFgaClient fga; + + @BeforeEach + public void initializeApi() throws Exception { + ClientConfiguration apiConfig = new ClientConfiguration().apiUrl("http://localhost:8080"); + ApiClient apiClient = new ApiClient(HttpClient.newBuilder(), mapper); + fga = new OpenFgaClient(apiClient, apiConfig); + } + + @Test + public void createStore() throws Exception { + // Given + String storeName = thisTestName(); + CreateStoreRequest createStoreRequest = new CreateStoreRequest().name(storeName); + + // When + CreateStoreResponse response = fga.createStore(createStoreRequest).get(); + + // Then + assertEquals("OpenFgaClientIntegrationTest.createStore", response.getName()); + } + + @Test + public void deleteStore() throws Exception { + // Given + String storeName = thisTestName(); + String storeId = createStore(storeName); + fga.setStoreId(storeId); + + // When + fga.deleteStore().get(); + + // Then + ListStoresResponse response = fga.listStores().get(); + assertNotNull(response.getStores()); + boolean itWasDeleted = response.getStores().stream().map(Store::getId).noneMatch(storeId::equals); + assertTrue(itWasDeleted, String.format("No stores should remain with the id %s.", storeId)); + } + + @Test + public void getStore() throws Exception { + // Given + String storeName = thisTestName(); + String storeId = createStore(storeName); + fga.setStoreId(storeId); + + // When + GetStoreResponse response = fga.getStore().get(); + + // Then + assertEquals(storeName, response.getName()); + } + + @Test + public void listStores() throws Exception { + // Given + String testName = thisTestName(); + String store1 = testName + "-store1"; + String store2 = testName + "-store2"; + String store3 = testName + "-store3"; + List stores = List.of(store1, store2, store3); + for (String store : stores) { + createStore(store); + } + + // When + ListStoresResponse response = fga.listStores().get(); + + // Then + for (String store : stores) { + assertNotNull(response.getStores()); + boolean exists = response.getStores().stream().map(Store::getName).anyMatch(store::equals); + assertTrue(exists, String.format("Store %s should be in listStores response", store)); + } + } + + @Test + public void readAuthModel() throws Exception { + // Given + String storeName = thisTestName(); + String storeId = createStore(storeName); + fga.setStoreId(storeId); + String authModelId = writeAuthModel(storeId); + fga.setAuthorizationModelId(authModelId); + + // When + ReadAuthorizationModelResponse response = fga.readAuthorizationModel().get(); + + // Then + AuthorizationModel authModel = response.getAuthorizationModel(); + assertNotNull(authModel); + assertEquals(authModelId, response.getAuthorizationModel().getId()); + String typeDefsJson = mapper.writeValueAsString(authModel.getTypeDefinitions()); + assertEquals( + "[{\"type\":\"user\",\"relations\":{},\"metadata\":null},{\"type\":\"document\",\"relations\":{\"owner\":{\"this\":{},\"computedUserset\":null,\"tupleToUserset\":null,\"union\":null,\"intersection\":null,\"difference\":null},\"reader\":{\"this\":{},\"computedUserset\":null,\"tupleToUserset\":null,\"union\":null,\"intersection\":null,\"difference\":null},\"writer\":{\"this\":{},\"computedUserset\":null,\"tupleToUserset\":null,\"union\":null,\"intersection\":null,\"difference\":null}},\"metadata\":{\"relations\":{\"owner\":{\"directly_related_user_types\":[{\"type\":\"user\",\"relation\":null,\"wildcard\":null}]},\"reader\":{\"directly_related_user_types\":[{\"type\":\"user\",\"relation\":null,\"wildcard\":null}]},\"writer\":{\"directly_related_user_types\":[{\"type\":\"user\",\"relation\":null,\"wildcard\":null}]}}}}]", + typeDefsJson); + } + + @Test + public void readAuthModels() throws Exception { + // Given + String storeName = thisTestName(); + String storeId = createStore(storeName); + fga.setStoreId(storeId); + String authModelId = writeAuthModel(storeId); + fga.setAuthorizationModelId(authModelId); + var options = new ReadAuthorizationModelsOptions(); + + // When + ReadAuthorizationModelsResponse response = + fga.readAuthorizationModels(options).get(); + + // Then + assertNotNull(response.getAuthorizationModels()); + response.getAuthorizationModels().stream() + .filter(authModel -> authModelId.equals(authModel.getId())) + .forEach(authModel -> { + assertEquals(authModelId, authModel.getId()); + try { + String typeDefsJson = mapper.writeValueAsString(authModel.getTypeDefinitions()); + + assertEquals( + "[{\"type\":\"user\",\"relations\":{},\"metadata\":null},{\"type\":\"document\",\"relations\":{\"owner\":{\"this\":{},\"computedUserset\":null,\"tupleToUserset\":null,\"union\":null,\"intersection\":null,\"difference\":null},\"reader\":{\"this\":{},\"computedUserset\":null,\"tupleToUserset\":null,\"union\":null,\"intersection\":null,\"difference\":null},\"writer\":{\"this\":{},\"computedUserset\":null,\"tupleToUserset\":null,\"union\":null,\"intersection\":null,\"difference\":null}},\"metadata\":{\"relations\":{\"owner\":{\"directly_related_user_types\":[{\"type\":\"user\",\"relation\":null,\"wildcard\":null}]},\"reader\":{\"directly_related_user_types\":[{\"type\":\"user\",\"relation\":null,\"wildcard\":null}]},\"writer\":{\"directly_related_user_types\":[{\"type\":\"user\",\"relation\":null,\"wildcard\":null}]}}}}]", + typeDefsJson); + } catch (JsonProcessingException ex) { + assertNull(ex); + } + }); + } + + @Test + public void writeAuthModel() throws Exception { + // Given + String storeName = thisTestName(); + String storeId = createStore(storeName); + fga.setStoreId(storeId); + WriteAuthorizationModelRequest request = + mapper.readValue(DEFAULT_AUTH_MODEL, WriteAuthorizationModelRequest.class); + + // When + WriteAuthorizationModelResponse response = + fga.writeAuthorizationModel(request).get(); + + // Then + assertNotNull(response); + assertNotNull(response.getAuthorizationModelId()); + assertNotEquals("", response.getAuthorizationModelId()); + } + + @Test + public void write_and_read() throws Exception { + // Given + String storeName = thisTestName(); + String storeId = createStore(storeName); + fga.setStoreId(storeId); + String authModelId = writeAuthModel(storeId); + fga.setAuthorizationModelId(authModelId); + + WriteRequest writeRequest = new WriteRequest().writes(new TupleKeys().tupleKeys(List.of(DEFAULT_TUPLE_KEY))); + ReadRequest readRequest = + new ReadRequest().tupleKey(new TupleKey().user(DEFAULT_USER)._object(DEFAULT_DOC)); + + // When + fga.write(writeRequest).get(); + ReadResponse response = fga.read(readRequest).get(); + + // Then + assertNotNull(response.getTuples()); + TupleKey key = response.getTuples().get(0).getKey(); + assertNotNull(key); + assertEquals(DEFAULT_USER, key.getUser()); + assertEquals("reader", key.getRelation()); + assertEquals(DEFAULT_DOC, key.getObject()); + } + + @Test + public void write_and_check() throws Exception { + // Given + String storeName = thisTestName(); + String storeId = createStore(storeName); + fga.setStoreId(storeId); + String authModelId = writeAuthModel(storeId); + fga.setAuthorizationModelId(authModelId); + WriteRequest writeRequest = new WriteRequest().writes(new TupleKeys().tupleKeys(DEFAULT_TUPLE_KEYS)); + CheckRequest checkRequest = new CheckRequest() + .tupleKey(new TupleKey().user(DEFAULT_USER).relation("reader")._object(DEFAULT_DOC)); + + // When + fga.write(writeRequest).get(); + CheckResponse response = fga.check(checkRequest).get(); + + // Then + assertNotNull(response.getAllowed()); + assertTrue(response.getAllowed()); + } + + @Test + public void write_and_expand() throws Exception { + // Given + String storeName = thisTestName(); + String storeId = createStore(storeName); + fga.setStoreId(storeId); + String authModelId = writeAuthModel(storeId); + fga.setAuthorizationModelId(authModelId); + WriteRequest writeRequest = new WriteRequest().writes(new TupleKeys().tupleKeys(DEFAULT_TUPLE_KEYS)); + ExpandRequest expandRequest = + new ExpandRequest().tupleKey(new TupleKey()._object(DEFAULT_DOC).relation("reader")); + + // When + fga.write(writeRequest).get(); + ExpandResponse response = fga.expand(expandRequest).get(); + + // Then + assertNotNull(response.getTree()); + String responseJson = mapper.writeValueAsString(response); + assertEquals( + "{\"tree\":{\"root\":{\"name\":\"document:2021-budget#reader\",\"leaf\":{\"users\":{\"users\":[\"user:81684243-9356-4421-8fbf-a4f8d36aa31b\"]},\"computed\":null,\"tupleToUserset\":null},\"difference\":null,\"union\":null,\"intersection\":null}}}", + responseJson); + } + + @Test + public void write_and_listObjects() throws Exception { + // Given + String storeName = thisTestName(); + String storeId = createStore(storeName); + fga.setStoreId(storeId); + String authModelId = writeAuthModel(storeId); + fga.setAuthorizationModelId(authModelId); + WriteRequest writeRequest = new WriteRequest().writes(new TupleKeys().tupleKeys(DEFAULT_TUPLE_KEYS)); + ListObjectsRequest listObjectsRequest = + new ListObjectsRequest().user(DEFAULT_USER).relation("reader").type("document"); + + // When + fga.write(writeRequest).get(); + ListObjectsResponse response = fga.listObjects(listObjectsRequest).get(); + + // Then + assertNotNull(response.getObjects()); + assertEquals(1, response.getObjects().size()); + assertEquals(DEFAULT_DOC, response.getObjects().get(0)); + } + + @Test + public void write_readAssertions() throws Exception { + // Given + String storeName = thisTestName(); + String storeId = createStore(storeName); + fga.setStoreId(storeId); + String authModelId = writeAuthModel(storeId); + fga.setAuthorizationModelId(authModelId); + WriteAssertionsRequest writeRequest = new WriteAssertionsRequest() + .assertions(List.of(new Assertion().tupleKey(DEFAULT_TUPLE_KEY).expectation(true))); + + // When + fga.writeAssertions(writeRequest).get(); + ReadAssertionsResponse response = fga.readAssertions().get(); + + // Then + String responseJson = mapper.writeValueAsString(response.getAssertions()); + assertEquals( + "[{\"tuple_key\":{\"object\":\"document:2021-budget\",\"relation\":\"reader\",\"user\":\"user:81684243-9356-4421-8fbf-a4f8d36aa31b\"},\"expectation\":true}]", + responseJson); + } + + /** + * Create a store for a given name. If tests fail here, troubleshoot with the no-arguments + * test method createStore(). + * @return The created Store ID + */ + private String createStore(String storeName) throws Exception { + CreateStoreResponse response = + fga.createStore(new CreateStoreRequest().name(storeName)).get(); + return response.getId(); + } + + /** + * Add a default authorization model to a store. If tests fail here, troubleshoot with the + * no-arguments @Test writeAuthModel() method. + * @return The created Authorization Model ID + */ + private String writeAuthModel(String storeId) throws Exception { + fga.setStoreId(storeId); + WriteAuthorizationModelRequest request = + mapper.readValue(DEFAULT_AUTH_MODEL, WriteAuthorizationModelRequest.class); + WriteAuthorizationModelResponse response = + fga.writeAuthorizationModel(request).get(); + return response.getAuthorizationModelId(); + } + + /** Get the name of the test that invokes this function. Returned in the form: "$class.$fn" */ + private String thisTestName() { + // Tracing the stack gives an array of: + // 0: getStackTrace(), 1: getThisFunctionName(), 2: , 3: ... + StackTraceElement callingFn = Thread.currentThread().getStackTrace()[2]; + String callingClass = callingFn.getClassName().replace("dev.openfga.sdk.api.client.", ""); + + return String.format("%s.%s", callingClass, callingFn.getMethodName()); + } +} diff --git a/src/test/java/dev/openfga/sdk/api/client/OpenFgaClientTest.java b/src/test/java/dev/openfga/sdk/api/client/OpenFgaClientTest.java new file mode 100644 index 0000000..09fa669 --- /dev/null +++ b/src/test/java/dev/openfga/sdk/api/client/OpenFgaClientTest.java @@ -0,0 +1,1581 @@ +/* + * OpenFGA + * A high performance and flexible authorization/permission engine built for developers and inspired by Google Zanzibar. + * + * The version of the OpenAPI document: 0.1 + * Contact: community@openfga.dev + * + * NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech). + * https://openapi-generator.tech + * Do not edit the class manually. + */ + +package dev.openfga.sdk.api.client; + +import static org.hamcrest.Matchers.*; +import static org.junit.jupiter.api.Assertions.*; +import static org.mockito.Mockito.*; + +import com.fasterxml.jackson.databind.ObjectMapper; +import com.pgssoft.httpclient.HttpClientMock; +import dev.openfga.sdk.api.configuration.*; +import dev.openfga.sdk.api.model.*; +import dev.openfga.sdk.errors.*; +import java.time.Duration; +import java.util.List; +import java.util.concurrent.ExecutionException; +import org.junit.jupiter.api.BeforeEach; +import org.junit.jupiter.api.Test; + +/** + * API tests for OpenFgaClient + */ +public class OpenFgaClientTest { + private static final String DEFAULT_STORE_ID = "01YCP46JKYM8FJCQ37NMBYHE5X"; + private static final String DEFAULT_STORE_NAME = "test_store"; + private static final String DEFAULT_AUTH_MODEL_ID = "01G5JAVJ41T49E9TT3SKVS7X1J"; + private static final String DEFAULT_USER = "user:81684243-9356-4421-8fbf-a4f8d36aa31b"; + private static final String DEFAULT_RELATION = "reader"; + private static final String DEFAULT_TYPE = "document"; + private static final String DEFAULT_OBJECT = "document:budget"; + private static final String DEFAULT_SCHEMA_VERSION = "1.1"; + public static final String EMPTY_RESPONSE_BODY = "{}"; + + private OpenFgaClient fga; + private ClientConfiguration clientConfiguration; + private HttpClientMock mockHttpClient; + + @BeforeEach + public void beforeEachTest() throws Exception { + mockHttpClient = new HttpClientMock(); + + clientConfiguration = new ClientConfiguration() + .storeId(DEFAULT_STORE_ID) + .authorizationModelId(DEFAULT_AUTH_MODEL_ID) + .apiUrl("https://localhost") + .credentials(new Credentials()) + .readTimeout(Duration.ofMillis(250)); + + ApiClient mockApiClient = mock(ApiClient.class); + when(mockApiClient.getHttpClient()).thenReturn(mockHttpClient); + when(mockApiClient.getObjectMapper()).thenReturn(new ObjectMapper()); + + fga = new OpenFgaClient(mockApiClient, clientConfiguration); + } + + /** + * List all stores. + */ + @Test + public void listStoresTest() throws Exception { + // Given + String responseBody = + String.format("{\"stores\":[{\"id\":\"%s\",\"name\":\"%s\"}]}", DEFAULT_STORE_ID, DEFAULT_STORE_NAME); + mockHttpClient.onGet("https://localhost/stores").doReturn(200, responseBody); + + // When + ListStoresResponse response = fga.listStores().get(); + + // Then + mockHttpClient.verify().get("https://localhost/stores").called(1); + assertNotNull(response.getStores()); + assertEquals(1, response.getStores().size()); + assertEquals(DEFAULT_STORE_ID, response.getStores().get(0).getId()); + assertEquals(DEFAULT_STORE_NAME, response.getStores().get(0).getName()); + } + + /** + * Create a store. + */ + @Test + public void createStoreTest() throws Exception { + // Given + String expectedBody = String.format("{\"name\":\"%s\"}", DEFAULT_STORE_NAME); + String requestBody = String.format("{\"id\":\"%s\",\"name\":\"%s\"}", DEFAULT_STORE_ID, DEFAULT_STORE_NAME); + mockHttpClient + .onPost("https://localhost/stores") + .withBody(is(expectedBody)) + .doReturn(201, requestBody); + CreateStoreRequest request = new CreateStoreRequest().name(DEFAULT_STORE_NAME); + + // When + CreateStoreResponse response = fga.createStore(request).get(); + + // Then + mockHttpClient + .verify() + .post("https://localhost/stores") + .withBody(is(expectedBody)) + .called(1); + assertEquals(DEFAULT_STORE_ID, response.getId()); + assertEquals(DEFAULT_STORE_NAME, response.getName()); + } + + @Test + public void createStore_bodyRequired() { + // When + ExecutionException execException = assertThrows( + ExecutionException.class, () -> fga.createStore(null).get()); + + // Then + ApiException exception = assertInstanceOf(ApiException.class, execException.getCause()); + assertEquals("Missing the required parameter 'body' when calling createStore", exception.getMessage()); + } + + @Test + public void createStore_400() throws Exception { + // Given + mockHttpClient + .onPost("https://localhost/stores") + .doReturn(400, "{\"code\":\"validation_error\",\"message\":\"Generic validation error\"}"); + + // When + ExecutionException execException = + assertThrows(ExecutionException.class, () -> fga.createStore(new CreateStoreRequest()) + .get()); + + // Then + mockHttpClient.verify().post("https://localhost/stores").called(1); + ApiException exception = assertInstanceOf(ApiException.class, execException.getCause()); + assertEquals(400, exception.getCode()); + assertEquals( + "{\"code\":\"validation_error\",\"message\":\"Generic validation error\"}", + exception.getResponseBody()); + } + + @Test + public void createStore_404() throws Exception { + // Given + mockHttpClient + .onPost("https://localhost/stores") + .doReturn(404, "{\"code\":\"undefined_endpoint\",\"message\":\"Endpoint not enabled\"}"); + + // When + ExecutionException execException = + assertThrows(ExecutionException.class, () -> fga.createStore(new CreateStoreRequest()) + .get()); + + // Then + mockHttpClient.verify().post("https://localhost/stores").called(1); + ApiException exception = assertInstanceOf(ApiException.class, execException.getCause()); + assertEquals(404, exception.getCode()); + assertEquals( + "{\"code\":\"undefined_endpoint\",\"message\":\"Endpoint not enabled\"}", exception.getResponseBody()); + } + + @Test + public void createStore_500() throws Exception { + // Given + mockHttpClient + .onPost("https://localhost/stores") + .doReturn(500, "{\"code\":\"internal_error\",\"message\":\"Internal Server Error\"}"); + + // When + ExecutionException execException = + assertThrows(ExecutionException.class, () -> fga.createStore(new CreateStoreRequest()) + .get()); + + // Then + mockHttpClient.verify().post("https://localhost/stores").called(1); + ApiException exception = assertInstanceOf(ApiException.class, execException.getCause()); + assertEquals(500, exception.getCode()); + assertEquals( + "{\"code\":\"internal_error\",\"message\":\"Internal Server Error\"}", exception.getResponseBody()); + } + + /** + * Get a store. + */ + @Test + public void getStoreTest() throws Exception { + // Given + String getUrl = String.format("https://localhost/stores/%s", DEFAULT_STORE_ID); + String responseBody = String.format("{\"id\":\"%s\",\"name\":\"%s\"}", DEFAULT_STORE_ID, DEFAULT_STORE_NAME); + mockHttpClient.onGet(getUrl).doReturn(200, responseBody); + + // When + GetStoreResponse response = fga.getStore().get(); + + // Then + mockHttpClient.verify().get(getUrl).called(1); + assertEquals(DEFAULT_STORE_ID, response.getId()); + assertEquals(DEFAULT_STORE_NAME, response.getName()); + } + + @Test + public void getStore_storeIdRequired() { + // Given + clientConfiguration.storeId(null); + + // When + var exception = assertThrows( + FgaInvalidParameterException.class, () -> fga.getStore().get()); + + // Then + assertEquals( + "Required parameter storeId was invalid when calling ClientConfiguration.", exception.getMessage()); + } + + @Test + public void getStore_400() throws Exception { + // Given + String getUrl = String.format("https://localhost/stores/%s", DEFAULT_STORE_ID); + mockHttpClient + .onGet(getUrl) + .doReturn(400, "{\"code\":\"validation_error\",\"message\":\"Generic validation error\"}"); + + // When + ExecutionException execException = + assertThrows(ExecutionException.class, () -> fga.getStore().get()); + + // Then + mockHttpClient.verify().get(getUrl).called(1); + ApiException exception = assertInstanceOf(ApiException.class, execException.getCause()); + assertEquals(400, exception.getCode()); + assertEquals( + "{\"code\":\"validation_error\",\"message\":\"Generic validation error\"}", + exception.getResponseBody()); + } + + @Test + public void getStore_404() throws Exception { + // Given + String getUrl = String.format("https://localhost/stores/%s", DEFAULT_STORE_ID); + mockHttpClient + .onGet(getUrl) + .doReturn(404, "{\"code\":\"undefined_endpoint\",\"message\":\"Endpoint not enabled\"}"); + + // When + ExecutionException execException = + assertThrows(ExecutionException.class, () -> fga.getStore().get()); + + // Then + mockHttpClient.verify().get(getUrl).called(1); + ApiException exception = assertInstanceOf(ApiException.class, execException.getCause()); + assertEquals(404, exception.getCode()); + assertEquals( + "{\"code\":\"undefined_endpoint\",\"message\":\"Endpoint not enabled\"}", exception.getResponseBody()); + } + + @Test + public void getStore_500() throws Exception { + // Given + String getUrl = String.format("https://localhost/stores/%s", DEFAULT_STORE_ID); + mockHttpClient + .onGet(getUrl) + .doReturn(500, "{\"code\":\"internal_error\",\"message\":\"Internal Server Error\"}"); + + // When + ExecutionException execException = + assertThrows(ExecutionException.class, () -> fga.getStore().get()); + + // Then + mockHttpClient.verify().get(getUrl).called(1); + ApiException exception = assertInstanceOf(ApiException.class, execException.getCause()); + assertEquals(500, exception.getCode()); + assertEquals( + "{\"code\":\"internal_error\",\"message\":\"Internal Server Error\"}", exception.getResponseBody()); + } + + /** + * Delete a store. + */ + @Test + public void deleteStoreTest() throws Exception { + // Given + String deleteUrl = String.format("https://localhost/stores/%s", DEFAULT_STORE_ID); + mockHttpClient.onDelete(deleteUrl).doReturn(204, EMPTY_RESPONSE_BODY); + + // When + fga.deleteStore().get(); + + // Then + mockHttpClient.verify().delete(deleteUrl).called(1); + } + + @Test + public void deleteStore_storeIdRequired() { + // Given + clientConfiguration.storeId(null); + + // When + var exception = assertThrows( + FgaInvalidParameterException.class, () -> fga.deleteStore().get()); + + // Then + assertEquals( + "Required parameter storeId was invalid when calling ClientConfiguration.", exception.getMessage()); + } + + @Test + public void deleteStore_400() { + // Given + String deleteUrl = String.format("https://localhost/stores/%s", DEFAULT_STORE_ID); + mockHttpClient + .onDelete(deleteUrl) + .doReturn(400, "{\"code\":\"validation_error\",\"message\":\"Generic validation error\"}"); + + // When + ExecutionException execException = + assertThrows(ExecutionException.class, () -> fga.deleteStore().get()); + + // Then + mockHttpClient.verify().delete(deleteUrl).called(1); + ApiException exception = assertInstanceOf(ApiException.class, execException.getCause()); + assertEquals(400, exception.getCode()); + assertEquals( + "{\"code\":\"validation_error\",\"message\":\"Generic validation error\"}", + exception.getResponseBody()); + } + + @Test + public void deleteStore_404() { + // Given + String deleteUrl = String.format("https://localhost/stores/%s", DEFAULT_STORE_ID); + mockHttpClient + .onDelete(deleteUrl) + .doReturn(404, "{\"code\":\"undefined_endpoint\",\"message\":\"Endpoint not enabled\"}"); + + // When + ExecutionException execException = + assertThrows(ExecutionException.class, () -> fga.deleteStore().get()); + + // Then + mockHttpClient.verify().delete(deleteUrl).called(1); + ApiException exception = assertInstanceOf(ApiException.class, execException.getCause()); + assertEquals(404, exception.getCode()); + assertEquals( + "{\"code\":\"undefined_endpoint\",\"message\":\"Endpoint not enabled\"}", exception.getResponseBody()); + } + + @Test + public void deleteStore_500() { + // Given + String deleteUrl = String.format("https://localhost/stores/%s", DEFAULT_STORE_ID); + mockHttpClient + .onDelete(deleteUrl) + .doReturn(500, "{\"code\":\"internal_error\",\"message\":\"Internal Server Error\"}"); + + // When + ExecutionException execException = + assertThrows(ExecutionException.class, () -> fga.deleteStore().get()); + + // Then + mockHttpClient.verify().delete(deleteUrl).called(1); + ApiException exception = assertInstanceOf(ApiException.class, execException.getCause()); + assertEquals(500, exception.getCode()); + assertEquals( + "{\"code\":\"internal_error\",\"message\":\"Internal Server Error\"}", exception.getResponseBody()); + } + + /** + * Return all the authorization models for a particular store. + */ + @Test + public void readAuthorizationModelsTest() throws Exception { + // Given + String getUrl = String.format("https://localhost/stores/%s/authorization-models", DEFAULT_STORE_ID); + var options = new ReadAuthorizationModelsOptions(); + String responseBody = String.format( + "{\"authorization_models\":[{\"id\":\"%s\",\"schema_version\":\"%s\"}]}", + DEFAULT_AUTH_MODEL_ID, DEFAULT_SCHEMA_VERSION); + mockHttpClient.onGet(getUrl).doReturn(200, responseBody); + + // When + ReadAuthorizationModelsResponse response = + fga.readAuthorizationModels(options).get(); + + // Then + mockHttpClient.verify().get(getUrl).called(1); + assertNotNull(response.getAuthorizationModels()); + assertEquals(1, response.getAuthorizationModels().size()); + AuthorizationModel authModel = response.getAuthorizationModels().get(0); + assertEquals(DEFAULT_AUTH_MODEL_ID, authModel.getId()); + assertEquals(DEFAULT_SCHEMA_VERSION, authModel.getSchemaVersion()); + } + + @Test + public void readAuthorizationModels_storeIdRequired() { + // Given + clientConfiguration.storeId(null); + var options = new ReadAuthorizationModelsOptions(); + + // When + var exception = assertThrows(FgaInvalidParameterException.class, () -> fga.readAuthorizationModels(options) + .get()); + + // Then + assertEquals( + "Required parameter storeId was invalid when calling ClientConfiguration.", exception.getMessage()); + } + + @Test + public void readAuthorizationModels_400() { + // Given + String getUrl = String.format("https://localhost/stores/%s/authorization-models", DEFAULT_STORE_ID); + var options = new ReadAuthorizationModelsOptions(); + mockHttpClient + .onGet(getUrl) + .doReturn(400, "{\"code\":\"validation_error\",\"message\":\"Generic validation error\"}"); + + // When + ExecutionException execException = + assertThrows(ExecutionException.class, () -> fga.readAuthorizationModels(options) + .get()); + + // Then + mockHttpClient.verify().get(getUrl).called(1); + ApiException exception = assertInstanceOf(ApiException.class, execException.getCause()); + assertEquals(400, exception.getCode()); + assertEquals( + "{\"code\":\"validation_error\",\"message\":\"Generic validation error\"}", + exception.getResponseBody()); + } + + @Test + public void readAuthorizationModels_404() { + // Given + String getUrl = String.format("https://localhost/stores/%s/authorization-models", DEFAULT_STORE_ID); + var options = new ReadAuthorizationModelsOptions(); + mockHttpClient + .onGet(getUrl) + .doReturn(404, "{\"code\":\"undefined_endpoint\",\"message\":\"Endpoint not enabled\"}"); + + // When + ExecutionException execException = + assertThrows(ExecutionException.class, () -> fga.readAuthorizationModels(options) + .get()); + + // Then + mockHttpClient.verify().get(getUrl).called(1); + ApiException exception = assertInstanceOf(ApiException.class, execException.getCause()); + assertEquals(404, exception.getCode()); + assertEquals( + "{\"code\":\"undefined_endpoint\",\"message\":\"Endpoint not enabled\"}", exception.getResponseBody()); + } + + @Test + public void readAuthorizationModels_500() throws Exception { + // Given + String getUrl = String.format("https://localhost/stores/%s/authorization-models", DEFAULT_STORE_ID); + var options = new ReadAuthorizationModelsOptions(); + mockHttpClient + .onGet(getUrl) + .doReturn(500, "{\"code\":\"internal_error\",\"message\":\"Internal Server Error\"}"); + + // When + ExecutionException execException = + assertThrows(ExecutionException.class, () -> fga.readAuthorizationModels(options) + .get()); + + // Then + mockHttpClient.verify().get(getUrl).called(1); + ApiException exception = assertInstanceOf(ApiException.class, execException.getCause()); + assertEquals(500, exception.getCode()); + assertEquals( + "{\"code\":\"internal_error\",\"message\":\"Internal Server Error\"}", exception.getResponseBody()); + } + + /** + * Create a new authorization model. + */ + @Test + public void writeAuthorizationModelTest() throws Exception { + // Given + String postUrl = String.format("https://localhost/stores/%s/authorization-models", DEFAULT_STORE_ID); + String expectedBody = + "{\"type_definitions\":[{\"type\":\"document\",\"relations\":{},\"metadata\":null}],\"schema_version\":\"1.1\"}"; + String responseBody = String.format("{\"authorization_model_id\":\"%s\"}", DEFAULT_AUTH_MODEL_ID); + mockHttpClient.onPost(postUrl).withBody(is(expectedBody)).doReturn(201, responseBody); + WriteAuthorizationModelRequest request = new WriteAuthorizationModelRequest() + .schemaVersion(DEFAULT_SCHEMA_VERSION) + .typeDefinitions(List.of(new TypeDefinition().type(DEFAULT_TYPE))); + + // When + WriteAuthorizationModelResponse response = + fga.writeAuthorizationModel(request).get(); + + // Then + mockHttpClient.verify().post(postUrl).withBody(is(expectedBody)).called(1); + assertEquals(DEFAULT_AUTH_MODEL_ID, response.getAuthorizationModelId()); + } + + @Test + public void writeAuthorizationModel_storeIdRequired() { + // Given + clientConfiguration.storeId(null); + + // When + var exception = assertThrows(FgaInvalidParameterException.class, () -> fga.writeAuthorizationModel( + new WriteAuthorizationModelRequest()) + .get()); + + // Then + assertEquals( + "Required parameter storeId was invalid when calling ClientConfiguration.", exception.getMessage()); + } + + @Test + public void writeAuthorizationModel_bodyRequired() { + // When + ExecutionException execException = + assertThrows(ExecutionException.class, () -> fga.writeAuthorizationModel(null) + .get()); + + // Then + ApiException exception = assertInstanceOf(ApiException.class, execException.getCause()); + assertEquals( + "Missing the required parameter 'body' when calling writeAuthorizationModel", exception.getMessage()); + } + + @Test + public void writeAuthorizationModel_400() throws Exception { + // Given + String postUrl = String.format("https://localhost/stores/%s/authorization-models", DEFAULT_STORE_ID); + mockHttpClient + .onPost(postUrl) + .doReturn(400, "{\"code\":\"validation_error\",\"message\":\"Generic validation error\"}"); + + // When + ExecutionException execException = assertThrows( + ExecutionException.class, () -> fga.writeAuthorizationModel(new WriteAuthorizationModelRequest()) + .get()); + + // Then + mockHttpClient.verify().post(postUrl).called(1); + ApiException exception = assertInstanceOf(ApiException.class, execException.getCause()); + assertEquals(400, exception.getCode()); + assertEquals( + "{\"code\":\"validation_error\",\"message\":\"Generic validation error\"}", + exception.getResponseBody()); + } + + @Test + public void writeAuthorizationModel_404() { + // Given + String postUrl = String.format("https://localhost/stores/%s/authorization-models", DEFAULT_STORE_ID); + mockHttpClient + .onPost(postUrl) + .doReturn(404, "{\"code\":\"undefined_endpoint\",\"message\":\"Endpoint not enabled\"}"); + + // When + ExecutionException execException = assertThrows( + ExecutionException.class, () -> fga.writeAuthorizationModel(new WriteAuthorizationModelRequest()) + .get()); + + // Then + mockHttpClient.verify().post(postUrl).called(1); + ApiException exception = assertInstanceOf(ApiException.class, execException.getCause()); + assertEquals(404, exception.getCode()); + assertEquals( + "{\"code\":\"undefined_endpoint\",\"message\":\"Endpoint not enabled\"}", exception.getResponseBody()); + } + + @Test + public void writeAuthorizationModel_500() { + // Given + String postUrl = String.format("https://localhost/stores/%s/authorization-models", DEFAULT_STORE_ID); + mockHttpClient + .onPost(postUrl) + .doReturn(500, "{\"code\":\"internal_error\",\"message\":\"Internal Server Error\"}"); + + // When + ExecutionException execException = assertThrows( + ExecutionException.class, () -> fga.writeAuthorizationModel(new WriteAuthorizationModelRequest()) + .get()); + + // Then + mockHttpClient.verify().post(postUrl).called(1); + ApiException exception = assertInstanceOf(ApiException.class, execException.getCause()); + assertEquals(500, exception.getCode()); + assertEquals( + "{\"code\":\"internal_error\",\"message\":\"Internal Server Error\"}", exception.getResponseBody()); + } + + /** + * Return a particular version of an authorization model. + */ + @Test + public void readAuthorizationModelTest() throws Exception { + // Given + String getUrl = String.format( + "https://localhost/stores/%s/authorization-models/%s", DEFAULT_STORE_ID, DEFAULT_AUTH_MODEL_ID); + String getResponse = String.format( + "{\"authorization_model\":{\"id\":\"%s\",\"schema_version\":\"%s\"}}", + DEFAULT_AUTH_MODEL_ID, DEFAULT_SCHEMA_VERSION); + mockHttpClient.onGet(getUrl).doReturn(200, getResponse); + + // When + ReadAuthorizationModelResponse response = fga.readAuthorizationModel().get(); + + // Then + mockHttpClient.verify().get(getUrl).called(1); + assertNotNull(response.getAuthorizationModel()); + assertEquals(DEFAULT_AUTH_MODEL_ID, response.getAuthorizationModel().getId()); + assertEquals(DEFAULT_SCHEMA_VERSION, response.getAuthorizationModel().getSchemaVersion()); + } + + @Test + public void readAuthorizationModel_storeIdRequired() { + // Given + clientConfiguration.storeId(null); + + // When + var exception = assertThrows(FgaInvalidParameterException.class, () -> fga.readAuthorizationModel() + .get()); + + // Then + assertEquals( + "Required parameter storeId was invalid when calling ClientConfiguration.", exception.getMessage()); + } + + @Test + public void readAuthorizationModel_idRequired() { + // Given + clientConfiguration.authorizationModelId(null); + + // When + var exception = assertThrows(FgaInvalidParameterException.class, () -> fga.readAuthorizationModel() + .get()); + + // Then + assertEquals( + "Required parameter authorizationModelId was invalid when calling ClientConfiguration.", + exception.getMessage()); + } + + @Test + public void readAuthorizationModel_400() { + // Given + String getUrl = String.format( + "https://localhost/stores/%s/authorization-models/%s", DEFAULT_STORE_ID, DEFAULT_AUTH_MODEL_ID); + mockHttpClient + .onGet(getUrl) + .doReturn(400, "{\"code\":\"validation_error\",\"message\":\"Generic validation error\"}"); + + // When + ExecutionException execException = assertThrows( + ExecutionException.class, () -> fga.readAuthorizationModel().get()); + + // Then + mockHttpClient.verify().get(getUrl).called(1); + ApiException exception = assertInstanceOf(ApiException.class, execException.getCause()); + assertEquals(400, exception.getCode()); + assertEquals( + "{\"code\":\"validation_error\",\"message\":\"Generic validation error\"}", + exception.getResponseBody()); + } + + @Test + public void readAuthorizationModel_404() throws Exception { + // Given + String getUrl = String.format( + "https://localhost/stores/%s/authorization-models/%s", DEFAULT_STORE_ID, DEFAULT_AUTH_MODEL_ID); + mockHttpClient + .onGet(getUrl) + .doReturn(404, "{\"code\":\"undefined_endpoint\",\"message\":\"Endpoint not enabled\"}"); + + // When + ExecutionException execException = assertThrows( + ExecutionException.class, () -> fga.readAuthorizationModel().get()); + + // Then + mockHttpClient.verify().get(getUrl).called(1); + ApiException exception = assertInstanceOf(ApiException.class, execException.getCause()); + assertEquals(404, exception.getCode()); + assertEquals( + "{\"code\":\"undefined_endpoint\",\"message\":\"Endpoint not enabled\"}", exception.getResponseBody()); + } + + @Test + public void readAuthorizationModel_500() throws Exception { + // Given + String getUrl = String.format( + "https://localhost/stores/%s/authorization-models/%s", DEFAULT_STORE_ID, DEFAULT_AUTH_MODEL_ID); + mockHttpClient + .onGet(getUrl) + .doReturn(500, "{\"code\":\"internal_error\",\"message\":\"Internal Server Error\"}"); + + // When + ExecutionException execException = assertThrows( + ExecutionException.class, () -> fga.readAuthorizationModel().get()); + + // Then + mockHttpClient.verify().get(getUrl).called(1); + ApiException exception = assertInstanceOf(ApiException.class, execException.getCause()); + assertEquals(500, exception.getCode()); + assertEquals( + "{\"code\":\"internal_error\",\"message\":\"Internal Server Error\"}", exception.getResponseBody()); + } + + /** + * Get tuples from the store that matches a query, without following userset rewrite rules. + */ + @Test + public void readTest() throws Exception { + // Given + String postUrl = String.format("https://localhost/stores/%s/read", DEFAULT_STORE_ID); + String expectedBody = String.format( + "{\"tuple_key\":{\"object\":\"%s\",\"relation\":\"%s\",\"user\":\"%s\"},\"page_size\":null,\"continuation_token\":null}", + DEFAULT_OBJECT, DEFAULT_RELATION, DEFAULT_USER); + String responseBody = String.format( + "{\"tuples\":[{\"key\":{\"user\":\"%s\",\"relation\":\"%s\",\"object\":\"%s\"}}]}", + DEFAULT_USER, DEFAULT_RELATION, DEFAULT_OBJECT); + mockHttpClient.onPost(postUrl).withBody(is(expectedBody)).doReturn(200, responseBody); + ReadRequest request = new ReadRequest() + .tupleKey(new TupleKey() + ._object(DEFAULT_OBJECT) + .relation(DEFAULT_RELATION) + .user(DEFAULT_USER)); + + // When + ReadResponse response = fga.read(request).get(); + + // Then + mockHttpClient.verify().post(postUrl).withBody(is(expectedBody)).called(1); + assertNotNull(response.getTuples()); + assertEquals(1, response.getTuples().size()); + TupleKey key = response.getTuples().get(0).getKey(); + assertNotNull(key); + assertEquals(DEFAULT_USER, key.getUser()); + assertEquals(DEFAULT_RELATION, key.getRelation()); + assertEquals(DEFAULT_OBJECT, key.getObject()); + } + + @Test + public void read_storeIdRequired() { + // Given + clientConfiguration.storeId(null); + + // When + var exception = assertThrows(FgaInvalidParameterException.class, () -> fga.read(new ReadRequest()) + .get()); + + // Then + assertEquals( + "Required parameter storeId was invalid when calling ClientConfiguration.", exception.getMessage()); + } + + @Test + public void read_bodyRequired() { + // When + ExecutionException execException = + assertThrows(ExecutionException.class, () -> fga.read(null).get()); + + // Then + ApiException exception = assertInstanceOf(ApiException.class, execException.getCause()); + assertEquals("Missing the required parameter 'body' when calling read", exception.getMessage()); + } + + @Test + public void read_400() { + // Given + String postUrl = String.format("https://localhost/stores/%s/read", DEFAULT_STORE_ID); + mockHttpClient + .onPost(postUrl) + .doReturn(400, "{\"code\":\"validation_error\",\"message\":\"Generic validation error\"}"); + + // When + ExecutionException execException = assertThrows( + ExecutionException.class, () -> fga.read(new ReadRequest()).get()); + + // Then + mockHttpClient.verify().post(postUrl).called(1); + ApiException exception = assertInstanceOf(ApiException.class, execException.getCause()); + assertEquals(400, exception.getCode()); + assertEquals( + "{\"code\":\"validation_error\",\"message\":\"Generic validation error\"}", + exception.getResponseBody()); + } + + @Test + public void read_404() { + // Given + String postUrl = String.format("https://localhost/stores/%s/read", DEFAULT_STORE_ID); + mockHttpClient + .onPost(postUrl) + .doReturn(404, "{\"code\":\"undefined_endpoint\",\"message\":\"Endpoint not enabled\"}"); + + // When + ExecutionException execException = assertThrows( + ExecutionException.class, () -> fga.read(new ReadRequest()).get()); + + // Then + mockHttpClient.verify().post(postUrl).called(1); + ApiException exception = assertInstanceOf(ApiException.class, execException.getCause()); + assertEquals(404, exception.getCode()); + assertEquals( + "{\"code\":\"undefined_endpoint\",\"message\":\"Endpoint not enabled\"}", exception.getResponseBody()); + } + + @Test + public void read_500() { + // Given + String postUrl = String.format("https://localhost/stores/%s/read", DEFAULT_STORE_ID); + mockHttpClient + .onPost(postUrl) + .doReturn(500, "{\"code\":\"internal_error\",\"message\":\"Internal Server Error\"}"); + + // When + ExecutionException execException = assertThrows( + ExecutionException.class, () -> fga.read(new ReadRequest()).get()); + + // Then + mockHttpClient.verify().post(postUrl).called(1); + ApiException exception = assertInstanceOf(ApiException.class, execException.getCause()); + assertEquals(500, exception.getCode()); + assertEquals( + "{\"code\":\"internal_error\",\"message\":\"Internal Server Error\"}", exception.getResponseBody()); + } + + /** + * Add or delete tuples from the store. + */ + @Test + public void writeTest_writes() throws Exception { + // Given + String postPath = "https://localhost/stores/01YCP46JKYM8FJCQ37NMBYHE5X/write"; + String expectedBody = String.format( + "{\"writes\":{\"tuple_keys\":[{\"object\":\"%s\",\"relation\":\"%s\",\"user\":\"%s\"}]},\"deletes\":null,\"authorization_model_id\":\"%s\"}", + DEFAULT_OBJECT, DEFAULT_RELATION, DEFAULT_USER, DEFAULT_AUTH_MODEL_ID); + mockHttpClient.onPost(postPath).withBody(is(expectedBody)).doReturn(200, EMPTY_RESPONSE_BODY); + WriteRequest request = new WriteRequest() + .authorizationModelId(DEFAULT_AUTH_MODEL_ID) + .writes(new TupleKeys() + .tupleKeys(List.of(new TupleKey() + ._object(DEFAULT_OBJECT) + .relation(DEFAULT_RELATION) + .user(DEFAULT_USER)))); + + // When + fga.write(request); + + // Then + mockHttpClient.verify().post(postPath).withBody(is(expectedBody)).called(1); + } + + /** + * Add or delete tuples from the store. + */ + @Test + public void writeTest_deletes() throws Exception { + // Given + String postPath = "https://localhost/stores/01YCP46JKYM8FJCQ37NMBYHE5X/write"; + String expectedBody = String.format( + "{\"writes\":null,\"deletes\":{\"tuple_keys\":[{\"object\":\"%s\",\"relation\":\"%s\",\"user\":\"%s\"}]},\"authorization_model_id\":\"%s\"}", + DEFAULT_OBJECT, DEFAULT_RELATION, DEFAULT_USER, DEFAULT_AUTH_MODEL_ID); + mockHttpClient.onPost(postPath).withBody(is(expectedBody)).doReturn(200, EMPTY_RESPONSE_BODY); + WriteRequest request = new WriteRequest() + .authorizationModelId(DEFAULT_AUTH_MODEL_ID) + .deletes(new TupleKeys() + .tupleKeys(List.of(new TupleKey() + ._object(DEFAULT_OBJECT) + .relation(DEFAULT_RELATION) + .user(DEFAULT_USER)))); + + // When + fga.write(request); + + // Then + mockHttpClient.verify().post(postPath).withBody(is(expectedBody)).called(1); + } + + @Test + public void write_storeIdRequired() { + // Given + clientConfiguration.storeId(null); + + // When + var exception = assertThrows(FgaInvalidParameterException.class, () -> fga.write(new WriteRequest()) + .get()); + + // Then + assertEquals( + "Required parameter storeId was invalid when calling ClientConfiguration.", exception.getMessage()); + } + + @Test + public void write_bodyRequired() { + // When + ExecutionException execException = + assertThrows(ExecutionException.class, () -> fga.write(null).get()); + + // Then + ApiException exception = assertInstanceOf(ApiException.class, execException.getCause()); + assertEquals("Missing the required parameter 'body' when calling write", exception.getMessage()); + } + + @Test + public void write_400() throws Exception { + // Given + String postUrl = "https://localhost/stores/01YCP46JKYM8FJCQ37NMBYHE5X/write"; + mockHttpClient + .onPost(postUrl) + .doReturn(400, "{\"code\":\"validation_error\",\"message\":\"Generic validation error\"}"); + + // When + ExecutionException execException = assertThrows( + ExecutionException.class, () -> fga.write(new WriteRequest()).get()); + + // Then + mockHttpClient.verify().post(postUrl).called(1); + ApiException exception = assertInstanceOf(ApiException.class, execException.getCause()); + assertEquals(400, exception.getCode()); + assertEquals( + "{\"code\":\"validation_error\",\"message\":\"Generic validation error\"}", + exception.getResponseBody()); + } + + @Test + public void write_404() throws Exception { + // Given + String postUrl = "https://localhost/stores/01YCP46JKYM8FJCQ37NMBYHE5X/write"; + mockHttpClient + .onPost(postUrl) + .doReturn(404, "{\"code\":\"undefined_endpoint\",\"message\":\"Endpoint not enabled\"}"); + + // When + ExecutionException execException = assertThrows( + ExecutionException.class, () -> fga.write(new WriteRequest()).get()); + + // Then + mockHttpClient.verify().post(postUrl).called(1); + ApiException exception = assertInstanceOf(ApiException.class, execException.getCause()); + assertEquals(404, exception.getCode()); + assertEquals( + "{\"code\":\"undefined_endpoint\",\"message\":\"Endpoint not enabled\"}", exception.getResponseBody()); + } + + @Test + public void write_500() throws Exception { + // Given + String postUrl = "https://localhost/stores/01YCP46JKYM8FJCQ37NMBYHE5X/write"; + mockHttpClient + .onPost(postUrl) + .doReturn(500, "{\"code\":\"internal_error\",\"message\":\"Internal Server Error\"}"); + + // When + ExecutionException execException = assertThrows( + ExecutionException.class, () -> fga.write(new WriteRequest()).get()); + + // Then + mockHttpClient.verify().post(postUrl).called(1); + ApiException exception = assertInstanceOf(ApiException.class, execException.getCause()); + assertEquals(500, exception.getCode()); + assertEquals( + "{\"code\":\"internal_error\",\"message\":\"Internal Server Error\"}", exception.getResponseBody()); + } + + /** + * Check whether a user is authorized to access an object. + */ + @Test + public void check() throws Exception { + // Given + String postUrl = String.format("https://localhost/stores/%s/check", DEFAULT_STORE_ID); + String expectedBody = String.format( + "{\"tuple_key\":{\"object\":\"%s\",\"relation\":\"%s\",\"user\":\"%s\"},\"contextual_tuples\":{\"tuple_keys\":[]},\"authorization_model_id\":\"01G5JAVJ41T49E9TT3SKVS7X1J\",\"trace\":null}", + DEFAULT_OBJECT, DEFAULT_RELATION, DEFAULT_USER); + mockHttpClient.onPost(postUrl).withBody(is(expectedBody)).doReturn(200, "{\"allowed\":true}"); + CheckRequest request = new CheckRequest() + .tupleKey(new TupleKey() + ._object(DEFAULT_OBJECT) + .relation(DEFAULT_RELATION) + .user(DEFAULT_USER)) + .contextualTuples(new ContextualTupleKeys()) + .authorizationModelId(DEFAULT_AUTH_MODEL_ID); + + // When + CheckResponse response = fga.check(request).get(); + + // Then + mockHttpClient.verify().post(postUrl).withBody(is(expectedBody)).called(1); + assertEquals(Boolean.TRUE, response.getAllowed()); + } + + @Test + public void check_storeIdRequired() { + // Given + clientConfiguration.storeId(null); + + // When + var exception = assertThrows(FgaInvalidParameterException.class, () -> fga.check(new CheckRequest()) + .get()); + + // Then + assertEquals( + "Required parameter storeId was invalid when calling ClientConfiguration.", exception.getMessage()); + } + + @Test + public void check_bodyRequired() { + // When + ExecutionException execException = + assertThrows(ExecutionException.class, () -> fga.check(null).get()); + + // Then + ApiException exception = assertInstanceOf(ApiException.class, execException.getCause()); + assertEquals("Missing the required parameter 'body' when calling check", exception.getMessage()); + } + + @Test + public void check_400() throws Exception { + // Given + String postUrl = String.format("https://localhost/stores/%s/check", DEFAULT_STORE_ID); + mockHttpClient + .onPost(postUrl) + .doReturn(400, "{\"code\":\"validation_error\",\"message\":\"Generic validation error\"}"); + + // When + ExecutionException execException = assertThrows( + ExecutionException.class, () -> fga.check(new CheckRequest()).get()); + + // Then + mockHttpClient.verify().post(postUrl).called(1); + ApiException exception = assertInstanceOf(ApiException.class, execException.getCause()); + assertEquals(400, exception.getCode()); + assertEquals( + "{\"code\":\"validation_error\",\"message\":\"Generic validation error\"}", + exception.getResponseBody()); + } + + @Test + public void check_404() throws Exception { + // Given + String postUrl = String.format("https://localhost/stores/%s/check", DEFAULT_STORE_ID); + mockHttpClient + .onPost(postUrl) + .doReturn(404, "{\"code\":\"undefined_endpoint\",\"message\":\"Endpoint not enabled\"}"); + + // When + ExecutionException execException = assertThrows( + ExecutionException.class, () -> fga.check(new CheckRequest()).get()); + + // Then + mockHttpClient.verify().post(postUrl).called(1); + ApiException exception = assertInstanceOf(ApiException.class, execException.getCause()); + assertEquals(404, exception.getCode()); + assertEquals( + "{\"code\":\"undefined_endpoint\",\"message\":\"Endpoint not enabled\"}", exception.getResponseBody()); + } + + @Test + public void check_500() throws Exception { + // Given + String postUrl = String.format("https://localhost/stores/%s/check", DEFAULT_STORE_ID); + mockHttpClient + .onPost(postUrl) + .doReturn(500, "{\"code\":\"internal_error\",\"message\":\"Internal Server Error\"}"); + + // When + ExecutionException execException = assertThrows( + ExecutionException.class, () -> fga.check(new CheckRequest()).get()); + + // Then + mockHttpClient.verify().post(postUrl).called(1); + ApiException exception = assertInstanceOf(ApiException.class, execException.getCause()); + assertEquals(500, exception.getCode()); + assertEquals( + "{\"code\":\"internal_error\",\"message\":\"Internal Server Error\"}", exception.getResponseBody()); + } + + /** + * Expand all relationships in userset tree format, and following userset rewrite rules. Useful to reason + * about and debug a certain relationship. + */ + @Test + public void expandTest() throws Exception { + // Given + String postPath = "https://localhost/stores/01YCP46JKYM8FJCQ37NMBYHE5X/expand"; + String expectedBody = String.format( + "{\"tuple_key\":{\"object\":\"%s\",\"relation\":\"%s\",\"user\":\"%s\"},\"authorization_model_id\":\"%s\"}", + DEFAULT_OBJECT, DEFAULT_RELATION, DEFAULT_USER, DEFAULT_AUTH_MODEL_ID); + String responseBody = String.format( + "{\"tree\":{\"root\":{\"union\":{\"nodes\":[{\"leaf\":{\"users\":{\"users\":[\"%s\"]}}}]}}}}", + DEFAULT_USER); + mockHttpClient.onPost(postPath).withBody(is(expectedBody)).doReturn(200, responseBody); + ExpandRequest request = new ExpandRequest() + .authorizationModelId(DEFAULT_AUTH_MODEL_ID) + .tupleKey(new TupleKey() + ._object(DEFAULT_OBJECT) + .relation(DEFAULT_RELATION) + .user(DEFAULT_USER)); + + // When + ExpandResponse response = fga.expand(request).get(); + + // Then + mockHttpClient.verify().post(postPath).withBody(is(expectedBody)).called(1); + assertNotNull(response.getTree()); + assertNotNull(response.getTree().getRoot()); + assertNotNull(response.getTree().getRoot().getUnion()); + assertNotNull(response.getTree().getRoot().getUnion().getNodes()); + assertEquals(1, response.getTree().getRoot().getUnion().getNodes().size()); + assertNotNull(response.getTree().getRoot().getUnion().getNodes().get(0)); + Node node = response.getTree().getRoot().getUnion().getNodes().get(0); + assertNotNull(node.getLeaf()); + assertNotNull(node.getLeaf().getUsers()); + assertNotNull(node.getLeaf().getUsers().getUsers()); + assertEquals(1, node.getLeaf().getUsers().getUsers().size()); + assertEquals(DEFAULT_USER, node.getLeaf().getUsers().getUsers().get(0)); + } + + @Test + public void expand_storeIdRequired() { + // Given + clientConfiguration.storeId(null); + + // When + var exception = assertThrows(FgaInvalidParameterException.class, () -> fga.expand(new ExpandRequest()) + .get()); + + // Then + assertEquals( + "Required parameter storeId was invalid when calling ClientConfiguration.", exception.getMessage()); + } + + @Test + public void expand_bodyRequired() { + // When + ExecutionException execException = + assertThrows(ExecutionException.class, () -> fga.expand(null).get()); + + // Then + ApiException exception = assertInstanceOf(ApiException.class, execException.getCause()); + assertEquals("Missing the required parameter 'body' when calling expand", exception.getMessage()); + } + + @Test + public void expand_400() throws Exception { + // Given + String postUrl = "https://localhost/stores/01YCP46JKYM8FJCQ37NMBYHE5X/expand"; + mockHttpClient + .onPost(postUrl) + .doReturn(400, "{\"code\":\"validation_error\",\"message\":\"Generic validation error\"}"); + + // When + ExecutionException execException = assertThrows( + ExecutionException.class, () -> fga.expand(new ExpandRequest()).get()); + + // Then + mockHttpClient.verify().post(postUrl).called(1); + ApiException exception = assertInstanceOf(ApiException.class, execException.getCause()); + assertEquals(400, exception.getCode()); + assertEquals( + "{\"code\":\"validation_error\",\"message\":\"Generic validation error\"}", + exception.getResponseBody()); + } + + @Test + public void expand_404() throws Exception { + // Given + String postUrl = "https://localhost/stores/01YCP46JKYM8FJCQ37NMBYHE5X/expand"; + mockHttpClient + .onPost(postUrl) + .doReturn(404, "{\"code\":\"undefined_endpoint\",\"message\":\"Endpoint not enabled\"}"); + + // When + ExecutionException execException = assertThrows( + ExecutionException.class, () -> fga.expand(new ExpandRequest()).get()); + + // Then + mockHttpClient.verify().post(postUrl).called(1); + ApiException exception = assertInstanceOf(ApiException.class, execException.getCause()); + assertEquals(404, exception.getCode()); + assertEquals( + "{\"code\":\"undefined_endpoint\",\"message\":\"Endpoint not enabled\"}", exception.getResponseBody()); + } + + @Test + public void expand_500() throws Exception { + // Given + String postUrl = "https://localhost/stores/01YCP46JKYM8FJCQ37NMBYHE5X/expand"; + mockHttpClient + .onPost(postUrl) + .doReturn(500, "{\"code\":\"internal_error\",\"message\":\"Internal Server Error\"}"); + + // When + ExecutionException execException = assertThrows( + ExecutionException.class, () -> fga.expand(new ExpandRequest()).get()); + + // Then + mockHttpClient.verify().post(postUrl).called(1); + ApiException exception = assertInstanceOf(ApiException.class, execException.getCause()); + assertEquals(500, exception.getCode()); + assertEquals( + "{\"code\":\"internal_error\",\"message\":\"Internal Server Error\"}", exception.getResponseBody()); + } + + /** + * List all objects of the given type that the user has a relation with. + */ + @Test + public void listObjectsTest() throws Exception { + // Given + String postPath = String.format("https://localhost/stores/%s/list-objects", DEFAULT_STORE_ID); + String expectedBody = String.format( + "{\"authorization_model_id\":\"%s\",\"type\":null,\"relation\":\"%s\",\"user\":\"%s\",\"contextual_tuples\":null}", + DEFAULT_AUTH_MODEL_ID, DEFAULT_RELATION, DEFAULT_USER); + mockHttpClient + .onPost(postPath) + .withBody(is(expectedBody)) + .doReturn(200, String.format("{\"objects\":[\"%s\"]}", DEFAULT_OBJECT)); + ListObjectsRequest request = new ListObjectsRequest() + .authorizationModelId(DEFAULT_AUTH_MODEL_ID) + .relation(DEFAULT_RELATION) + .user(DEFAULT_USER); + + // When + ListObjectsResponse response = fga.listObjects(request).get(); + + // Then + mockHttpClient.verify().post(postPath).withBody(is(expectedBody)).called(1); + assertEquals(List.of(DEFAULT_OBJECT), response.getObjects()); + } + + @Test + public void listObjects_storeIdRequired() { + // Given + clientConfiguration.storeId(null); + + // When + var exception = assertThrows(FgaInvalidParameterException.class, () -> fga.listObjects(new ListObjectsRequest()) + .get()); + + // Then + assertEquals( + "Required parameter storeId was invalid when calling ClientConfiguration.", exception.getMessage()); + } + + @Test + public void listObjects_bodyRequired() { + // When + ExecutionException execException = assertThrows( + ExecutionException.class, () -> fga.listObjects(null).get()); + + // Then + ApiException exception = assertInstanceOf(ApiException.class, execException.getCause()); + assertEquals("Missing the required parameter 'body' when calling listObjects", exception.getMessage()); + } + + @Test + public void listObjects_400() throws Exception { + // Given + String postUrl = String.format("https://localhost/stores/%s/list-objects", DEFAULT_STORE_ID); + mockHttpClient + .onPost(postUrl) + .doReturn(400, "{\"code\":\"validation_error\",\"message\":\"Generic validation error\"}"); + + // When + ExecutionException execException = + assertThrows(ExecutionException.class, () -> fga.listObjects(new ListObjectsRequest()) + .get()); + + // Then + mockHttpClient.verify().post(postUrl).called(1); + ApiException exception = assertInstanceOf(ApiException.class, execException.getCause()); + assertEquals(400, exception.getCode()); + assertEquals( + "{\"code\":\"validation_error\",\"message\":\"Generic validation error\"}", + exception.getResponseBody()); + } + + @Test + public void listObjects_404() throws Exception { + // Given + String postUrl = String.format("https://localhost/stores/%s/list-objects", DEFAULT_STORE_ID); + mockHttpClient + .onPost(postUrl) + .doReturn(404, "{\"code\":\"undefined_endpoint\",\"message\":\"Endpoint not enabled\"}"); + + // When + ExecutionException execException = + assertThrows(ExecutionException.class, () -> fga.listObjects(new ListObjectsRequest()) + .get()); + + // Then + mockHttpClient.verify().post(postUrl).called(1); + ApiException exception = assertInstanceOf(ApiException.class, execException.getCause()); + assertEquals(404, exception.getCode()); + assertEquals( + "{\"code\":\"undefined_endpoint\",\"message\":\"Endpoint not enabled\"}", exception.getResponseBody()); + } + + @Test + public void listObjects_500() throws Exception { + // Given + String postUrl = String.format("https://localhost/stores/%s/list-objects", DEFAULT_STORE_ID); + mockHttpClient + .onPost(postUrl) + .doReturn(500, "{\"code\":\"internal_error\",\"message\":\"Internal Server Error\"}"); + + // When + ExecutionException execException = + assertThrows(ExecutionException.class, () -> fga.listObjects(new ListObjectsRequest()) + .get()); + + // Then + mockHttpClient.verify().post(postUrl).called(1); + ApiException exception = assertInstanceOf(ApiException.class, execException.getCause()); + assertEquals(500, exception.getCode()); + assertEquals( + "{\"code\":\"internal_error\",\"message\":\"Internal Server Error\"}", exception.getResponseBody()); + } + + /** + * Read assertions for an authorization model ID. + */ + @Test + public void readAssertionsTest() throws Exception { + // Given + String getUrl = + String.format("https://localhost/stores/%s/assertions/%s", DEFAULT_STORE_ID, DEFAULT_AUTH_MODEL_ID); + String responseBody = String.format( + "{\"assertions\":[{\"tuple_key\":{\"object\":\"%s\",\"relation\":\"%s\",\"user\":\"%s\"},\"expectation\":true}]}", + DEFAULT_OBJECT, DEFAULT_RELATION, DEFAULT_USER); + mockHttpClient.onGet(getUrl).doReturn(200, responseBody); + + // When + ReadAssertionsResponse response = fga.readAssertions().get(); + + // Then + mockHttpClient.verify().get(getUrl).called(1); + assertNotNull(response.getAssertions()); + assertEquals(1, response.getAssertions().size()); + Assertion assertion = response.getAssertions().get(0); + assertNotNull(assertion); + assertTrue(assertion.getExpectation()); + assertEquals(DEFAULT_OBJECT, assertion.getTupleKey().getObject()); + assertEquals(DEFAULT_RELATION, assertion.getTupleKey().getRelation()); + assertEquals(DEFAULT_USER, assertion.getTupleKey().getUser()); + } + + @Test + public void readAssertions_storeIdRequired() { + // Given + clientConfiguration.storeId(null); + + // When + var exception = assertThrows( + FgaInvalidParameterException.class, () -> fga.readAssertions().get()); + + // Then + assertEquals( + "Required parameter storeId was invalid when calling ClientConfiguration.", exception.getMessage()); + } + + @Test + public void readAssertions_authModelIdRequired() { + // Given + clientConfiguration.authorizationModelId(null); + + // When + var exception = assertThrows( + FgaInvalidParameterException.class, () -> fga.readAssertions().get()); + + // Then + assertEquals( + "Required parameter authorizationModelId was invalid when calling ClientConfiguration.", + exception.getMessage()); + } + + @Test + public void readAssertions_400() throws Exception { + // Given + String getUrl = + String.format("https://localhost/stores/%s/assertions/%s", DEFAULT_STORE_ID, DEFAULT_AUTH_MODEL_ID); + mockHttpClient + .onGet(getUrl) + .doReturn(400, "{\"code\":\"validation_error\",\"message\":\"Generic validation error\"}"); + + // When + ExecutionException execException = assertThrows( + ExecutionException.class, () -> fga.readAssertions().get()); + + // Then + mockHttpClient.verify().get(getUrl).called(1); + ApiException exception = assertInstanceOf(ApiException.class, execException.getCause()); + assertEquals(400, exception.getCode()); + assertEquals( + "{\"code\":\"validation_error\",\"message\":\"Generic validation error\"}", + exception.getResponseBody()); + } + + @Test + public void readAssertions_404() throws Exception { + // Given + String getUrl = + String.format("https://localhost/stores/%s/assertions/%s", DEFAULT_STORE_ID, DEFAULT_AUTH_MODEL_ID); + mockHttpClient + .onGet(getUrl) + .doReturn(404, "{\"code\":\"undefined_endpoint\",\"message\":\"Endpoint not enabled\"}"); + + // When + ExecutionException execException = assertThrows( + ExecutionException.class, () -> fga.readAssertions().get()); + + // Then + mockHttpClient.verify().get(getUrl).called(1); + ApiException exception = assertInstanceOf(ApiException.class, execException.getCause()); + assertEquals(404, exception.getCode()); + assertEquals( + "{\"code\":\"undefined_endpoint\",\"message\":\"Endpoint not enabled\"}", exception.getResponseBody()); + } + + @Test + public void readAssertions_500() throws Exception { + // Given + String getUrl = + String.format("https://localhost/stores/%s/assertions/%s", DEFAULT_STORE_ID, DEFAULT_AUTH_MODEL_ID); + mockHttpClient + .onGet(getUrl) + .doReturn(500, "{\"code\":\"internal_error\",\"message\":\"Internal Server Error\"}"); + + // When + ExecutionException execException = assertThrows( + ExecutionException.class, () -> fga.readAssertions().get()); + + // Then + mockHttpClient.verify().get(getUrl).called(1); + ApiException exception = assertInstanceOf(ApiException.class, execException.getCause()); + assertEquals(500, exception.getCode()); + assertEquals( + "{\"code\":\"internal_error\",\"message\":\"Internal Server Error\"}", exception.getResponseBody()); + } + + /** + * Upsert assertions for an authorization model ID. + */ + @Test + public void writeAssertionsTest() throws Exception { + // Given + String putUrl = + String.format("https://localhost/stores/%s/assertions/%s", DEFAULT_STORE_ID, DEFAULT_AUTH_MODEL_ID); + String expectedBody = String.format( + "{\"assertions\":[{\"tuple_key\":{\"object\":\"%s\",\"relation\":\"%s\",\"user\":\"%s\"},\"expectation\":true}]}", + DEFAULT_OBJECT, DEFAULT_RELATION, DEFAULT_USER); + mockHttpClient.onPut(putUrl).withBody(is(expectedBody)).doReturn(200, EMPTY_RESPONSE_BODY); + WriteAssertionsRequest request = new WriteAssertionsRequest() + .assertions(List.of(new Assertion() + .tupleKey(new TupleKey() + ._object(DEFAULT_OBJECT) + .relation(DEFAULT_RELATION) + .user(DEFAULT_USER)) + .expectation(true))); + + // When + fga.writeAssertions(request).get(); + + // Then + mockHttpClient.verify().put(putUrl).withBody(is(expectedBody)).called(1); + } + + @Test + public void writeAssertions_storeIdRequired() { + // Given + clientConfiguration.storeId(null); + + // When + var exception = + assertThrows(FgaInvalidParameterException.class, () -> fga.writeAssertions(new WriteAssertionsRequest()) + .get()); + + // Then + assertEquals( + "Required parameter storeId was invalid when calling ClientConfiguration.", exception.getMessage()); + } + + @Test + public void writeAssertions_authModelIdRequired() { + // Given + clientConfiguration.authorizationModelId(null); + + // When + var exception = + assertThrows(FgaInvalidParameterException.class, () -> fga.writeAssertions(new WriteAssertionsRequest()) + .get()); + + // Then + assertEquals( + "Required parameter authorizationModelId was invalid when calling ClientConfiguration.", + exception.getMessage()); + } + + @Test + public void writeAssertions_bodyRequired() { + // When + ExecutionException execException = assertThrows( + ExecutionException.class, () -> fga.writeAssertions(null).get()); + + // Then + ApiException exception = assertInstanceOf(ApiException.class, execException.getCause()); + assertEquals("Missing the required parameter 'body' when calling writeAssertions", exception.getMessage()); + } + + @Test + public void writeAssertions_400() throws Exception { + // Given + String putUrl = + String.format("https://localhost/stores/%s/assertions/%s", DEFAULT_STORE_ID, DEFAULT_AUTH_MODEL_ID); + mockHttpClient + .onPut(putUrl) + .doReturn(400, "{\"code\":\"validation_error\",\"message\":\"Generic validation error\"}"); + + // When + ExecutionException execException = + assertThrows(ExecutionException.class, () -> fga.writeAssertions(new WriteAssertionsRequest()) + .get()); + + // Then + mockHttpClient.verify().put(putUrl).called(1); + ApiException exception = assertInstanceOf(ApiException.class, execException.getCause()); + assertEquals(400, exception.getCode()); + assertEquals( + "{\"code\":\"validation_error\",\"message\":\"Generic validation error\"}", + exception.getResponseBody()); + } + + @Test + public void writeAssertions_404() throws Exception { + // Given + String putUrl = + String.format("https://localhost/stores/%s/assertions/%s", DEFAULT_STORE_ID, DEFAULT_AUTH_MODEL_ID); + mockHttpClient + .onPut(putUrl) + .doReturn(404, "{\"code\":\"undefined_endpoint\",\"message\":\"Endpoint not enabled\"}"); + + // When + ExecutionException execException = + assertThrows(ExecutionException.class, () -> fga.writeAssertions(new WriteAssertionsRequest()) + .get()); + + // Then + mockHttpClient.verify().put(putUrl).called(1); + ApiException exception = assertInstanceOf(ApiException.class, execException.getCause()); + assertEquals(404, exception.getCode()); + assertEquals( + "{\"code\":\"undefined_endpoint\",\"message\":\"Endpoint not enabled\"}", exception.getResponseBody()); + } + + @Test + public void writeAssertions_500() throws Exception { + // Given + String putUrl = + String.format("https://localhost/stores/%s/assertions/%s", DEFAULT_STORE_ID, DEFAULT_AUTH_MODEL_ID); + mockHttpClient + .onPut(putUrl) + .doReturn(500, "{\"code\":\"internal_error\",\"message\":\"Internal Server Error\"}"); + + // When + ExecutionException execException = + assertThrows(ExecutionException.class, () -> fga.writeAssertions(new WriteAssertionsRequest()) + .get()); + + // Then + mockHttpClient.verify().put(putUrl).called(1); + ApiException exception = assertInstanceOf(ApiException.class, execException.getCause()); + assertEquals(500, exception.getCode()); + assertEquals( + "{\"code\":\"internal_error\",\"message\":\"Internal Server Error\"}", exception.getResponseBody()); + } +} From 58b65af1d07ea17b253caa9bf54578cf4d206da4 Mon Sep 17 00:00:00 2001 From: "Justin \"J.R.\" Hill" Date: Fri, 22 Sep 2023 12:42:17 -0700 Subject: [PATCH 04/22] test: Generate coverage reports after tests --- build.gradle | 11 +++++++++++ 1 file changed, 11 insertions(+) diff --git a/build.gradle b/build.gradle index 156bc95..993799e 100644 --- a/build.gradle +++ b/build.gradle @@ -2,6 +2,7 @@ plugins { id 'java' // Quality + id 'jacoco' id 'jvm-test-suite' id 'com.diffplug.spotless' version '6.20.0' @@ -36,6 +37,16 @@ javadoc { options.addStringOption('Xdoclint:none', '-quiet') } +test { + // JaCoCo coverage report is always generated after tests run. + finalizedBy jacocoTestReport +} + +jacocoTestReport { + // tests are required to run before generating a JaCoCo coverage report. + dependsOn test +} + ext { jackson_version = "2.14.1" junit_version = "5.7.1" From 4d4f5bcd7c48aa881784c3a7aa18cdbf29acf06f Mon Sep 17 00:00:00 2001 From: "Justin \"J.R.\" Hill" Date: Fri, 22 Sep 2023 16:48:39 -0700 Subject: [PATCH 05/22] test: Add tests on OpenFgaClient's set methods --- .../sdk/api/client/OpenFgaClientTest.java | 54 +++++++++++++++++++ 1 file changed, 54 insertions(+) diff --git a/src/test/java/dev/openfga/sdk/api/client/OpenFgaClientTest.java b/src/test/java/dev/openfga/sdk/api/client/OpenFgaClientTest.java index 09fa669..9f93dff 100644 --- a/src/test/java/dev/openfga/sdk/api/client/OpenFgaClientTest.java +++ b/src/test/java/dev/openfga/sdk/api/client/OpenFgaClientTest.java @@ -1578,4 +1578,58 @@ public void writeAssertions_500() throws Exception { assertEquals( "{\"code\":\"internal_error\",\"message\":\"Internal Server Error\"}", exception.getResponseBody()); } + + /** + * Miscellaneous client behavior tests. + */ + @Test + public void setStoreId() throws Exception { + // Given + String alternateStoreId = "A_UNIQUE_ID"; + fga.setStoreId(alternateStoreId); + String getUrl = String.format("https://localhost/stores/%s", alternateStoreId); + String responseBody = String.format("{\"id\":\"%s\",\"name\":\"%s\"}", alternateStoreId, DEFAULT_STORE_NAME); + mockHttpClient.onGet(getUrl).doReturn(200, responseBody); + + // When + GetStoreResponse response = fga.getStore().get(); + + // Then + mockHttpClient.verify().get(getUrl).called(1); + assertEquals(alternateStoreId, response.getId()); + assertEquals(DEFAULT_STORE_NAME, response.getName()); + assertEquals( + alternateStoreId, + clientConfiguration.getStoreId(), + "OpenFgaClient.setStoreId(String) is expected to persist its Store ID in its ClientConfiguration." + + "If this behavior ever changes, it could be a subtle breaking change."); + } + + @Test + public void setAuthorizationModelId() throws Exception { + // Given + String alternateAuthorizationModelId = "A_UNIQUE_ID"; + fga.setAuthorizationModelId(alternateAuthorizationModelId); + String getUrl = String.format( + "https://localhost/stores/%s/authorization-models/%s", DEFAULT_STORE_ID, alternateAuthorizationModelId); + String getResponse = String.format( + "{\"authorization_model\":{\"id\":\"%s\",\"schema_version\":\"%s\"}}", + alternateAuthorizationModelId, DEFAULT_SCHEMA_VERSION); + mockHttpClient.onGet(getUrl).doReturn(200, getResponse); + + // When + ReadAuthorizationModelResponse response = fga.readAuthorizationModel().get(); + + // Then + mockHttpClient.verify().get(getUrl).called(1); + assertNotNull(response.getAuthorizationModel()); + assertEquals( + alternateAuthorizationModelId, response.getAuthorizationModel().getId()); + assertEquals(DEFAULT_SCHEMA_VERSION, response.getAuthorizationModel().getSchemaVersion()); + assertEquals( + alternateAuthorizationModelId, + clientConfiguration.getAuthorizationModelId(), + "OpenFgaClient.setAuthorizationModelId(String) is expected to persist its Authorization Model ID in its ClientConfiguration." + + "If this behavior ever changes, it could be a subtle breaking change."); + } } From 62176c29f1bf33baf9dd288938b92f423250f461 Mon Sep 17 00:00:00 2001 From: "Justin \"J.R.\" Hill" Date: Mon, 25 Sep 2023 14:43:33 -0700 Subject: [PATCH 06/22] test: Add tests on OpenFgaClient with static & credential-based OAuth2 tokens --- .../openfga/sdk/api/client/OpenFgaClient.java | 11 ++- .../sdk/api/client/OpenFgaClientTest.java | 81 +++++++++++++++++++ 2 files changed, 90 insertions(+), 2 deletions(-) diff --git a/src/main/java/dev/openfga/sdk/api/client/OpenFgaClient.java b/src/main/java/dev/openfga/sdk/api/client/OpenFgaClient.java index 3dc09fa..9b6b4e1 100644 --- a/src/main/java/dev/openfga/sdk/api/client/OpenFgaClient.java +++ b/src/main/java/dev/openfga/sdk/api/client/OpenFgaClient.java @@ -21,14 +21,16 @@ import java.util.concurrent.CompletableFuture; public class OpenFgaClient { - private final ClientConfiguration configuration; - private final OpenFgaApi api; + private ApiClient apiClient; + private ClientConfiguration configuration; + private OpenFgaApi api; private static final String CLIENT_BULK_REQUEST_ID_HEADER = "X-OpenFGA-Client-Bulk-Request-Id"; private static final String CLIENT_METHOD_HEADER = "X-OpenFGA-Client-Method"; private static final int DEFAULT_MAX_METHOD_PARALLEL_REQS = 10; public OpenFgaClient(ApiClient apiClient, ClientConfiguration configuration) throws FgaInvalidParameterException { + this.apiClient = apiClient; this.configuration = configuration; this.api = new OpenFgaApi(apiClient, configuration); } @@ -45,6 +47,11 @@ public void setAuthorizationModelId(String authorizationModelId) { configuration.authorizationModelId(authorizationModelId); } + public void setConfiguration(ClientConfiguration configuration) throws FgaInvalidParameterException { + this.configuration = configuration; + this.api = new OpenFgaApi(apiClient, configuration); + } + /* ******** * Stores * **********/ diff --git a/src/test/java/dev/openfga/sdk/api/client/OpenFgaClientTest.java b/src/test/java/dev/openfga/sdk/api/client/OpenFgaClientTest.java index 9f93dff..e329700 100644 --- a/src/test/java/dev/openfga/sdk/api/client/OpenFgaClientTest.java +++ b/src/test/java/dev/openfga/sdk/api/client/OpenFgaClientTest.java @@ -63,6 +63,87 @@ public void beforeEachTest() throws Exception { fga = new OpenFgaClient(mockApiClient, clientConfiguration); } + /* ****************** + * Credential tests * + ********************/ + @Test + public void createStore_withApiToken() throws Exception { + // Given + String apiToken = "some-static-token"; + clientConfiguration.credentials(new Credentials(new ApiToken(apiToken))); + fga.setConfiguration(clientConfiguration); + String expectedBody = String.format("{\"name\":\"%s\"}", DEFAULT_STORE_NAME); + String requestBody = String.format("{\"id\":\"%s\",\"name\":\"%s\"}", DEFAULT_STORE_ID, DEFAULT_STORE_NAME); + mockHttpClient + .onPost("https://localhost/stores") + .withBody(is(expectedBody)) + .withHeader("Authorization", String.format("Bearer %s", apiToken)) + .doReturn(201, requestBody); + CreateStoreRequest request = new CreateStoreRequest().name(DEFAULT_STORE_NAME); + + // When + CreateStoreResponse response = fga.createStore(request).get(); + + // Then + mockHttpClient + .verify() + .post("https://localhost/stores") + .withBody(is(expectedBody)) + .withHeader("Authorization", String.format("Bearer %s", apiToken)) + .called(1); + assertEquals(DEFAULT_STORE_ID, response.getId()); + assertEquals(DEFAULT_STORE_NAME, response.getName()); + } + + @Test + public void createStore_withClientCredentials() throws Exception { + // Given + String apiTokenIssuer = "oauth2.server"; + String clientId = "some-client-id"; + String clientSecret = "some-client-secret"; + String apiToken = "some-generated-token"; + String apiAudience = "some-audience"; + clientConfiguration.credentials(new Credentials(new ClientCredentials() + .clientId(clientId) + .clientSecret(clientSecret) + .apiTokenIssuer(apiTokenIssuer) + .apiAudience(apiAudience))); + fga.setConfiguration(clientConfiguration); + + String expectedOAuth2Body = String.format( + "{\"client_id\":\"%s\",\"client_secret\":\"%s\",\"audience\":\"%s\",\"grant_type\":\"client_credentials\"}", + clientId, clientSecret, apiAudience); + String expectedBody = String.format("{\"name\":\"%s\"}", DEFAULT_STORE_NAME); + String requestBody = String.format("{\"id\":\"%s\",\"name\":\"%s\"}", DEFAULT_STORE_ID, DEFAULT_STORE_NAME); + mockHttpClient + .onPost(String.format("https://%s/oauth/token", apiTokenIssuer)) + .withBody(is(expectedOAuth2Body)) + .doReturn(200, String.format("{\"access_token\":\"%s\"}", apiToken)); + mockHttpClient + .onPost("https://localhost/stores") + .withBody(is(expectedBody)) + .withHeader("Authorization", String.format("Bearer %s", apiToken)) + .doReturn(201, requestBody); + CreateStoreRequest request = new CreateStoreRequest().name(DEFAULT_STORE_NAME); + + // When + CreateStoreResponse response = fga.createStore(request).get(); + + // Then + mockHttpClient + .verify() + .post(String.format("https://%s/oauth/token", apiTokenIssuer)) + .called(1); + mockHttpClient + .verify() + .post("https://localhost/stores") + .withBody(is(expectedBody)) + .withHeader("Authorization", String.format("Bearer %s", apiToken)) + .called(1); + assertEquals(DEFAULT_STORE_ID, response.getId()); + assertEquals(DEFAULT_STORE_NAME, response.getName()); + } + /** * List all stores. */ From 916f89ecb0197bbf9dbc8f8394a88ec875533091 Mon Sep 17 00:00:00 2001 From: "Justin \"J.R.\" Hill" Date: Mon, 25 Sep 2023 17:45:53 -0700 Subject: [PATCH 07/22] test: Add tests on OpenFgaClient writeTuples() deleteTuples() and readLatestAuthorizationModel() --- .../sdk/api/client/OpenFgaClientTest.java | 63 +++++++++++++++++++ 1 file changed, 63 insertions(+) diff --git a/src/test/java/dev/openfga/sdk/api/client/OpenFgaClientTest.java b/src/test/java/dev/openfga/sdk/api/client/OpenFgaClientTest.java index e329700..2a8ee98 100644 --- a/src/test/java/dev/openfga/sdk/api/client/OpenFgaClientTest.java +++ b/src/test/java/dev/openfga/sdk/api/client/OpenFgaClientTest.java @@ -557,6 +557,27 @@ public void readAuthorizationModels_500() throws Exception { "{\"code\":\"internal_error\",\"message\":\"Internal Server Error\"}", exception.getResponseBody()); } + @Test + public void readLatestAuthorizationModelTest() throws Exception { + // Given + String getUrl = String.format("https://localhost/stores/%s/authorization-models?page_size=1", DEFAULT_STORE_ID); + String responseBody = String.format( + "{\"authorization_models\":[{\"id\":\"%s\",\"schema_version\":\"%s\"}]}", + DEFAULT_AUTH_MODEL_ID, DEFAULT_SCHEMA_VERSION); + mockHttpClient.onGet(getUrl).doReturn(200, responseBody); + + // When + ReadAuthorizationModelResponse response = + fga.readLatestAuthorizationModel().get(); + + // Then + mockHttpClient.verify().get(getUrl).called(1); + assertNotNull(response.getAuthorizationModel()); + AuthorizationModel authModel = response.getAuthorizationModel(); + assertEquals(DEFAULT_AUTH_MODEL_ID, authModel.getId()); + assertEquals(DEFAULT_SCHEMA_VERSION, authModel.getSchemaVersion()); + } + /** * Create a new authorization model. */ @@ -961,6 +982,48 @@ public void writeTest_deletes() throws Exception { mockHttpClient.verify().post(postPath).withBody(is(expectedBody)).called(1); } + @Test + public void writeTuplesTest() throws Exception { + // Given + String postPath = String.format("https://localhost/stores/%s/write", DEFAULT_STORE_ID); + String expectedBody = String.format( + "{\"writes\":{\"tuple_keys\":[{\"object\":\"%s\",\"relation\":\"%s\",\"user\":\"%s\"}]},\"deletes\":null,\"authorization_model_id\":\"%s\"}", + DEFAULT_OBJECT, DEFAULT_RELATION, DEFAULT_USER, DEFAULT_AUTH_MODEL_ID); + mockHttpClient.onPost(postPath).withBody(is(expectedBody)).doReturn(200, EMPTY_RESPONSE_BODY); + TupleKeys tuples = new TupleKeys() + .tupleKeys(List.of(new TupleKey() + ._object(DEFAULT_OBJECT) + .relation(DEFAULT_RELATION) + .user(DEFAULT_USER))); + + // When + fga.writeTuples(tuples); + + // Then + mockHttpClient.verify().post(postPath).withBody(is(expectedBody)).called(1); + } + + @Test + public void deleteTuplesTest() throws Exception { + // Given + String postPath = String.format("https://localhost/stores/%s/write", DEFAULT_STORE_ID); + String expectedBody = String.format( + "{\"writes\":null,\"deletes\":{\"tuple_keys\":[{\"object\":\"%s\",\"relation\":\"%s\",\"user\":\"%s\"}]},\"authorization_model_id\":\"%s\"}", + DEFAULT_OBJECT, DEFAULT_RELATION, DEFAULT_USER, DEFAULT_AUTH_MODEL_ID); + mockHttpClient.onPost(postPath).withBody(is(expectedBody)).doReturn(200, EMPTY_RESPONSE_BODY); + TupleKeys tuples = new TupleKeys() + .tupleKeys(List.of(new TupleKey() + ._object(DEFAULT_OBJECT) + .relation(DEFAULT_RELATION) + .user(DEFAULT_USER))); + + // When + fga.deleteTuples(tuples); + + // Then + mockHttpClient.verify().post(postPath).withBody(is(expectedBody)).called(1); + } + @Test public void write_storeIdRequired() { // Given From 1fe2aef60d0a7de115886b8d9f0bde247b0c6ff3 Mon Sep 17 00:00:00 2001 From: "Justin \"J.R.\" Hill" Date: Mon, 25 Sep 2023 17:47:52 -0700 Subject: [PATCH 08/22] fix: fix casing of function OpenFgaClient.readChanges(...) --- src/main/java/dev/openfga/sdk/api/client/OpenFgaClient.java | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/main/java/dev/openfga/sdk/api/client/OpenFgaClient.java b/src/main/java/dev/openfga/sdk/api/client/OpenFgaClient.java index 9b6b4e1..1b61849 100644 --- a/src/main/java/dev/openfga/sdk/api/client/OpenFgaClient.java +++ b/src/main/java/dev/openfga/sdk/api/client/OpenFgaClient.java @@ -164,7 +164,7 @@ public CompletableFuture readLatestAuthorization * * @throws FgaInvalidParameterException When the Store ID is null, empty, or whitespace */ - public CompletableFuture ReadChanges(ReadChangesOptions options) + public CompletableFuture readChanges(ReadChangesOptions options) throws FgaInvalidParameterException { configuration.assertValid(); String storeId = configuration.getStoreIdChecked(); From 012131f51e7892ecb112ce1e82dfd0ab87d41852 Mon Sep 17 00:00:00 2001 From: "Justin \"J.R.\" Hill" Date: Tue, 26 Sep 2023 09:55:59 -0700 Subject: [PATCH 09/22] test: Ensure testing from OAuth2 workflow caches a first result --- .../openfga/sdk/api/client/OpenFgaClientTest.java | 14 ++++++++++---- 1 file changed, 10 insertions(+), 4 deletions(-) diff --git a/src/test/java/dev/openfga/sdk/api/client/OpenFgaClientTest.java b/src/test/java/dev/openfga/sdk/api/client/OpenFgaClientTest.java index 2a8ee98..9190552 100644 --- a/src/test/java/dev/openfga/sdk/api/client/OpenFgaClientTest.java +++ b/src/test/java/dev/openfga/sdk/api/client/OpenFgaClientTest.java @@ -127,21 +127,27 @@ public void createStore_withClientCredentials() throws Exception { CreateStoreRequest request = new CreateStoreRequest().name(DEFAULT_STORE_NAME); // When - CreateStoreResponse response = fga.createStore(request).get(); + // We call two times to ensure the token is cached after the first request. + CreateStoreResponse response1 = fga.createStore(request).get(); + CreateStoreResponse response2 = fga.createStore(request).get(); // Then + // OAuth2 server should be called 1 time. mockHttpClient .verify() .post(String.format("https://%s/oauth/token", apiTokenIssuer)) .called(1); + // OpenFGA server should be called 2 times. mockHttpClient .verify() .post("https://localhost/stores") .withBody(is(expectedBody)) .withHeader("Authorization", String.format("Bearer %s", apiToken)) - .called(1); - assertEquals(DEFAULT_STORE_ID, response.getId()); - assertEquals(DEFAULT_STORE_NAME, response.getName()); + .called(2); + assertEquals(DEFAULT_STORE_ID, response1.getId()); + assertEquals(DEFAULT_STORE_NAME, response1.getName()); + assertEquals(DEFAULT_STORE_ID, response2.getId()); + assertEquals(DEFAULT_STORE_NAME, response2.getName()); } /** From 8faca2520d9eca07d42ae81216341212dbd3a61e Mon Sep 17 00:00:00 2001 From: "Justin \"J.R.\" Hill" Date: Tue, 26 Sep 2023 10:30:54 -0700 Subject: [PATCH 10/22] fix: remove some duplication in ClientConfiguration --- .../sdk/api/configuration/ClientConfiguration.java | 14 ++++++++------ 1 file changed, 8 insertions(+), 6 deletions(-) diff --git a/src/main/java/dev/openfga/sdk/api/configuration/ClientConfiguration.java b/src/main/java/dev/openfga/sdk/api/configuration/ClientConfiguration.java index afdb40c..5cd9bb5 100644 --- a/src/main/java/dev/openfga/sdk/api/configuration/ClientConfiguration.java +++ b/src/main/java/dev/openfga/sdk/api/configuration/ClientConfiguration.java @@ -27,6 +27,12 @@ public void assertValidStoreId() throws FgaInvalidParameterException { } } + public void assertValidAuthorizationModelId() throws FgaInvalidParameterException { + if (isNullOrWhitespace(authorizationModelId)) { + throw new FgaInvalidParameterException("authorizationModelId", "ClientConfiguration"); + } + } + /** * Set the Store ID. * @@ -54,9 +60,7 @@ public String getStoreId() { * @throws FgaInvalidParameterException when the Store ID is null, empty, or whitespace */ public String getStoreIdChecked() throws FgaInvalidParameterException { - if (isNullOrWhitespace(storeId)) { - throw new FgaInvalidParameterException("storeId", "ClientConfiguration"); - } + assertValidStoreId(); return storeId; } @@ -87,9 +91,7 @@ public String getAuthorizationModelId() { * @throws FgaInvalidParameterException when the Authorization Model ID is null, empty, or whitespace */ public String getAuthorizationModelIdChecked() throws FgaInvalidParameterException { - if (isNullOrWhitespace(authorizationModelId)) { - throw new FgaInvalidParameterException("authorizationModelId", "ClientConfiguration"); - } + assertValidAuthorizationModelId(); return authorizationModelId; } From 34c00b348a460d85194a6b08b9aa196394ed99be Mon Sep 17 00:00:00 2001 From: "Justin \"J.R.\" Hill" Date: Tue, 26 Sep 2023 11:53:47 -0700 Subject: [PATCH 11/22] test: Add test for OpenFgaClient list stores with option --- README.md | 24 +++++++++++++++++++ .../sdk/api/client/OpenFgaClientTest.java | 23 ++++++++++++++++++ 2 files changed, 47 insertions(+) diff --git a/README.md b/README.md index f2213ba..241d58a 100644 --- a/README.md +++ b/README.md @@ -106,6 +106,12 @@ Get a paginated list of stores. [API Documentation](https://openfga.dev/api/service/docs/api#/Stores/ListStores) ```java +var options = new ListStoresOptions() + .pageSize(10) + .continuationToken("..."); +var stores = fgaClient.listStores(options); + +// stores = [{ "id": "01FQH7V8BEG3GPQW93KTRFR8JB", "name": "FGA Demo Store", "created_at": "2022-01-01T00:00:00.000Z", "updated_at": "2022-01-01T00:00:00.000Z" }] ``` ##### Create Store @@ -292,6 +298,24 @@ Update the assertions for a particular authorization model. ### API Endpoints +| Method | HTTP request | Description | +| ------------- | ------------- | ------------- | +| [**check**](docs/OpenFgaApi.md#check) | **POST** /stores/{store_id}/check | Check whether a user is authorized to access an object | +| [**createStore**](docs/OpenFgaApi.md#createstore) | **POST** /stores | Create a store | +| [**deleteStore**](docs/OpenFgaApi.md#deletestore) | **DELETE** /stores/{store_id} | Delete a store | +| [**expand**](docs/OpenFgaApi.md#expand) | **POST** /stores/{store_id}/expand | Expand all relationships in userset tree format, and following userset rewrite rules. Useful to reason about and debug a certain relationship | +| [**getStore**](docs/OpenFgaApi.md#getstore) | **GET** /stores/{store_id} | Get a store | +| [**listObjects**](docs/OpenFgaApi.md#listobjects) | **POST** /stores/{store_id}/list-objects | List all objects of the given type that the user has a relation with | +| [**listStores**](docs/OpenFgaApi.md#liststores) | **GET** /stores | List all stores | +| [**read**](docs/OpenFgaApi.md#read) | **POST** /stores/{store_id}/read | Get tuples from the store that matches a query, without following userset rewrite rules | +| [**readAssertions**](docs/OpenFgaApi.md#readassertions) | **GET** /stores/{store_id}/assertions/{authorization_model_id} | Read assertions for an authorization model ID | +| [**readAuthorizationModel**](docs/OpenFgaApi.md#readauthorizationmodel) | **GET** /stores/{store_id}/authorization-models/{id} | Return a particular version of an authorization model | +| [**readAuthorizationModels**](docs/OpenFgaApi.md#readauthorizationmodels) | **GET** /stores/{store_id}/authorization-models | Return all the authorization models for a particular store | +| [**readChanges**](docs/OpenFgaApi.md#readchanges) | **GET** /stores/{store_id}/changes | Return a list of all the tuple changes | +| [**write**](docs/OpenFgaApi.md#write) | **POST** /stores/{store_id}/write | Add or delete tuples from the store | +| [**writeAssertions**](docs/OpenFgaApi.md#writeassertions) | **PUT** /stores/{store_id}/assertions/{authorization_model_id} | Upsert assertions for an authorization model ID | +| [**writeAuthorizationModel**](docs/OpenFgaApi.md#writeauthorizationmodel) | **POST** /stores/{store_id}/authorization-models | Create a new authorization model | + ### Models diff --git a/src/test/java/dev/openfga/sdk/api/client/OpenFgaClientTest.java b/src/test/java/dev/openfga/sdk/api/client/OpenFgaClientTest.java index 9190552..4c91839 100644 --- a/src/test/java/dev/openfga/sdk/api/client/OpenFgaClientTest.java +++ b/src/test/java/dev/openfga/sdk/api/client/OpenFgaClientTest.java @@ -171,6 +171,29 @@ public void listStoresTest() throws Exception { assertEquals(DEFAULT_STORE_NAME, response.getStores().get(0).getName()); } + @Test + public void listStoresTest_withOptions() throws Exception { + // Given + String responseBody = + String.format("{\"stores\":[{\"id\":\"%s\",\"name\":\"%s\"}]}", DEFAULT_STORE_ID, DEFAULT_STORE_NAME); + int pageSize = 10; + String continuationToken = "continuationToken"; + String getUrl = String.format( + "https://localhost/stores?page_size=%d&continuation_token=%s", pageSize, continuationToken); + mockHttpClient.onGet(getUrl).doReturn(200, responseBody); + ListStoresOptions options = new ListStoresOptions().pageSize(pageSize).continuationToken(continuationToken); + + // When + ListStoresResponse response = fga.listStores(options).get(); + + // Then + mockHttpClient.verify().get(getUrl).called(1); + assertNotNull(response.getStores()); + assertEquals(1, response.getStores().size()); + assertEquals(DEFAULT_STORE_ID, response.getStores().get(0).getId()); + assertEquals(DEFAULT_STORE_NAME, response.getStores().get(0).getName()); + } + /** * Create a store. */ From 7f69f242d14885b1f4360633b8d5bbf0d7eb4ac0 Mon Sep 17 00:00:00 2001 From: "Justin \"J.R.\" Hill" Date: Tue, 26 Sep 2023 12:20:50 -0700 Subject: [PATCH 12/22] docs: Add more example api calls --- README.md | 54 ++++++++++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 54 insertions(+) diff --git a/README.md b/README.md index 241d58a..722aef0 100644 --- a/README.md +++ b/README.md @@ -121,6 +121,17 @@ Initialize a store. [API Documentation](https://openfga.dev/api/service/docs/api#/Stores/CreateStore) ```java +var request = new CreateStoreRequest().name("FGA Demo"); +var store = fgaClient.createStore(request).get(); + +// store.getId() = "01FQH7V8BEG3GPQW93KTRFR8JB" + +// store the store.getId() in database + +// update the storeId of the client instance +fgaClient.setStoreId(store.getId()); + +// continue calling the API normally ``` ##### Get Store @@ -132,6 +143,9 @@ Get information about the current store. > Requires a client initialized with a storeId ```java +var store = fgaClient.getStore().get(); + +// store = { "id": "01FQH7V8BEG3GPQW93KTRFR8JB", "name": "FGA Demo Store", "created_at": "2022-01-01T00:00:00.000Z", "updated_at": "2022-01-01T00:00:00.000Z" } ``` ##### Delete Store @@ -143,6 +157,7 @@ Delete a store. > Requires a client initialized with a storeId ```java +var store = await fgaClient.deleteStore().get(); ``` #### Authorization Models @@ -154,6 +169,14 @@ Read all authorization models in the store. [API Documentation](https://openfga.dev/api/service#/Authorization%20Models/ReadAuthorizationModels) ```java +var options = new ReadAuthorizationModelsOptions() + .pageSize(10) + .continuationToken("..."); +var response = fgaClient.readAuthorizationModels(options).get(); + +// response.getAuthorizationModels() = [ +// { id: "01GXSA8YR785C4FYS3C0RTG7B1", schemaVersion: "1.1", typeDefinitions: [...] }, +// { id: "01GXSBM5PVYHCJNRNKXMB4QZTW", schemaVersion: "1.1", typeDefinitions: [...] }]; ``` ##### Write Authorization Model @@ -169,6 +192,37 @@ Create a new authorization model. > You can use the OpenFGA [CLI](https://github.com/openfga/cli) or [Syntax Transformer](https://github.com/openfga/syntax-transformer) to convert between the OpenFGA DSL and the JSON authorization model. ```java + +var request = new WriteAuthorizationModelRequest() + .schemaVersion("1.1") + .typeDefinitions(List.of( + new TypeDefinition().type("user").relations(Map.of()), + new TypeDefinition() + .type("document") + .relations(Map.of( + "writer", new Userset(), + "viewer", new Userset().union(new Usersets() + .child(List.of( + new Userset(), + new Userset().computedUserset(new ObjectRelation().relation("writer")) + )) + ) + )) + .metadata(new Metadata() + .relations(Map.of( + "writer", new RelationMetadata().directlyRelatedUserTypes( + List.of(new RelationReference().type("user")) + ), + "viewer", new RelationMetadata().directlyRelatedUserTypes( + List.of(new RelationReference().type("user")) + ) + )) + ) + )); + +var response = fgaClient.writeAuthorizationModel(request).get(); + +// response.AuthorizationModelId = "01GXSA8YR785C4FYS3C0RTG7B1" ``` #### Read a Single Authorization Model From becd953c107c3d2bede77679747ea9d04cbc1f4f Mon Sep 17 00:00:00 2001 From: "Justin \"J.R.\" Hill" Date: Tue, 26 Sep 2023 14:55:44 -0700 Subject: [PATCH 13/22] test: Add tests for OpenFgaClient readChanges(options) and readAuthorizationModel(options) --- .openapi-generator/FILES | 1 + README.md | 26 +++++++++ .../openfga/sdk/api/client/OpenFgaClient.java | 13 +++++ .../client/ReadAuthorizationModelOptions.java | 41 +++++++++++++ .../sdk/api/client/OpenFgaClientTest.java | 58 +++++++++++++++++++ 5 files changed, 139 insertions(+) create mode 100644 src/main/java/dev/openfga/sdk/api/client/ReadAuthorizationModelOptions.java diff --git a/.openapi-generator/FILES b/.openapi-generator/FILES index 026799b..eec5f40 100644 --- a/.openapi-generator/FILES +++ b/.openapi-generator/FILES @@ -84,6 +84,7 @@ src/main/java/dev/openfga/sdk/api/client/ApiClient.java src/main/java/dev/openfga/sdk/api/client/ApiResponse.java src/main/java/dev/openfga/sdk/api/client/ListStoresOptions.java src/main/java/dev/openfga/sdk/api/client/OpenFgaClient.java +src/main/java/dev/openfga/sdk/api/client/ReadAuthorizationModelOptions.java src/main/java/dev/openfga/sdk/api/client/ReadAuthorizationModelsOptions.java src/main/java/dev/openfga/sdk/api/client/ReadChangesOptions.java src/main/java/dev/openfga/sdk/api/configuration/ApiToken.java diff --git a/README.md b/README.md index 722aef0..648c48b 100644 --- a/README.md +++ b/README.md @@ -232,6 +232,15 @@ Read a particular authorization model. [API Documentation](https://openfga.dev/api/service#/Authorization%20Models/ReadAuthorizationModel) ```java +var options = new ReadAuthorizationModelOptions() + // You can rely on the model id set in the configuration or override it for this specific request + .authorizationModelId("01GXSA8YR785C4FYS3C0RTG7B1"); + +var response = fgaClient.readAuthorizationModel(options).get(); + +// response.getAuthorizationModel().getId() = "01GXSA8YR785C4FYS3C0RTG7B1" +// response.getAuthorizationModel().getSchemaVersion() = "1.1" +// response.getAuthorizationModel().getTypeDefinitions() = [{ "type": "document", "relations": { ... } }, { "type": "user", "relations": { ... }}] ``` ##### Read the Latest Authorization Model @@ -241,6 +250,11 @@ Reads the latest authorization model (note: this ignores the model id in configu [API Documentation](https://openfga.dev/api/service#/Authorization%20Models/ReadAuthorizationModel) ```java +var response = fgaClient.readLatestAuthorizationModel().get(); + +// response.AuthorizationModel.Id = "01GXSA8YR785C4FYS3C0RTG7B1" +// response.AuthorizationModel.SchemaVersion = "1.1" +// response.AuthorizationModel.TypeDefinitions = [{ "type": "document", "relations": { ... } }, { "type": "user", "relations": { ... }}] ``` #### Relationship Tuples @@ -252,6 +266,18 @@ Reads the list of historical relationship tuple writes and deletes. [API Documentation](https://openfga.dev/api/service#/Relationship%20Tuples/ReadChanges) ```java +var options = new ClientReadChangesOptions() + .type("document") + .pageSize(10) + .continuationToken("..."); + +var response = fgaClient.readChanges(options).get(); + +// response.getContinuationToken() = ... +// response.getChanges() = [ +// { tupleKey: { user, relation, object }, operation: TupleOperation.WRITE, timestamp: ... }, +// { tupleKey: { user, relation, object }, operation: TupleOperation.DELETE, timestamp: ... } +// ] ``` ##### Read Relationship Tuples diff --git a/src/main/java/dev/openfga/sdk/api/client/OpenFgaClient.java b/src/main/java/dev/openfga/sdk/api/client/OpenFgaClient.java index 1b61849..1358ac2 100644 --- a/src/main/java/dev/openfga/sdk/api/client/OpenFgaClient.java +++ b/src/main/java/dev/openfga/sdk/api/client/OpenFgaClient.java @@ -141,6 +141,19 @@ public CompletableFuture readAuthorizationModel( return call(() -> api.readAuthorizationModel(storeId, authorizationModelId)); } + /** + * ReadAuthorizationModel - Read the current authorization model + * + * @throws FgaInvalidParameterException When either the Store ID or Authorization Model ID are null, empty, or whitespace + */ + public CompletableFuture readAuthorizationModel( + ReadAuthorizationModelOptions options) throws FgaInvalidParameterException { + configuration.assertValid(); + String storeId = configuration.getStoreIdChecked(); + String authorizationModelId = options.getAuthorizationModelIdChecked(); + return call(() -> api.readAuthorizationModel(storeId, authorizationModelId)); + } + /** * ReadLatestAuthorizationModel - Read the latest authorization model for the current store * diff --git a/src/main/java/dev/openfga/sdk/api/client/ReadAuthorizationModelOptions.java b/src/main/java/dev/openfga/sdk/api/client/ReadAuthorizationModelOptions.java new file mode 100644 index 0000000..b056673 --- /dev/null +++ b/src/main/java/dev/openfga/sdk/api/client/ReadAuthorizationModelOptions.java @@ -0,0 +1,41 @@ +/* + * OpenFGA + * A high performance and flexible authorization/permission engine built for developers and inspired by Google Zanzibar. + * + * The version of the OpenAPI document: 0.1 + * Contact: community@openfga.dev + * + * NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech). + * https://openapi-generator.tech + * Do not edit the class manually. + */ + +package dev.openfga.sdk.api.client; + +import static dev.openfga.sdk.util.StringUtil.isNullOrWhitespace; + +import dev.openfga.sdk.errors.FgaInvalidParameterException; + +public class ReadAuthorizationModelOptions { + private String authorizationModelId; + + public void assertValidAuthorizationModelId() throws FgaInvalidParameterException { + if (isNullOrWhitespace(authorizationModelId)) { + throw new FgaInvalidParameterException("authorizationModelId", "ClientConfiguration"); + } + } + + public ReadAuthorizationModelOptions authorizationModelId(String authorizationModelId) { + this.authorizationModelId = authorizationModelId; + return this; + } + + public String getAuthorizationModelId() { + return authorizationModelId; + } + + public String getAuthorizationModelIdChecked() throws FgaInvalidParameterException { + assertValidAuthorizationModelId(); + return authorizationModelId; + } +} diff --git a/src/test/java/dev/openfga/sdk/api/client/OpenFgaClientTest.java b/src/test/java/dev/openfga/sdk/api/client/OpenFgaClientTest.java index 4c91839..d1d7335 100644 --- a/src/test/java/dev/openfga/sdk/api/client/OpenFgaClientTest.java +++ b/src/test/java/dev/openfga/sdk/api/client/OpenFgaClientTest.java @@ -607,6 +607,40 @@ public void readLatestAuthorizationModelTest() throws Exception { assertEquals(DEFAULT_SCHEMA_VERSION, authModel.getSchemaVersion()); } + @Test + public void readChanges() throws Exception { + // Given + String changeType = "repo"; + String user = "user:81684243-9356-4421-8fbf-a4f8d36aa31b"; + String relation = "viewer"; + String object = "document:roadmap"; + String continuationToken = + "eyJwayI6IkxBVEVTVF9OU0NPTkZJR19hdXRoMHN0b3JlIiwic2siOiIxem1qbXF3MWZLZExTcUoyN01MdTdqTjh0cWgifQ"; + + ReadChangesOptions options = new ReadChangesOptions().type(changeType); + String getUrl = String.format("https://localhost/stores/%s/changes?type=%s", DEFAULT_STORE_ID, changeType); + String responseBody = String.format( + "{\"changes\":[{\"tuple_key\":{\"user\":\"%s\",\"relation\":\"%s\",\"object\":\"%s\"},\"operation\":\"TUPLE_OPERATION_WRITE\"}],\"continuation_token\":\"%s\"}", + user, relation, object, continuationToken); + mockHttpClient.onGet(getUrl).doReturn(200, responseBody); + + // When + ReadChangesResponse response = fga.readChanges(options).get(); + + // Then + mockHttpClient.verify().get(getUrl).called(1); + assertEquals(continuationToken, response.getContinuationToken()); + assertNotNull(response.getChanges()); + assertEquals(1, response.getChanges().size()); + TupleChange change = response.getChanges().get(0); + assertEquals(TupleOperation.WRITE, change.getOperation()); + TupleKey tupleKey = change.getTupleKey(); + assertNotNull(tupleKey); + assertEquals(user, tupleKey.getUser()); + assertEquals(relation, tupleKey.getRelation()); + assertEquals(object, tupleKey.getObject()); + } + /** * Create a new authorization model. */ @@ -746,6 +780,30 @@ public void readAuthorizationModelTest() throws Exception { assertEquals(DEFAULT_SCHEMA_VERSION, response.getAuthorizationModel().getSchemaVersion()); } + @Test + public void readAuthorizationModelTest_withOptions() throws Exception { + // Given + String authorizationModelId = "alternateAuthorizationModelId"; + ReadAuthorizationModelOptions options = + new ReadAuthorizationModelOptions().authorizationModelId(authorizationModelId); + String getUrl = String.format( + "https://localhost/stores/%s/authorization-models/%s", DEFAULT_STORE_ID, authorizationModelId); + String getResponse = String.format( + "{\"authorization_model\":{\"id\":\"%s\",\"schema_version\":\"%s\"}}", + authorizationModelId, DEFAULT_SCHEMA_VERSION); + mockHttpClient.onGet(getUrl).doReturn(200, getResponse); + + // When + ReadAuthorizationModelResponse response = + fga.readAuthorizationModel(options).get(); + + // Then + mockHttpClient.verify().get(getUrl).called(1); + assertNotNull(response.getAuthorizationModel()); + assertEquals(authorizationModelId, response.getAuthorizationModel().getId()); + assertEquals(DEFAULT_SCHEMA_VERSION, response.getAuthorizationModel().getSchemaVersion()); + } + @Test public void readAuthorizationModel_storeIdRequired() { // Given From ac06d839d57412e7e9caf934e7028f2a27d466fd Mon Sep 17 00:00:00 2001 From: "Justin \"J.R.\" Hill" Date: Tue, 26 Sep 2023 15:37:56 -0700 Subject: [PATCH 14/22] feat(java-sdk): Add ClientReadRequest --- .openapi-generator/FILES | 1 + README.md | 26 +++++++++ .../sdk/api/client/ClientReadRequest.java | 58 +++++++++++++++++++ .../openfga/sdk/api/client/OpenFgaClient.java | 11 +++- .../client/OpenFgaClientIntegrationTest.java | 4 +- .../sdk/api/client/OpenFgaClientTest.java | 37 +++++------- 6 files changed, 111 insertions(+), 26 deletions(-) create mode 100644 src/main/java/dev/openfga/sdk/api/client/ClientReadRequest.java diff --git a/.openapi-generator/FILES b/.openapi-generator/FILES index eec5f40..678fe1f 100644 --- a/.openapi-generator/FILES +++ b/.openapi-generator/FILES @@ -82,6 +82,7 @@ src/main/java/dev/openfga/sdk/api/auth/CredentialsFlowResponse.java src/main/java/dev/openfga/sdk/api/auth/OAuth2Client.java src/main/java/dev/openfga/sdk/api/client/ApiClient.java src/main/java/dev/openfga/sdk/api/client/ApiResponse.java +src/main/java/dev/openfga/sdk/api/client/ClientReadRequest.java src/main/java/dev/openfga/sdk/api/client/ListStoresOptions.java src/main/java/dev/openfga/sdk/api/client/OpenFgaClient.java src/main/java/dev/openfga/sdk/api/client/ReadAuthorizationModelOptions.java diff --git a/README.md b/README.md index 648c48b..37538e5 100644 --- a/README.md +++ b/README.md @@ -287,6 +287,32 @@ Reads the relationship tuples stored in the database. It does not evaluate nor e [API Documentation](https://openfga.dev/api/service#/Relationship%20Tuples/Read) ```java +// Find if a relationship tuple stating that a certain user is a viewer of a certain document +var request = new ClientReadRequest() + .user("user:81684243-9356-4421-8fbf-a4f8d36aa31b") + .relation("viewer") + ._object("document:roadmap"); + +// Find all relationship tuples where a certain user has a relationship as any relation to a certain document +var request = new ClientReadRequest() + .user("user:81684243-9356-4421-8fbf-a4f8d36aa31b") + ._object("document:roadmap"); + +// Find all relationship tuples where a certain user is a viewer of any document +var request = new ClientReadRequest() + .user("user:81684243-9356-4421-8fbf-a4f8d36aa31b") + .relation("viewer") + ._object("document:"); + +// Find all relationship tuples where any user has a relationship as any relation with a particular document + +var request = new ClientReadRequest() + ._object("document:roadmap"); + +var response = fgaClient.read(request).get(); + +// In all the above situations, the response will be of the form: +// response = { Tuples: [{ Key: { User, Relation, Object }, Timestamp }, ...]} ``` ##### Write (Create and Delete) Relationship Tuples diff --git a/src/main/java/dev/openfga/sdk/api/client/ClientReadRequest.java b/src/main/java/dev/openfga/sdk/api/client/ClientReadRequest.java new file mode 100644 index 0000000..1b9df66 --- /dev/null +++ b/src/main/java/dev/openfga/sdk/api/client/ClientReadRequest.java @@ -0,0 +1,58 @@ +/* + * OpenFGA + * A high performance and flexible authorization/permission engine built for developers and inspired by Google Zanzibar. + * + * The version of the OpenAPI document: 0.1 + * Contact: community@openfga.dev + * + * NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech). + * https://openapi-generator.tech + * Do not edit the class manually. + */ + +package dev.openfga.sdk.api.client; + +public class ClientReadRequest { + private String user; + private String relation; + private String _object; + + public ClientReadRequest _object(String _object) { + this._object = _object; + return this; + } + + /** + * Get _object + * @return _object + **/ + public String getObject() { + return _object; + } + + public ClientReadRequest relation(String relation) { + this.relation = relation; + return this; + } + + /** + * Get relation + * @return relation + **/ + public String getRelation() { + return relation; + } + + public ClientReadRequest user(String user) { + this.user = user; + return this; + } + + /** + * Get user + * @return user + **/ + public String getUser() { + return user; + } +} diff --git a/src/main/java/dev/openfga/sdk/api/client/OpenFgaClient.java b/src/main/java/dev/openfga/sdk/api/client/OpenFgaClient.java index 1358ac2..1a5b07a 100644 --- a/src/main/java/dev/openfga/sdk/api/client/OpenFgaClient.java +++ b/src/main/java/dev/openfga/sdk/api/client/OpenFgaClient.java @@ -190,9 +190,18 @@ public CompletableFuture readChanges(ReadChangesOptions opt * * @throws FgaInvalidParameterException When the Store ID is null, empty, or whitespace */ - public CompletableFuture read(ReadRequest body) throws FgaInvalidParameterException { + public CompletableFuture read(ClientReadRequest request) throws FgaInvalidParameterException { configuration.assertValid(); String storeId = configuration.getStoreIdChecked(); + + TupleKey tupleKey = new TupleKey(); + + if (request != null) { + tupleKey.user(request.getUser()).relation(request.getRelation())._object(request.getObject()); + } + + ReadRequest body = new ReadRequest().tupleKey(tupleKey); + return call(() -> api.read(storeId, body)); } diff --git a/src/test-integration/java/dev/openfga/sdk/api/client/OpenFgaClientIntegrationTest.java b/src/test-integration/java/dev/openfga/sdk/api/client/OpenFgaClientIntegrationTest.java index be1c83b..42c7627 100644 --- a/src/test-integration/java/dev/openfga/sdk/api/client/OpenFgaClientIntegrationTest.java +++ b/src/test-integration/java/dev/openfga/sdk/api/client/OpenFgaClientIntegrationTest.java @@ -192,8 +192,8 @@ public void write_and_read() throws Exception { fga.setAuthorizationModelId(authModelId); WriteRequest writeRequest = new WriteRequest().writes(new TupleKeys().tupleKeys(List.of(DEFAULT_TUPLE_KEY))); - ReadRequest readRequest = - new ReadRequest().tupleKey(new TupleKey().user(DEFAULT_USER)._object(DEFAULT_DOC)); + ClientReadRequest readRequest = + new ClientReadRequest().user(DEFAULT_USER)._object(DEFAULT_DOC); // When fga.write(writeRequest).get(); diff --git a/src/test/java/dev/openfga/sdk/api/client/OpenFgaClientTest.java b/src/test/java/dev/openfga/sdk/api/client/OpenFgaClientTest.java index d1d7335..327e542 100644 --- a/src/test/java/dev/openfga/sdk/api/client/OpenFgaClientTest.java +++ b/src/test/java/dev/openfga/sdk/api/client/OpenFgaClientTest.java @@ -911,11 +911,10 @@ public void readTest() throws Exception { "{\"tuples\":[{\"key\":{\"user\":\"%s\",\"relation\":\"%s\",\"object\":\"%s\"}}]}", DEFAULT_USER, DEFAULT_RELATION, DEFAULT_OBJECT); mockHttpClient.onPost(postUrl).withBody(is(expectedBody)).doReturn(200, responseBody); - ReadRequest request = new ReadRequest() - .tupleKey(new TupleKey() - ._object(DEFAULT_OBJECT) - .relation(DEFAULT_RELATION) - .user(DEFAULT_USER)); + ClientReadRequest request = new ClientReadRequest() + .user(DEFAULT_USER) + .relation(DEFAULT_RELATION) + ._object(DEFAULT_OBJECT); // When ReadResponse response = fga.read(request).get(); @@ -937,7 +936,7 @@ public void read_storeIdRequired() { clientConfiguration.storeId(null); // When - var exception = assertThrows(FgaInvalidParameterException.class, () -> fga.read(new ReadRequest()) + var exception = assertThrows(FgaInvalidParameterException.class, () -> fga.read(new ClientReadRequest()) .get()); // Then @@ -945,17 +944,6 @@ public void read_storeIdRequired() { "Required parameter storeId was invalid when calling ClientConfiguration.", exception.getMessage()); } - @Test - public void read_bodyRequired() { - // When - ExecutionException execException = - assertThrows(ExecutionException.class, () -> fga.read(null).get()); - - // Then - ApiException exception = assertInstanceOf(ApiException.class, execException.getCause()); - assertEquals("Missing the required parameter 'body' when calling read", exception.getMessage()); - } - @Test public void read_400() { // Given @@ -965,8 +953,9 @@ public void read_400() { .doReturn(400, "{\"code\":\"validation_error\",\"message\":\"Generic validation error\"}"); // When - ExecutionException execException = assertThrows( - ExecutionException.class, () -> fga.read(new ReadRequest()).get()); + ExecutionException execException = + assertThrows(ExecutionException.class, () -> fga.read(new ClientReadRequest()) + .get()); // Then mockHttpClient.verify().post(postUrl).called(1); @@ -986,8 +975,9 @@ public void read_404() { .doReturn(404, "{\"code\":\"undefined_endpoint\",\"message\":\"Endpoint not enabled\"}"); // When - ExecutionException execException = assertThrows( - ExecutionException.class, () -> fga.read(new ReadRequest()).get()); + ExecutionException execException = + assertThrows(ExecutionException.class, () -> fga.read(new ClientReadRequest()) + .get()); // Then mockHttpClient.verify().post(postUrl).called(1); @@ -1006,8 +996,9 @@ public void read_500() { .doReturn(500, "{\"code\":\"internal_error\",\"message\":\"Internal Server Error\"}"); // When - ExecutionException execException = assertThrows( - ExecutionException.class, () -> fga.read(new ReadRequest()).get()); + ExecutionException execException = + assertThrows(ExecutionException.class, () -> fga.read(new ClientReadRequest()) + .get()); // Then mockHttpClient.verify().post(postUrl).called(1); From b75b41ebd2c84205aed07e52052491f351d36dd7 Mon Sep 17 00:00:00 2001 From: "Justin \"J.R.\" Hill" Date: Tue, 26 Sep 2023 17:54:35 -0700 Subject: [PATCH 15/22] feat: Polishing Java SDK's OpenFgaClient to look more like other SDKs --- .openapi-generator/FILES | 11 ++-- README.md | 30 ++++++++++- .../sdk/api/client/ClientWriteRequest.java | 39 ++++++++++++++ .../openfga/sdk/api/client/OpenFgaClient.java | 50 ++++++++++++++++-- .../api/configuration/ClientReadOptions.java | 36 +++++++++++++ .../api/configuration/ClientWriteOptions.java | 26 ++++++++++ .../ListStoresOptions.java | 2 +- .../ReadAuthorizationModelOptions.java | 2 +- .../ReadAuthorizationModelsOptions.java | 2 +- .../ReadChangesOptions.java | 2 +- .../client/OpenFgaClientIntegrationTest.java | 8 +-- .../sdk/api/client/OpenFgaClientTest.java | 52 +++++++------------ 12 files changed, 212 insertions(+), 48 deletions(-) create mode 100644 src/main/java/dev/openfga/sdk/api/client/ClientWriteRequest.java create mode 100644 src/main/java/dev/openfga/sdk/api/configuration/ClientReadOptions.java create mode 100644 src/main/java/dev/openfga/sdk/api/configuration/ClientWriteOptions.java rename src/main/java/dev/openfga/sdk/api/{client => configuration}/ListStoresOptions.java (95%) rename src/main/java/dev/openfga/sdk/api/{client => configuration}/ReadAuthorizationModelOptions.java (96%) rename src/main/java/dev/openfga/sdk/api/{client => configuration}/ReadAuthorizationModelsOptions.java (95%) rename src/main/java/dev/openfga/sdk/api/{client => configuration}/ReadChangesOptions.java (96%) diff --git a/.openapi-generator/FILES b/.openapi-generator/FILES index 678fe1f..efa49bb 100644 --- a/.openapi-generator/FILES +++ b/.openapi-generator/FILES @@ -83,19 +83,22 @@ src/main/java/dev/openfga/sdk/api/auth/OAuth2Client.java src/main/java/dev/openfga/sdk/api/client/ApiClient.java src/main/java/dev/openfga/sdk/api/client/ApiResponse.java src/main/java/dev/openfga/sdk/api/client/ClientReadRequest.java -src/main/java/dev/openfga/sdk/api/client/ListStoresOptions.java +src/main/java/dev/openfga/sdk/api/client/ClientWriteRequest.java src/main/java/dev/openfga/sdk/api/client/OpenFgaClient.java -src/main/java/dev/openfga/sdk/api/client/ReadAuthorizationModelOptions.java -src/main/java/dev/openfga/sdk/api/client/ReadAuthorizationModelsOptions.java -src/main/java/dev/openfga/sdk/api/client/ReadChangesOptions.java src/main/java/dev/openfga/sdk/api/configuration/ApiToken.java src/main/java/dev/openfga/sdk/api/configuration/BaseConfiguration.java src/main/java/dev/openfga/sdk/api/configuration/ClientConfiguration.java src/main/java/dev/openfga/sdk/api/configuration/ClientCredentials.java +src/main/java/dev/openfga/sdk/api/configuration/ClientReadOptions.java +src/main/java/dev/openfga/sdk/api/configuration/ClientWriteOptions.java src/main/java/dev/openfga/sdk/api/configuration/Configuration.java src/main/java/dev/openfga/sdk/api/configuration/ConfigurationOverride.java src/main/java/dev/openfga/sdk/api/configuration/Credentials.java src/main/java/dev/openfga/sdk/api/configuration/CredentialsMethod.java +src/main/java/dev/openfga/sdk/api/configuration/ListStoresOptions.java +src/main/java/dev/openfga/sdk/api/configuration/ReadAuthorizationModelOptions.java +src/main/java/dev/openfga/sdk/api/configuration/ReadAuthorizationModelsOptions.java +src/main/java/dev/openfga/sdk/api/configuration/ReadChangesOptions.java src/main/java/dev/openfga/sdk/api/model/AbstractOpenApiSchema.java src/main/java/dev/openfga/sdk/api/model/Any.java src/main/java/dev/openfga/sdk/api/model/Assertion.java diff --git a/README.md b/README.md index 37538e5..22c966e 100644 --- a/README.md +++ b/README.md @@ -305,10 +305,14 @@ var request = new ClientReadRequest() ._object("document:"); // Find all relationship tuples where any user has a relationship as any relation with a particular document - var request = new ClientReadRequest() ._object("document:roadmap"); +// Read all stored relationship tuples +var request = new ClientReadRequest() + .pageSize(10) + .continuationToken("..."); + var response = fgaClient.read(request).get(); // In all the above situations, the response will be of the form: @@ -326,6 +330,29 @@ Create and/or delete relationship tuples to update the system state. By default, write runs in a transaction mode where any invalid operation (deleting a non-existing tuple, creating an existing tuple, one of the tuples was invalid) or a server error will fail the entire operation. ```java +var request = new ClientWriteRequest() + .writes(List.of( + new TupleKey() + .user("user:81684243-9356-4421-8fbf-a4f8d36aa31b") + .relation("viewer") + ._object("document:roadmap"), + new TupleKey() + .user("user:81684243-9356-4421-8fbf-a4f8d36aa31b") + .relation("viewer") + ._object("document:budget") + )) + .deletes(List.of( + new TupleKey() + .user("user:81684243-9356-4421-8fbf-a4f8d36aa31b") + .relation("writer") + ._object("document:roadmap") + )); + +// You can rely on the model id set in the configuration or override it for this specific request +var options = new ClientWriteOptions() + .authorizationModelId("01GXSA8YR785C4FYS3C0RTG7B1"); + +var response = fgaClient.write(request, options).get(); ``` Convenience `WriteTuples` and `DeleteTuples` methods are also available. @@ -335,6 +362,7 @@ Convenience `WriteTuples` and `DeleteTuples` methods are also available. The SDK will split the writes into separate requests and send them sequentially to avoid violating rate limits. ```java +// Coming soon ``` #### Relationship Queries diff --git a/src/main/java/dev/openfga/sdk/api/client/ClientWriteRequest.java b/src/main/java/dev/openfga/sdk/api/client/ClientWriteRequest.java new file mode 100644 index 0000000..d786989 --- /dev/null +++ b/src/main/java/dev/openfga/sdk/api/client/ClientWriteRequest.java @@ -0,0 +1,39 @@ +/* + * OpenFGA + * A high performance and flexible authorization/permission engine built for developers and inspired by Google Zanzibar. + * + * The version of the OpenAPI document: 0.1 + * Contact: community@openfga.dev + * + * NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech). + * https://openapi-generator.tech + * Do not edit the class manually. + */ + +package dev.openfga.sdk.api.client; + +import dev.openfga.sdk.api.model.TupleKey; +import java.util.List; + +public class ClientWriteRequest { + private List writes; + private List deletes; + + public ClientWriteRequest writes(List writes) { + this.writes = writes; + return this; + } + + public List getWrites() { + return writes; + } + + public ClientWriteRequest deletes(List deletes) { + this.deletes = deletes; + return this; + } + + public List getDeletes() { + return deletes; + } +} diff --git a/src/main/java/dev/openfga/sdk/api/client/OpenFgaClient.java b/src/main/java/dev/openfga/sdk/api/client/OpenFgaClient.java index 1a5b07a..1e7cace 100644 --- a/src/main/java/dev/openfga/sdk/api/client/OpenFgaClient.java +++ b/src/main/java/dev/openfga/sdk/api/client/OpenFgaClient.java @@ -191,16 +191,31 @@ public CompletableFuture readChanges(ReadChangesOptions opt * @throws FgaInvalidParameterException When the Store ID is null, empty, or whitespace */ public CompletableFuture read(ClientReadRequest request) throws FgaInvalidParameterException { + return read(request, null); + } + + /** + * Read - Read tuples previously written to the store (does not evaluate) + * + * @throws FgaInvalidParameterException When the Store ID is null, empty, or whitespace + */ + public CompletableFuture read(ClientReadRequest request, ClientReadOptions options) + throws FgaInvalidParameterException { configuration.assertValid(); String storeId = configuration.getStoreIdChecked(); + ReadRequest body = new ReadRequest(); TupleKey tupleKey = new TupleKey(); if (request != null) { tupleKey.user(request.getUser()).relation(request.getRelation())._object(request.getObject()); } - ReadRequest body = new ReadRequest().tupleKey(tupleKey); + if (options != null) { + body.pageSize(options.getPageSize()).continuationToken(options.getContinuationToken()); + } + + body.tupleKey(tupleKey); return call(() -> api.read(storeId, body)); } @@ -210,10 +225,39 @@ public CompletableFuture read(ClientReadRequest request) throws Fg * * @throws FgaInvalidParameterException When the Store ID is null, empty, or whitespace */ - public CompletableFuture write(WriteRequest request) throws FgaInvalidParameterException { + public CompletableFuture write(ClientWriteRequest request) throws FgaInvalidParameterException { + return write(request, null); + } + + /** + * Write - Create or delete relationship tuples + * + * @throws FgaInvalidParameterException When the Store ID is null, empty, or whitespace + */ + public CompletableFuture write(ClientWriteRequest request, ClientWriteOptions options) + throws FgaInvalidParameterException { configuration.assertValid(); String storeId = configuration.getStoreIdChecked(); - return call(() -> api.write(storeId, request)); + + WriteRequest body = new WriteRequest(); + + if (request != null) { + if (request.getWrites() != null) { + body.writes(new TupleKeys().tupleKeys(request.getWrites())); + } + if (request.getDeletes() != null) { + body.deletes(new TupleKeys().tupleKeys(request.getDeletes())); + } + } + + if (options != null && !isNullOrWhitespace(options.getAuthorizationModelId())) { + body.authorizationModelId(options.getAuthorizationModelId()); + } else { + String authorizationModelId = configuration.getAuthorizationModelId(); + body.authorizationModelId(authorizationModelId); + } + + return call(() -> api.write(storeId, body)); } /** diff --git a/src/main/java/dev/openfga/sdk/api/configuration/ClientReadOptions.java b/src/main/java/dev/openfga/sdk/api/configuration/ClientReadOptions.java new file mode 100644 index 0000000..c3a44b2 --- /dev/null +++ b/src/main/java/dev/openfga/sdk/api/configuration/ClientReadOptions.java @@ -0,0 +1,36 @@ +/* + * OpenFGA + * A high performance and flexible authorization/permission engine built for developers and inspired by Google Zanzibar. + * + * The version of the OpenAPI document: 0.1 + * Contact: community@openfga.dev + * + * NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech). + * https://openapi-generator.tech + * Do not edit the class manually. + */ + +package dev.openfga.sdk.api.configuration; + +public class ClientReadOptions { + private Integer pageSize; + private String continuationToken; + + public ClientReadOptions pageSize(Integer pageSize) { + this.pageSize = pageSize; + return this; + } + + public Integer getPageSize() { + return pageSize; + } + + public ClientReadOptions continuationToken(String continuationToken) { + this.continuationToken = continuationToken; + return this; + } + + public String getContinuationToken() { + return continuationToken; + } +} diff --git a/src/main/java/dev/openfga/sdk/api/configuration/ClientWriteOptions.java b/src/main/java/dev/openfga/sdk/api/configuration/ClientWriteOptions.java new file mode 100644 index 0000000..cd60f92 --- /dev/null +++ b/src/main/java/dev/openfga/sdk/api/configuration/ClientWriteOptions.java @@ -0,0 +1,26 @@ +/* + * OpenFGA + * A high performance and flexible authorization/permission engine built for developers and inspired by Google Zanzibar. + * + * The version of the OpenAPI document: 0.1 + * Contact: community@openfga.dev + * + * NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech). + * https://openapi-generator.tech + * Do not edit the class manually. + */ + +package dev.openfga.sdk.api.configuration; + +public class ClientWriteOptions { + private String authorizationModelId; + + public ClientWriteOptions authorizationModelId(String authorizationModelId) { + this.authorizationModelId = authorizationModelId; + return this; + } + + public String getAuthorizationModelId() { + return authorizationModelId; + } +} diff --git a/src/main/java/dev/openfga/sdk/api/client/ListStoresOptions.java b/src/main/java/dev/openfga/sdk/api/configuration/ListStoresOptions.java similarity index 95% rename from src/main/java/dev/openfga/sdk/api/client/ListStoresOptions.java rename to src/main/java/dev/openfga/sdk/api/configuration/ListStoresOptions.java index 2716fcc..57f06c2 100644 --- a/src/main/java/dev/openfga/sdk/api/client/ListStoresOptions.java +++ b/src/main/java/dev/openfga/sdk/api/configuration/ListStoresOptions.java @@ -10,7 +10,7 @@ * Do not edit the class manually. */ -package dev.openfga.sdk.api.client; +package dev.openfga.sdk.api.configuration; public class ListStoresOptions { private Integer pageSize; diff --git a/src/main/java/dev/openfga/sdk/api/client/ReadAuthorizationModelOptions.java b/src/main/java/dev/openfga/sdk/api/configuration/ReadAuthorizationModelOptions.java similarity index 96% rename from src/main/java/dev/openfga/sdk/api/client/ReadAuthorizationModelOptions.java rename to src/main/java/dev/openfga/sdk/api/configuration/ReadAuthorizationModelOptions.java index b056673..adffdf6 100644 --- a/src/main/java/dev/openfga/sdk/api/client/ReadAuthorizationModelOptions.java +++ b/src/main/java/dev/openfga/sdk/api/configuration/ReadAuthorizationModelOptions.java @@ -10,7 +10,7 @@ * Do not edit the class manually. */ -package dev.openfga.sdk.api.client; +package dev.openfga.sdk.api.configuration; import static dev.openfga.sdk.util.StringUtil.isNullOrWhitespace; diff --git a/src/main/java/dev/openfga/sdk/api/client/ReadAuthorizationModelsOptions.java b/src/main/java/dev/openfga/sdk/api/configuration/ReadAuthorizationModelsOptions.java similarity index 95% rename from src/main/java/dev/openfga/sdk/api/client/ReadAuthorizationModelsOptions.java rename to src/main/java/dev/openfga/sdk/api/configuration/ReadAuthorizationModelsOptions.java index 3479f6b..edc9982 100644 --- a/src/main/java/dev/openfga/sdk/api/client/ReadAuthorizationModelsOptions.java +++ b/src/main/java/dev/openfga/sdk/api/configuration/ReadAuthorizationModelsOptions.java @@ -10,7 +10,7 @@ * Do not edit the class manually. */ -package dev.openfga.sdk.api.client; +package dev.openfga.sdk.api.configuration; public class ReadAuthorizationModelsOptions { private Integer pageSize; diff --git a/src/main/java/dev/openfga/sdk/api/client/ReadChangesOptions.java b/src/main/java/dev/openfga/sdk/api/configuration/ReadChangesOptions.java similarity index 96% rename from src/main/java/dev/openfga/sdk/api/client/ReadChangesOptions.java rename to src/main/java/dev/openfga/sdk/api/configuration/ReadChangesOptions.java index bf1b403..0b032b2 100644 --- a/src/main/java/dev/openfga/sdk/api/client/ReadChangesOptions.java +++ b/src/main/java/dev/openfga/sdk/api/configuration/ReadChangesOptions.java @@ -10,7 +10,7 @@ * Do not edit the class manually. */ -package dev.openfga.sdk.api.client; +package dev.openfga.sdk.api.configuration; public class ReadChangesOptions { private String type; diff --git a/src/test-integration/java/dev/openfga/sdk/api/client/OpenFgaClientIntegrationTest.java b/src/test-integration/java/dev/openfga/sdk/api/client/OpenFgaClientIntegrationTest.java index 42c7627..2b57404 100644 --- a/src/test-integration/java/dev/openfga/sdk/api/client/OpenFgaClientIntegrationTest.java +++ b/src/test-integration/java/dev/openfga/sdk/api/client/OpenFgaClientIntegrationTest.java @@ -191,7 +191,7 @@ public void write_and_read() throws Exception { String authModelId = writeAuthModel(storeId); fga.setAuthorizationModelId(authModelId); - WriteRequest writeRequest = new WriteRequest().writes(new TupleKeys().tupleKeys(List.of(DEFAULT_TUPLE_KEY))); + ClientWriteRequest writeRequest = new ClientWriteRequest().writes(List.of(DEFAULT_TUPLE_KEY)); ClientReadRequest readRequest = new ClientReadRequest().user(DEFAULT_USER)._object(DEFAULT_DOC); @@ -216,7 +216,7 @@ public void write_and_check() throws Exception { fga.setStoreId(storeId); String authModelId = writeAuthModel(storeId); fga.setAuthorizationModelId(authModelId); - WriteRequest writeRequest = new WriteRequest().writes(new TupleKeys().tupleKeys(DEFAULT_TUPLE_KEYS)); + ClientWriteRequest writeRequest = new ClientWriteRequest().writes(List.of(DEFAULT_TUPLE_KEY)); CheckRequest checkRequest = new CheckRequest() .tupleKey(new TupleKey().user(DEFAULT_USER).relation("reader")._object(DEFAULT_DOC)); @@ -237,7 +237,7 @@ public void write_and_expand() throws Exception { fga.setStoreId(storeId); String authModelId = writeAuthModel(storeId); fga.setAuthorizationModelId(authModelId); - WriteRequest writeRequest = new WriteRequest().writes(new TupleKeys().tupleKeys(DEFAULT_TUPLE_KEYS)); + ClientWriteRequest writeRequest = new ClientWriteRequest().writes(List.of(DEFAULT_TUPLE_KEY)); ExpandRequest expandRequest = new ExpandRequest().tupleKey(new TupleKey()._object(DEFAULT_DOC).relation("reader")); @@ -261,7 +261,7 @@ public void write_and_listObjects() throws Exception { fga.setStoreId(storeId); String authModelId = writeAuthModel(storeId); fga.setAuthorizationModelId(authModelId); - WriteRequest writeRequest = new WriteRequest().writes(new TupleKeys().tupleKeys(DEFAULT_TUPLE_KEYS)); + ClientWriteRequest writeRequest = new ClientWriteRequest().writes(List.of(DEFAULT_TUPLE_KEY)); ListObjectsRequest listObjectsRequest = new ListObjectsRequest().user(DEFAULT_USER).relation("reader").type("document"); diff --git a/src/test/java/dev/openfga/sdk/api/client/OpenFgaClientTest.java b/src/test/java/dev/openfga/sdk/api/client/OpenFgaClientTest.java index 327e542..3355f3b 100644 --- a/src/test/java/dev/openfga/sdk/api/client/OpenFgaClientTest.java +++ b/src/test/java/dev/openfga/sdk/api/client/OpenFgaClientTest.java @@ -1019,13 +1019,11 @@ public void writeTest_writes() throws Exception { "{\"writes\":{\"tuple_keys\":[{\"object\":\"%s\",\"relation\":\"%s\",\"user\":\"%s\"}]},\"deletes\":null,\"authorization_model_id\":\"%s\"}", DEFAULT_OBJECT, DEFAULT_RELATION, DEFAULT_USER, DEFAULT_AUTH_MODEL_ID); mockHttpClient.onPost(postPath).withBody(is(expectedBody)).doReturn(200, EMPTY_RESPONSE_BODY); - WriteRequest request = new WriteRequest() - .authorizationModelId(DEFAULT_AUTH_MODEL_ID) - .writes(new TupleKeys() - .tupleKeys(List.of(new TupleKey() - ._object(DEFAULT_OBJECT) - .relation(DEFAULT_RELATION) - .user(DEFAULT_USER)))); + ClientWriteRequest request = new ClientWriteRequest() + .writes(List.of(new TupleKey() + ._object(DEFAULT_OBJECT) + .relation(DEFAULT_RELATION) + .user(DEFAULT_USER))); // When fga.write(request); @@ -1045,13 +1043,11 @@ public void writeTest_deletes() throws Exception { "{\"writes\":null,\"deletes\":{\"tuple_keys\":[{\"object\":\"%s\",\"relation\":\"%s\",\"user\":\"%s\"}]},\"authorization_model_id\":\"%s\"}", DEFAULT_OBJECT, DEFAULT_RELATION, DEFAULT_USER, DEFAULT_AUTH_MODEL_ID); mockHttpClient.onPost(postPath).withBody(is(expectedBody)).doReturn(200, EMPTY_RESPONSE_BODY); - WriteRequest request = new WriteRequest() - .authorizationModelId(DEFAULT_AUTH_MODEL_ID) - .deletes(new TupleKeys() - .tupleKeys(List.of(new TupleKey() - ._object(DEFAULT_OBJECT) - .relation(DEFAULT_RELATION) - .user(DEFAULT_USER)))); + ClientWriteRequest request = new ClientWriteRequest() + .deletes(List.of(new TupleKey() + ._object(DEFAULT_OBJECT) + .relation(DEFAULT_RELATION) + .user(DEFAULT_USER))); // When fga.write(request); @@ -1108,7 +1104,7 @@ public void write_storeIdRequired() { clientConfiguration.storeId(null); // When - var exception = assertThrows(FgaInvalidParameterException.class, () -> fga.write(new WriteRequest()) + var exception = assertThrows(FgaInvalidParameterException.class, () -> fga.write(new ClientWriteRequest()) .get()); // Then @@ -1116,17 +1112,6 @@ public void write_storeIdRequired() { "Required parameter storeId was invalid when calling ClientConfiguration.", exception.getMessage()); } - @Test - public void write_bodyRequired() { - // When - ExecutionException execException = - assertThrows(ExecutionException.class, () -> fga.write(null).get()); - - // Then - ApiException exception = assertInstanceOf(ApiException.class, execException.getCause()); - assertEquals("Missing the required parameter 'body' when calling write", exception.getMessage()); - } - @Test public void write_400() throws Exception { // Given @@ -1136,8 +1121,9 @@ public void write_400() throws Exception { .doReturn(400, "{\"code\":\"validation_error\",\"message\":\"Generic validation error\"}"); // When - ExecutionException execException = assertThrows( - ExecutionException.class, () -> fga.write(new WriteRequest()).get()); + ExecutionException execException = + assertThrows(ExecutionException.class, () -> fga.write(new ClientWriteRequest()) + .get()); // Then mockHttpClient.verify().post(postUrl).called(1); @@ -1157,8 +1143,9 @@ public void write_404() throws Exception { .doReturn(404, "{\"code\":\"undefined_endpoint\",\"message\":\"Endpoint not enabled\"}"); // When - ExecutionException execException = assertThrows( - ExecutionException.class, () -> fga.write(new WriteRequest()).get()); + ExecutionException execException = + assertThrows(ExecutionException.class, () -> fga.write(new ClientWriteRequest()) + .get()); // Then mockHttpClient.verify().post(postUrl).called(1); @@ -1177,8 +1164,9 @@ public void write_500() throws Exception { .doReturn(500, "{\"code\":\"internal_error\",\"message\":\"Internal Server Error\"}"); // When - ExecutionException execException = assertThrows( - ExecutionException.class, () -> fga.write(new WriteRequest()).get()); + ExecutionException execException = + assertThrows(ExecutionException.class, () -> fga.write(new ClientWriteRequest()) + .get()); // Then mockHttpClient.verify().post(postUrl).called(1); From ee57ba2dcbd2c609727e05d243c99a29216ebddb Mon Sep 17 00:00:00 2001 From: "Justin \"J.R.\" Hill" Date: Tue, 26 Sep 2023 23:10:17 -0700 Subject: [PATCH 16/22] feat: Polish OpenFgaClient check(...) and expand(...) --- .openapi-generator/FILES | 4 + README.md | 19 ++++- .../sdk/api/client/ClientCheckRequest.java | 58 +++++++++++++ .../sdk/api/client/ClientExpandRequest.java | 58 +++++++++++++ .../openfga/sdk/api/client/OpenFgaClient.java | 62 +++++++++++++- .../api/configuration/ClientCheckOptions.java | 26 ++++++ .../configuration/ClientExpandOptions.java | 26 ++++++ .../client/OpenFgaClientIntegrationTest.java | 8 +- .../sdk/api/client/OpenFgaClientTest.java | 85 +++++++------------ 9 files changed, 283 insertions(+), 63 deletions(-) create mode 100644 src/main/java/dev/openfga/sdk/api/client/ClientCheckRequest.java create mode 100644 src/main/java/dev/openfga/sdk/api/client/ClientExpandRequest.java create mode 100644 src/main/java/dev/openfga/sdk/api/configuration/ClientCheckOptions.java create mode 100644 src/main/java/dev/openfga/sdk/api/configuration/ClientExpandOptions.java diff --git a/.openapi-generator/FILES b/.openapi-generator/FILES index efa49bb..0045d39 100644 --- a/.openapi-generator/FILES +++ b/.openapi-generator/FILES @@ -82,13 +82,17 @@ src/main/java/dev/openfga/sdk/api/auth/CredentialsFlowResponse.java src/main/java/dev/openfga/sdk/api/auth/OAuth2Client.java src/main/java/dev/openfga/sdk/api/client/ApiClient.java src/main/java/dev/openfga/sdk/api/client/ApiResponse.java +src/main/java/dev/openfga/sdk/api/client/ClientCheckRequest.java +src/main/java/dev/openfga/sdk/api/client/ClientExpandRequest.java src/main/java/dev/openfga/sdk/api/client/ClientReadRequest.java src/main/java/dev/openfga/sdk/api/client/ClientWriteRequest.java src/main/java/dev/openfga/sdk/api/client/OpenFgaClient.java src/main/java/dev/openfga/sdk/api/configuration/ApiToken.java src/main/java/dev/openfga/sdk/api/configuration/BaseConfiguration.java +src/main/java/dev/openfga/sdk/api/configuration/ClientCheckOptions.java src/main/java/dev/openfga/sdk/api/configuration/ClientConfiguration.java src/main/java/dev/openfga/sdk/api/configuration/ClientCredentials.java +src/main/java/dev/openfga/sdk/api/configuration/ClientExpandOptions.java src/main/java/dev/openfga/sdk/api/configuration/ClientReadOptions.java src/main/java/dev/openfga/sdk/api/configuration/ClientWriteOptions.java src/main/java/dev/openfga/sdk/api/configuration/Configuration.java diff --git a/README.md b/README.md index 22c966e..72b2b8d 100644 --- a/README.md +++ b/README.md @@ -309,14 +309,16 @@ var request = new ClientReadRequest() ._object("document:roadmap"); // Read all stored relationship tuples -var request = new ClientReadRequest() +var request = new ClientReadRequest(); + +var options = new ClientReadOptions() .pageSize(10) .continuationToken("..."); -var response = fgaClient.read(request).get(); +var response = fgaClient.read(request, options).get(); // In all the above situations, the response will be of the form: -// response = { Tuples: [{ Key: { User, Relation, Object }, Timestamp }, ...]} +// response = { tuples: [{ key: { user, relation, object }, timestamp }, ...]} ``` ##### Write (Create and Delete) Relationship Tuples @@ -374,6 +376,16 @@ Check if a user has a particular relation with an object. [API Documentation](https://openfga.dev/api/service#/Relationship%20Queries/Check) ```java +var request = new ClientCheckRequest() + .user("user:81684243-9356-4421-8fbf-a4f8d36aa31b") + .relation("writer") + ._object("document:roadmap"); +var options = new ClientCheckOptions() + // You can rely on the model id set in the configuration or override it for this specific request + .authorizationModelId("01GXSA8YR785C4FYS3C0RTG7B1"); + +var response = fgaClient.check(request, options).get(); +// response.Allowed = true ``` ##### Batch Check @@ -382,6 +394,7 @@ Run a set of [checks](#check). Batch Check will return `allowed: false` if it en If 429s or 5xxs are encountered, the underlying check will retry up to 15 times before giving up. ```java +// Coming soon ``` ##### Expand diff --git a/src/main/java/dev/openfga/sdk/api/client/ClientCheckRequest.java b/src/main/java/dev/openfga/sdk/api/client/ClientCheckRequest.java new file mode 100644 index 0000000..a8d4005 --- /dev/null +++ b/src/main/java/dev/openfga/sdk/api/client/ClientCheckRequest.java @@ -0,0 +1,58 @@ +/* + * OpenFGA + * A high performance and flexible authorization/permission engine built for developers and inspired by Google Zanzibar. + * + * The version of the OpenAPI document: 0.1 + * Contact: community@openfga.dev + * + * NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech). + * https://openapi-generator.tech + * Do not edit the class manually. + */ + +package dev.openfga.sdk.api.client; + +public class ClientCheckRequest { + private String user; + private String relation; + private String _object; + + public ClientCheckRequest _object(String _object) { + this._object = _object; + return this; + } + + /** + * Get _object + * @return _object + **/ + public String getObject() { + return _object; + } + + public ClientCheckRequest relation(String relation) { + this.relation = relation; + return this; + } + + /** + * Get relation + * @return relation + **/ + public String getRelation() { + return relation; + } + + public ClientCheckRequest user(String user) { + this.user = user; + return this; + } + + /** + * Get user + * @return user + **/ + public String getUser() { + return user; + } +} diff --git a/src/main/java/dev/openfga/sdk/api/client/ClientExpandRequest.java b/src/main/java/dev/openfga/sdk/api/client/ClientExpandRequest.java new file mode 100644 index 0000000..9394753 --- /dev/null +++ b/src/main/java/dev/openfga/sdk/api/client/ClientExpandRequest.java @@ -0,0 +1,58 @@ +/* + * OpenFGA + * A high performance and flexible authorization/permission engine built for developers and inspired by Google Zanzibar. + * + * The version of the OpenAPI document: 0.1 + * Contact: community@openfga.dev + * + * NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech). + * https://openapi-generator.tech + * Do not edit the class manually. + */ + +package dev.openfga.sdk.api.client; + +public class ClientExpandRequest { + private String user; + private String relation; + private String _object; + + public ClientExpandRequest _object(String _object) { + this._object = _object; + return this; + } + + /** + * Get _object + * @return _object + **/ + public String getObject() { + return _object; + } + + public ClientExpandRequest relation(String relation) { + this.relation = relation; + return this; + } + + /** + * Get relation + * @return relation + **/ + public String getRelation() { + return relation; + } + + public ClientExpandRequest user(String user) { + this.user = user; + return this; + } + + /** + * Get user + * @return user + **/ + public String getUser() { + return user; + } +} diff --git a/src/main/java/dev/openfga/sdk/api/client/OpenFgaClient.java b/src/main/java/dev/openfga/sdk/api/client/OpenFgaClient.java index 1e7cace..66270f9 100644 --- a/src/main/java/dev/openfga/sdk/api/client/OpenFgaClient.java +++ b/src/main/java/dev/openfga/sdk/api/client/OpenFgaClient.java @@ -305,10 +305,37 @@ public CompletableFuture deleteTuples(TupleKeys tupleKeys) throws FgaInv * * @throws FgaInvalidParameterException When the Store ID is null, empty, or whitespace */ - public CompletableFuture check(CheckRequest request) throws FgaInvalidParameterException { + public CompletableFuture check(ClientCheckRequest request) throws FgaInvalidParameterException { + return check(request, null); + } + + /** + * Check - Check if a user has a particular relation with an object (evaluates) + * + * @throws FgaInvalidParameterException When the Store ID is null, empty, or whitespace + */ + public CompletableFuture check(ClientCheckRequest request, ClientCheckOptions options) + throws FgaInvalidParameterException { configuration.assertValid(); String storeId = configuration.getStoreIdChecked(); - return call(() -> api.check(storeId, request)); + + CheckRequest body = new CheckRequest(); + + if (request != null) { + body.tupleKey(new TupleKey() + .user(request.getUser()) + .relation(request.getRelation()) + ._object(request.getObject())); + } + + if (options != null && !isNullOrWhitespace(options.getAuthorizationModelId())) { + body.authorizationModelId(options.getAuthorizationModelId()); + } else { + String authorizationModelId = configuration.getAuthorizationModelId(); + body.authorizationModelId(authorizationModelId); + } + + return call(() -> api.check(storeId, body)); } /** @@ -323,10 +350,37 @@ public CompletableFuture check(CheckRequest request) throws FgaIn * * @throws FgaInvalidParameterException When the Store ID is null, empty, or whitespace */ - public CompletableFuture expand(ExpandRequest request) throws FgaInvalidParameterException { + public CompletableFuture expand(ClientExpandRequest request) throws FgaInvalidParameterException { + return expand(request, null); + } + + /** + * Expand - Expands the relationships in userset tree format (evaluates) + * + * @throws FgaInvalidParameterException When the Store ID is null, empty, or whitespace + */ + public CompletableFuture expand(ClientExpandRequest request, ClientExpandOptions options) + throws FgaInvalidParameterException { configuration.assertValid(); String storeId = configuration.getStoreIdChecked(); - return call(() -> api.expand(storeId, request)); + + ExpandRequest body = new ExpandRequest(); + + if (request != null) { + body.tupleKey(new TupleKey() + .user(request.getUser()) + .relation(request.getRelation()) + ._object(request.getObject())); + } + + if (options != null && !isNullOrWhitespace(options.getAuthorizationModelId())) { + body.authorizationModelId(options.getAuthorizationModelId()); + } else { + String authorizationModelId = configuration.getAuthorizationModelId(); + body.authorizationModelId(authorizationModelId); + } + + return call(() -> api.expand(storeId, body)); } /** diff --git a/src/main/java/dev/openfga/sdk/api/configuration/ClientCheckOptions.java b/src/main/java/dev/openfga/sdk/api/configuration/ClientCheckOptions.java new file mode 100644 index 0000000..b69a4cf --- /dev/null +++ b/src/main/java/dev/openfga/sdk/api/configuration/ClientCheckOptions.java @@ -0,0 +1,26 @@ +/* + * OpenFGA + * A high performance and flexible authorization/permission engine built for developers and inspired by Google Zanzibar. + * + * The version of the OpenAPI document: 0.1 + * Contact: community@openfga.dev + * + * NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech). + * https://openapi-generator.tech + * Do not edit the class manually. + */ + +package dev.openfga.sdk.api.configuration; + +public class ClientCheckOptions { + private String authorizationModelId; + + public ClientCheckOptions authorizationModelId(String authorizationModelId) { + this.authorizationModelId = authorizationModelId; + return this; + } + + public String getAuthorizationModelId() { + return authorizationModelId; + } +} diff --git a/src/main/java/dev/openfga/sdk/api/configuration/ClientExpandOptions.java b/src/main/java/dev/openfga/sdk/api/configuration/ClientExpandOptions.java new file mode 100644 index 0000000..66dc5b5 --- /dev/null +++ b/src/main/java/dev/openfga/sdk/api/configuration/ClientExpandOptions.java @@ -0,0 +1,26 @@ +/* + * OpenFGA + * A high performance and flexible authorization/permission engine built for developers and inspired by Google Zanzibar. + * + * The version of the OpenAPI document: 0.1 + * Contact: community@openfga.dev + * + * NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech). + * https://openapi-generator.tech + * Do not edit the class manually. + */ + +package dev.openfga.sdk.api.configuration; + +public class ClientExpandOptions { + private String authorizationModelId; + + public ClientExpandOptions authorizationModelId(String authorizationModelId) { + this.authorizationModelId = authorizationModelId; + return this; + } + + public String getAuthorizationModelId() { + return authorizationModelId; + } +} diff --git a/src/test-integration/java/dev/openfga/sdk/api/client/OpenFgaClientIntegrationTest.java b/src/test-integration/java/dev/openfga/sdk/api/client/OpenFgaClientIntegrationTest.java index 2b57404..cf33f17 100644 --- a/src/test-integration/java/dev/openfga/sdk/api/client/OpenFgaClientIntegrationTest.java +++ b/src/test-integration/java/dev/openfga/sdk/api/client/OpenFgaClientIntegrationTest.java @@ -217,8 +217,8 @@ public void write_and_check() throws Exception { String authModelId = writeAuthModel(storeId); fga.setAuthorizationModelId(authModelId); ClientWriteRequest writeRequest = new ClientWriteRequest().writes(List.of(DEFAULT_TUPLE_KEY)); - CheckRequest checkRequest = new CheckRequest() - .tupleKey(new TupleKey().user(DEFAULT_USER).relation("reader")._object(DEFAULT_DOC)); + ClientCheckRequest checkRequest = + new ClientCheckRequest().user(DEFAULT_USER).relation("reader")._object(DEFAULT_DOC); // When fga.write(writeRequest).get(); @@ -238,8 +238,8 @@ public void write_and_expand() throws Exception { String authModelId = writeAuthModel(storeId); fga.setAuthorizationModelId(authModelId); ClientWriteRequest writeRequest = new ClientWriteRequest().writes(List.of(DEFAULT_TUPLE_KEY)); - ExpandRequest expandRequest = - new ExpandRequest().tupleKey(new TupleKey()._object(DEFAULT_DOC).relation("reader")); + ClientExpandRequest expandRequest = + new ClientExpandRequest()._object(DEFAULT_DOC).relation("reader"); // When fga.write(writeRequest).get(); diff --git a/src/test/java/dev/openfga/sdk/api/client/OpenFgaClientTest.java b/src/test/java/dev/openfga/sdk/api/client/OpenFgaClientTest.java index 3355f3b..9340c0a 100644 --- a/src/test/java/dev/openfga/sdk/api/client/OpenFgaClientTest.java +++ b/src/test/java/dev/openfga/sdk/api/client/OpenFgaClientTest.java @@ -1184,19 +1184,17 @@ public void check() throws Exception { // Given String postUrl = String.format("https://localhost/stores/%s/check", DEFAULT_STORE_ID); String expectedBody = String.format( - "{\"tuple_key\":{\"object\":\"%s\",\"relation\":\"%s\",\"user\":\"%s\"},\"contextual_tuples\":{\"tuple_keys\":[]},\"authorization_model_id\":\"01G5JAVJ41T49E9TT3SKVS7X1J\",\"trace\":null}", + "{\"tuple_key\":{\"object\":\"%s\",\"relation\":\"%s\",\"user\":\"%s\"},\"contextual_tuples\":null,\"authorization_model_id\":\"01G5JAVJ41T49E9TT3SKVS7X1J\",\"trace\":null}", DEFAULT_OBJECT, DEFAULT_RELATION, DEFAULT_USER); mockHttpClient.onPost(postUrl).withBody(is(expectedBody)).doReturn(200, "{\"allowed\":true}"); - CheckRequest request = new CheckRequest() - .tupleKey(new TupleKey() - ._object(DEFAULT_OBJECT) - .relation(DEFAULT_RELATION) - .user(DEFAULT_USER)) - .contextualTuples(new ContextualTupleKeys()) - .authorizationModelId(DEFAULT_AUTH_MODEL_ID); + ClientCheckRequest request = new ClientCheckRequest() + ._object(DEFAULT_OBJECT) + .relation(DEFAULT_RELATION) + .user(DEFAULT_USER); + ClientCheckOptions options = new ClientCheckOptions().authorizationModelId(DEFAULT_AUTH_MODEL_ID); // When - CheckResponse response = fga.check(request).get(); + CheckResponse response = fga.check(request, options).get(); // Then mockHttpClient.verify().post(postUrl).withBody(is(expectedBody)).called(1); @@ -1209,7 +1207,7 @@ public void check_storeIdRequired() { clientConfiguration.storeId(null); // When - var exception = assertThrows(FgaInvalidParameterException.class, () -> fga.check(new CheckRequest()) + var exception = assertThrows(FgaInvalidParameterException.class, () -> fga.check(new ClientCheckRequest()) .get()); // Then @@ -1217,17 +1215,6 @@ public void check_storeIdRequired() { "Required parameter storeId was invalid when calling ClientConfiguration.", exception.getMessage()); } - @Test - public void check_bodyRequired() { - // When - ExecutionException execException = - assertThrows(ExecutionException.class, () -> fga.check(null).get()); - - // Then - ApiException exception = assertInstanceOf(ApiException.class, execException.getCause()); - assertEquals("Missing the required parameter 'body' when calling check", exception.getMessage()); - } - @Test public void check_400() throws Exception { // Given @@ -1237,8 +1224,9 @@ public void check_400() throws Exception { .doReturn(400, "{\"code\":\"validation_error\",\"message\":\"Generic validation error\"}"); // When - ExecutionException execException = assertThrows( - ExecutionException.class, () -> fga.check(new CheckRequest()).get()); + ExecutionException execException = + assertThrows(ExecutionException.class, () -> fga.check(new ClientCheckRequest()) + .get()); // Then mockHttpClient.verify().post(postUrl).called(1); @@ -1258,8 +1246,9 @@ public void check_404() throws Exception { .doReturn(404, "{\"code\":\"undefined_endpoint\",\"message\":\"Endpoint not enabled\"}"); // When - ExecutionException execException = assertThrows( - ExecutionException.class, () -> fga.check(new CheckRequest()).get()); + ExecutionException execException = + assertThrows(ExecutionException.class, () -> fga.check(new ClientCheckRequest()) + .get()); // Then mockHttpClient.verify().post(postUrl).called(1); @@ -1278,8 +1267,9 @@ public void check_500() throws Exception { .doReturn(500, "{\"code\":\"internal_error\",\"message\":\"Internal Server Error\"}"); // When - ExecutionException execException = assertThrows( - ExecutionException.class, () -> fga.check(new CheckRequest()).get()); + ExecutionException execException = + assertThrows(ExecutionException.class, () -> fga.check(new ClientCheckRequest()) + .get()); // Then mockHttpClient.verify().post(postUrl).called(1); @@ -1304,15 +1294,14 @@ public void expandTest() throws Exception { "{\"tree\":{\"root\":{\"union\":{\"nodes\":[{\"leaf\":{\"users\":{\"users\":[\"%s\"]}}}]}}}}", DEFAULT_USER); mockHttpClient.onPost(postPath).withBody(is(expectedBody)).doReturn(200, responseBody); - ExpandRequest request = new ExpandRequest() - .authorizationModelId(DEFAULT_AUTH_MODEL_ID) - .tupleKey(new TupleKey() - ._object(DEFAULT_OBJECT) - .relation(DEFAULT_RELATION) - .user(DEFAULT_USER)); + ClientExpandRequest request = new ClientExpandRequest() + .user(DEFAULT_USER) + .relation(DEFAULT_RELATION) + ._object(DEFAULT_OBJECT); + ClientExpandOptions options = new ClientExpandOptions().authorizationModelId(DEFAULT_AUTH_MODEL_ID); // When - ExpandResponse response = fga.expand(request).get(); + ExpandResponse response = fga.expand(request, options).get(); // Then mockHttpClient.verify().post(postPath).withBody(is(expectedBody)).called(1); @@ -1336,7 +1325,7 @@ public void expand_storeIdRequired() { clientConfiguration.storeId(null); // When - var exception = assertThrows(FgaInvalidParameterException.class, () -> fga.expand(new ExpandRequest()) + var exception = assertThrows(FgaInvalidParameterException.class, () -> fga.expand(new ClientExpandRequest()) .get()); // Then @@ -1344,17 +1333,6 @@ public void expand_storeIdRequired() { "Required parameter storeId was invalid when calling ClientConfiguration.", exception.getMessage()); } - @Test - public void expand_bodyRequired() { - // When - ExecutionException execException = - assertThrows(ExecutionException.class, () -> fga.expand(null).get()); - - // Then - ApiException exception = assertInstanceOf(ApiException.class, execException.getCause()); - assertEquals("Missing the required parameter 'body' when calling expand", exception.getMessage()); - } - @Test public void expand_400() throws Exception { // Given @@ -1364,8 +1342,9 @@ public void expand_400() throws Exception { .doReturn(400, "{\"code\":\"validation_error\",\"message\":\"Generic validation error\"}"); // When - ExecutionException execException = assertThrows( - ExecutionException.class, () -> fga.expand(new ExpandRequest()).get()); + ExecutionException execException = + assertThrows(ExecutionException.class, () -> fga.expand(new ClientExpandRequest()) + .get()); // Then mockHttpClient.verify().post(postUrl).called(1); @@ -1385,8 +1364,9 @@ public void expand_404() throws Exception { .doReturn(404, "{\"code\":\"undefined_endpoint\",\"message\":\"Endpoint not enabled\"}"); // When - ExecutionException execException = assertThrows( - ExecutionException.class, () -> fga.expand(new ExpandRequest()).get()); + ExecutionException execException = + assertThrows(ExecutionException.class, () -> fga.expand(new ClientExpandRequest()) + .get()); // Then mockHttpClient.verify().post(postUrl).called(1); @@ -1405,8 +1385,9 @@ public void expand_500() throws Exception { .doReturn(500, "{\"code\":\"internal_error\",\"message\":\"Internal Server Error\"}"); // When - ExecutionException execException = assertThrows( - ExecutionException.class, () -> fga.expand(new ExpandRequest()).get()); + ExecutionException execException = + assertThrows(ExecutionException.class, () -> fga.expand(new ClientExpandRequest()) + .get()); // Then mockHttpClient.verify().post(postUrl).called(1); From fab7f270ea7489d6f75e6ec0eeb4fa85304d39a4 Mon Sep 17 00:00:00 2001 From: "Justin \"J.R.\" Hill" Date: Wed, 27 Sep 2023 01:08:17 -0700 Subject: [PATCH 17/22] feat: Polish remaining OpenFgaClient requests --- .openapi-generator/FILES | 5 + README.md | 37 ++++++ .../sdk/api/client/ClientAssertion.java | 86 ++++++++++++++ .../api/client/ClientListObjectsRequest.java | 66 +++++++++++ .../client/ClientListRelationsRequest.java | 66 +++++++++++ .../sdk/api/client/ClientTupleKey.java | 88 +++++++++++++++ .../sdk/api/client/ClientWriteRequest.java | 13 +-- .../openfga/sdk/api/client/OpenFgaClient.java | 58 +++++++--- .../ClientListObjectsOptions.java | 26 +++++ .../client/OpenFgaClientIntegrationTest.java | 20 ++-- .../sdk/api/client/OpenFgaClientTest.java | 106 ++++++------------ 11 files changed, 474 insertions(+), 97 deletions(-) create mode 100644 src/main/java/dev/openfga/sdk/api/client/ClientAssertion.java create mode 100644 src/main/java/dev/openfga/sdk/api/client/ClientListObjectsRequest.java create mode 100644 src/main/java/dev/openfga/sdk/api/client/ClientListRelationsRequest.java create mode 100644 src/main/java/dev/openfga/sdk/api/client/ClientTupleKey.java create mode 100644 src/main/java/dev/openfga/sdk/api/configuration/ClientListObjectsOptions.java diff --git a/.openapi-generator/FILES b/.openapi-generator/FILES index 0045d39..0308880 100644 --- a/.openapi-generator/FILES +++ b/.openapi-generator/FILES @@ -82,9 +82,13 @@ src/main/java/dev/openfga/sdk/api/auth/CredentialsFlowResponse.java src/main/java/dev/openfga/sdk/api/auth/OAuth2Client.java src/main/java/dev/openfga/sdk/api/client/ApiClient.java src/main/java/dev/openfga/sdk/api/client/ApiResponse.java +src/main/java/dev/openfga/sdk/api/client/ClientAssertion.java src/main/java/dev/openfga/sdk/api/client/ClientCheckRequest.java src/main/java/dev/openfga/sdk/api/client/ClientExpandRequest.java +src/main/java/dev/openfga/sdk/api/client/ClientListObjectsRequest.java +src/main/java/dev/openfga/sdk/api/client/ClientListRelationsRequest.java src/main/java/dev/openfga/sdk/api/client/ClientReadRequest.java +src/main/java/dev/openfga/sdk/api/client/ClientTupleKey.java src/main/java/dev/openfga/sdk/api/client/ClientWriteRequest.java src/main/java/dev/openfga/sdk/api/client/OpenFgaClient.java src/main/java/dev/openfga/sdk/api/configuration/ApiToken.java @@ -93,6 +97,7 @@ src/main/java/dev/openfga/sdk/api/configuration/ClientCheckOptions.java src/main/java/dev/openfga/sdk/api/configuration/ClientConfiguration.java src/main/java/dev/openfga/sdk/api/configuration/ClientCredentials.java src/main/java/dev/openfga/sdk/api/configuration/ClientExpandOptions.java +src/main/java/dev/openfga/sdk/api/configuration/ClientListObjectsOptions.java src/main/java/dev/openfga/sdk/api/configuration/ClientReadOptions.java src/main/java/dev/openfga/sdk/api/configuration/ClientWriteOptions.java src/main/java/dev/openfga/sdk/api/configuration/Configuration.java diff --git a/README.md b/README.md index 72b2b8d..fa2d49a 100644 --- a/README.md +++ b/README.md @@ -404,6 +404,16 @@ Expands the relationships in userset tree format. [API Documentation](https://openfga.dev/api/service#/Relationship%20Queries/Expand) ```java +var request = new ClientExpandRequest() + .relation("viewer") + ._object("document:roadmap"); +var options = new ClientCheckOptions() + // You can rely on the model id set in the configuration or override it for this specific request + .authorizationModelId("01GXSA8YR785C4FYS3C0RTG7B1"); + +var response = fgaClient.expand(request, options).get(); + +// response.Tree.Root = {"name":"document:roadmap#viewer","leaf":{"users":{"users":["user:81684243-9356-4421-8fbf-a4f8d36aa31b","user:f52a4f7a-054d-47ff-bb6e-3ac81269988f"]}}} ``` ##### List Objects @@ -413,6 +423,23 @@ List the objects of a particular type a user has access to. [API Documentation](https://openfga.dev/api/service#/Relationship%20Queries/ListObjects) ```java +var request = new ClientListObjectsRequest() + .user("user:81684243-9356-4421-8fbf-a4f8d36aa31b") + .relation("viewer") + .type("document") + .contextualTuples(List.of( + new ClientTupleKey() + .user("user:81684243-9356-4421-8fbf-a4f8d36aa31b") + .relation("writer") + ._object("document:budget") + )); +var options = new ClientListObjectsOptions() + // You can rely on the model id set in the configuration or override it for this specific request + .authorizationModelId("01GXSA8YR785C4FYS3C0RTG7B1"); + +var response = fgaClient.listObjects(request, options).get(); + +// response.Objects = ["document:roadmap"] ``` ##### List Relations @@ -420,6 +447,7 @@ List the objects of a particular type a user has access to. List the relations a user has on an object. ```java +// Coming soon. ``` #### Assertions @@ -431,6 +459,7 @@ Read assertions for a particular authorization model. [API Documentation](https://openfga.dev/api/service#/Assertions/Read%20Assertions) ```java +var response = fgaClient.readAssertions().get(); ``` ##### Write Assertions @@ -440,6 +469,14 @@ Update the assertions for a particular authorization model. [API Documentation](https://openfga.dev/api/service#/Assertions/Write%20Assertions) ```java +var assertions = List.of( + new ClientAssertion() + .user("user:81684243-9356-4421-8fbf-a4f8d36aa31b") + .relation("viewer") + ._object("document:roadmap") + .expectation(true) +); +fgaClient.writeAssertions(assertions).get(); ``` diff --git a/src/main/java/dev/openfga/sdk/api/client/ClientAssertion.java b/src/main/java/dev/openfga/sdk/api/client/ClientAssertion.java new file mode 100644 index 0000000..d1722a9 --- /dev/null +++ b/src/main/java/dev/openfga/sdk/api/client/ClientAssertion.java @@ -0,0 +1,86 @@ +/* + * OpenFGA + * A high performance and flexible authorization/permission engine built for developers and inspired by Google Zanzibar. + * + * The version of the OpenAPI document: 0.1 + * Contact: community@openfga.dev + * + * NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech). + * https://openapi-generator.tech + * Do not edit the class manually. + */ + +package dev.openfga.sdk.api.client; + +import dev.openfga.sdk.api.model.Assertion; +import dev.openfga.sdk.api.model.TupleKey; +import java.util.List; +import java.util.stream.Collectors; + +public class ClientAssertion { + private String user; + private String relation; + private String _object; + private boolean expectation; + + public ClientAssertion user(String user) { + this.user = user; + return this; + } + + /** + * Get user + * @return user + **/ + public String getUser() { + return user; + } + + public ClientAssertion relation(String relation) { + this.relation = relation; + return this; + } + + /** + * Get relation + * @return relation + **/ + public String getRelation() { + return relation; + } + + public ClientAssertion _object(String _object) { + this._object = _object; + return this; + } + + /** + * Get _object + * @return _object + **/ + public String getObject() { + return _object; + } + + public ClientAssertion expectation(boolean expectation) { + this.expectation = expectation; + return this; + } + + public boolean getExpectation() { + return expectation; + } + + public Assertion asAssertion() { + TupleKey tupleKey = new TupleKey().user(user).relation(relation)._object(_object); + return new Assertion().tupleKey(tupleKey).expectation(expectation); + } + + public static List asAssertions(List assertions) { + if (assertions == null || assertions.isEmpty()) { + return List.of(); + } + + return assertions.stream().map(ClientAssertion::asAssertion).collect(Collectors.toList()); + } +} diff --git a/src/main/java/dev/openfga/sdk/api/client/ClientListObjectsRequest.java b/src/main/java/dev/openfga/sdk/api/client/ClientListObjectsRequest.java new file mode 100644 index 0000000..9f25b34 --- /dev/null +++ b/src/main/java/dev/openfga/sdk/api/client/ClientListObjectsRequest.java @@ -0,0 +1,66 @@ +/* + * OpenFGA + * A high performance and flexible authorization/permission engine built for developers and inspired by Google Zanzibar. + * + * The version of the OpenAPI document: 0.1 + * Contact: community@openfga.dev + * + * NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech). + * https://openapi-generator.tech + * Do not edit the class manually. + */ + +package dev.openfga.sdk.api.client; + +import java.util.List; + +public class ClientListObjectsRequest { + private String user; + private String relation; + private String type; + private List contextualTupleKeys; + + public ClientListObjectsRequest user(String user) { + this.user = user; + return this; + } + + /** + * Get user + * @return user + **/ + public String getUser() { + return user; + } + + public ClientListObjectsRequest relation(String relation) { + this.relation = relation; + return this; + } + + /** + * Get relation + * @return relation + **/ + public String getRelation() { + return relation; + } + + public ClientListObjectsRequest type(String type) { + this.type = type; + return this; + } + + public String getType() { + return type; + } + + public ClientListObjectsRequest contextualTupleKeys(List contextualTupleKeys) { + this.contextualTupleKeys = contextualTupleKeys; + return this; + } + + public List getContextualTupleKeys() { + return contextualTupleKeys; + } +} diff --git a/src/main/java/dev/openfga/sdk/api/client/ClientListRelationsRequest.java b/src/main/java/dev/openfga/sdk/api/client/ClientListRelationsRequest.java new file mode 100644 index 0000000..1f122f5 --- /dev/null +++ b/src/main/java/dev/openfga/sdk/api/client/ClientListRelationsRequest.java @@ -0,0 +1,66 @@ +/* + * OpenFGA + * A high performance and flexible authorization/permission engine built for developers and inspired by Google Zanzibar. + * + * The version of the OpenAPI document: 0.1 + * Contact: community@openfga.dev + * + * NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech). + * https://openapi-generator.tech + * Do not edit the class manually. + */ + +package dev.openfga.sdk.api.client; + +import java.util.List; + +public class ClientListRelationsRequest { + private String user; + private String _object; + private List relations; + private List contextualTupleKeys; + + public ClientListRelationsRequest user(String user) { + this.user = user; + return this; + } + + /** + * Get user + * @return user + **/ + public String getUser() { + return user; + } + + public ClientListRelationsRequest _object(String _object) { + this._object = _object; + return this; + } + + public String getObject() { + return _object; + } + + public ClientListRelationsRequest relations(List relations) { + this.relations = relations; + return this; + } + + /** + * Get relations + * @return relations + **/ + public List getRelations() { + return relations; + } + + public ClientListRelationsRequest contextualTupleKeys(List contextualTupleKeys) { + this.contextualTupleKeys = contextualTupleKeys; + return this; + } + + public List getContextualTupleKeys() { + return contextualTupleKeys; + } +} diff --git a/src/main/java/dev/openfga/sdk/api/client/ClientTupleKey.java b/src/main/java/dev/openfga/sdk/api/client/ClientTupleKey.java new file mode 100644 index 0000000..7993519 --- /dev/null +++ b/src/main/java/dev/openfga/sdk/api/client/ClientTupleKey.java @@ -0,0 +1,88 @@ +/* + * OpenFGA + * A high performance and flexible authorization/permission engine built for developers and inspired by Google Zanzibar. + * + * The version of the OpenAPI document: 0.1 + * Contact: community@openfga.dev + * + * NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech). + * https://openapi-generator.tech + * Do not edit the class manually. + */ + +package dev.openfga.sdk.api.client; + +import dev.openfga.sdk.api.model.ContextualTupleKeys; +import dev.openfga.sdk.api.model.TupleKey; +import dev.openfga.sdk.api.model.TupleKeys; +import java.util.List; +import java.util.stream.Collectors; + +public class ClientTupleKey { + private String user; + private String relation; + private String _object; + + public ClientTupleKey _object(String _object) { + this._object = _object; + return this; + } + + /** + * Get _object + * @return _object + **/ + public String getObject() { + return _object; + } + + public ClientTupleKey relation(String relation) { + this.relation = relation; + return this; + } + + /** + * Get relation + * @return relation + **/ + public String getRelation() { + return relation; + } + + public ClientTupleKey user(String user) { + this.user = user; + return this; + } + + /** + * Get user + * @return user + **/ + public String getUser() { + return user; + } + + public TupleKey asTupleKey() { + return new TupleKey().user(user).relation(relation)._object(_object); + } + + public static TupleKeys asTupleKeys(List clientTupleKeys) { + if (clientTupleKeys == null || clientTupleKeys.size() == 0) { + return new TupleKeys(); + } + + return new TupleKeys().tupleKeys(asListOfTupleKey(clientTupleKeys)); + } + + public static ContextualTupleKeys asContextualTupleKeys(List clientTupleKeys) { + if (clientTupleKeys == null || clientTupleKeys.size() == 0) { + return new ContextualTupleKeys(); + } + + return new ContextualTupleKeys().tupleKeys(asListOfTupleKey(clientTupleKeys)); + } + + private static List asListOfTupleKey(List clientTupleKeys) { + return clientTupleKeys.stream().map(ClientTupleKey::asTupleKey).collect(Collectors.toList()); + } +} diff --git a/src/main/java/dev/openfga/sdk/api/client/ClientWriteRequest.java b/src/main/java/dev/openfga/sdk/api/client/ClientWriteRequest.java index d786989..ecbebbc 100644 --- a/src/main/java/dev/openfga/sdk/api/client/ClientWriteRequest.java +++ b/src/main/java/dev/openfga/sdk/api/client/ClientWriteRequest.java @@ -12,28 +12,27 @@ package dev.openfga.sdk.api.client; -import dev.openfga.sdk.api.model.TupleKey; import java.util.List; public class ClientWriteRequest { - private List writes; - private List deletes; + private List writes; + private List deletes; - public ClientWriteRequest writes(List writes) { + public ClientWriteRequest writes(List writes) { this.writes = writes; return this; } - public List getWrites() { + public List getWrites() { return writes; } - public ClientWriteRequest deletes(List deletes) { + public ClientWriteRequest deletes(List deletes) { this.deletes = deletes; return this; } - public List getDeletes() { + public List getDeletes() { return deletes; } } diff --git a/src/main/java/dev/openfga/sdk/api/client/OpenFgaClient.java b/src/main/java/dev/openfga/sdk/api/client/OpenFgaClient.java index 66270f9..9833ae5 100644 --- a/src/main/java/dev/openfga/sdk/api/client/OpenFgaClient.java +++ b/src/main/java/dev/openfga/sdk/api/client/OpenFgaClient.java @@ -18,6 +18,7 @@ import dev.openfga.sdk.api.configuration.*; import dev.openfga.sdk.api.model.*; import dev.openfga.sdk.errors.*; +import java.util.List; import java.util.concurrent.CompletableFuture; public class OpenFgaClient { @@ -242,12 +243,8 @@ public CompletableFuture write(ClientWriteRequest request, ClientWriteOp WriteRequest body = new WriteRequest(); if (request != null) { - if (request.getWrites() != null) { - body.writes(new TupleKeys().tupleKeys(request.getWrites())); - } - if (request.getDeletes() != null) { - body.deletes(new TupleKeys().tupleKeys(request.getDeletes())); - } + body.writes(ClientTupleKey.asTupleKeys(request.getWrites())); + body.deletes(ClientTupleKey.asTupleKeys(request.getDeletes())); } if (options != null && !isNullOrWhitespace(options.getAuthorizationModelId())) { @@ -265,11 +262,11 @@ public CompletableFuture write(ClientWriteRequest request, ClientWriteOp * * @throws FgaInvalidParameterException When the Store ID is null, empty, or whitespace */ - public CompletableFuture writeTuples(TupleKeys tupleKeys) throws FgaInvalidParameterException { + public CompletableFuture writeTuples(List tupleKeys) throws FgaInvalidParameterException { configuration.assertValid(); String storeId = configuration.getStoreIdChecked(); - var request = new WriteRequest().writes(tupleKeys); + var request = new WriteRequest().writes(ClientTupleKey.asTupleKeys(tupleKeys)); String authorizationModelId = configuration.getAuthorizationModelId(); if (!isNullOrWhitespace(authorizationModelId)) { request.authorizationModelId(authorizationModelId); @@ -283,11 +280,11 @@ public CompletableFuture writeTuples(TupleKeys tupleKeys) throws FgaInva * * @throws FgaInvalidParameterException When the Store ID is null, empty, or whitespace */ - public CompletableFuture deleteTuples(TupleKeys tupleKeys) throws FgaInvalidParameterException { + public CompletableFuture deleteTuples(List tupleKeys) throws FgaInvalidParameterException { configuration.assertValid(); String storeId = configuration.getStoreIdChecked(); - var request = new WriteRequest().deletes(tupleKeys); + var request = new WriteRequest().deletes(ClientTupleKey.asTupleKeys(tupleKeys)); String authorizationModelId = configuration.getAuthorizationModelId(); if (!isNullOrWhitespace(authorizationModelId)) { request.authorizationModelId(authorizationModelId); @@ -388,11 +385,38 @@ public CompletableFuture expand(ClientExpandRequest request, Cli * * @throws FgaInvalidParameterException When the Store ID is null, empty, or whitespace */ - public CompletableFuture listObjects(ListObjectsRequest request) + public CompletableFuture listObjects(ClientListObjectsRequest request) throws FgaInvalidParameterException { + return listObjects(request, null); + } + + /** + * ListObjects - List the objects of a particular type that the user has a certain relation to (evaluates) + * + * @throws FgaInvalidParameterException When the Store ID is null, empty, or whitespace + */ + public CompletableFuture listObjects( + ClientListObjectsRequest request, ClientListObjectsOptions options) throws FgaInvalidParameterException { configuration.assertValid(); String storeId = configuration.getStoreIdChecked(); - return call(() -> api.listObjects(storeId, request)); + + ListObjectsRequest body = new ListObjectsRequest(); + + if (request != null) { + body.user(request.getUser()) + .relation(request.getRelation()) + .type(request.getType()) + .contextualTuples(ClientTupleKey.asContextualTupleKeys(request.getContextualTupleKeys())); + } + + if (options != null && !isNullOrWhitespace(options.getAuthorizationModelId())) { + body.authorizationModelId(options.getAuthorizationModelId()); + } else { + String authorizationModelId = configuration.getAuthorizationModelId(); + body.authorizationModelId(authorizationModelId); + } + + return call(() -> api.listObjects(storeId, body)); } /* @@ -410,6 +434,7 @@ public CompletableFuture listObjects(ListObjectsRequest req * @throws FgaInvalidParameterException When either the Store ID or Authorization Model ID is null, empty, or whitespace */ public CompletableFuture readAssertions() throws FgaInvalidParameterException { + // TODO: Add version of this function that accepts ClientReadAssertionsOptions configuration.assertValid(); String storeId = configuration.getStoreIdChecked(); String authorizationModelId = configuration.getAuthorizationModelIdChecked(); @@ -421,11 +446,16 @@ public CompletableFuture readAssertions() throws FgaInva * * @throws FgaInvalidParameterException When either the Store ID or Authorization Model ID is null, empty, or whitespace */ - public CompletableFuture writeAssertions(WriteAssertionsRequest request) throws FgaInvalidParameterException { + public CompletableFuture writeAssertions(List assertions) + throws FgaInvalidParameterException { + // TODO: Add version of this function that accepts ClientWriteAssertionsOptions configuration.assertValid(); String storeId = configuration.getStoreIdChecked(); String authorizationModelId = configuration.getAuthorizationModelIdChecked(); - return call(() -> api.writeAssertions(storeId, authorizationModelId, request)); + + WriteAssertionsRequest body = new WriteAssertionsRequest().assertions(ClientAssertion.asAssertions(assertions)); + + return call(() -> api.writeAssertions(storeId, authorizationModelId, body)); } /** diff --git a/src/main/java/dev/openfga/sdk/api/configuration/ClientListObjectsOptions.java b/src/main/java/dev/openfga/sdk/api/configuration/ClientListObjectsOptions.java new file mode 100644 index 0000000..67ba5f4 --- /dev/null +++ b/src/main/java/dev/openfga/sdk/api/configuration/ClientListObjectsOptions.java @@ -0,0 +1,26 @@ +/* + * OpenFGA + * A high performance and flexible authorization/permission engine built for developers and inspired by Google Zanzibar. + * + * The version of the OpenAPI document: 0.1 + * Contact: community@openfga.dev + * + * NOTE: This class is auto generated by OpenAPI Generator (https://openapi-generator.tech). + * https://openapi-generator.tech + * Do not edit the class manually. + */ + +package dev.openfga.sdk.api.configuration; + +public class ClientListObjectsOptions { + private String authorizationModelId; + + public ClientListObjectsOptions authorizationModelId(String authorizationModelId) { + this.authorizationModelId = authorizationModelId; + return this; + } + + public String getAuthorizationModelId() { + return authorizationModelId; + } +} diff --git a/src/test-integration/java/dev/openfga/sdk/api/client/OpenFgaClientIntegrationTest.java b/src/test-integration/java/dev/openfga/sdk/api/client/OpenFgaClientIntegrationTest.java index cf33f17..ca0760b 100644 --- a/src/test-integration/java/dev/openfga/sdk/api/client/OpenFgaClientIntegrationTest.java +++ b/src/test-integration/java/dev/openfga/sdk/api/client/OpenFgaClientIntegrationTest.java @@ -29,9 +29,14 @@ public class OpenFgaClientIntegrationTest { "{\"schema_version\":\"1.1\",\"type_definitions\":[{\"type\":\"user\"},{\"type\":\"document\",\"relations\":{\"reader\":{\"this\":{}},\"writer\":{\"this\":{}},\"owner\":{\"this\":{}}},\"metadata\":{\"relations\":{\"reader\":{\"directly_related_user_types\":[{\"type\":\"user\"}]},\"writer\":{\"directly_related_user_types\":[{\"type\":\"user\"}]},\"owner\":{\"directly_related_user_types\":[{\"type\":\"user\"}]}}}}]}"; private static final String DEFAULT_USER = "user:81684243-9356-4421-8fbf-a4f8d36aa31b"; private static final String DEFAULT_DOC = "document:2021-budget"; - public static final TupleKey DEFAULT_TUPLE_KEY = - new TupleKey().user(DEFAULT_USER).relation("reader")._object(DEFAULT_DOC); - public static final List DEFAULT_TUPLE_KEYS = List.of(DEFAULT_TUPLE_KEY); + public static final ClientTupleKey DEFAULT_TUPLE_KEY = + new ClientTupleKey().user(DEFAULT_USER).relation("reader")._object(DEFAULT_DOC); + public static final List DEFAULT_TUPLE_KEYS = List.of(DEFAULT_TUPLE_KEY); + public static final ClientAssertion DEFAULT_ASSERTION = new ClientAssertion() + .user(DEFAULT_USER) + .relation("reader") + ._object(DEFAULT_DOC) + .expectation(true); private OpenFgaClient fga; @@ -262,8 +267,10 @@ public void write_and_listObjects() throws Exception { String authModelId = writeAuthModel(storeId); fga.setAuthorizationModelId(authModelId); ClientWriteRequest writeRequest = new ClientWriteRequest().writes(List.of(DEFAULT_TUPLE_KEY)); - ListObjectsRequest listObjectsRequest = - new ListObjectsRequest().user(DEFAULT_USER).relation("reader").type("document"); + ClientListObjectsRequest listObjectsRequest = new ClientListObjectsRequest() + .user(DEFAULT_USER) + .relation("reader") + .type("document"); // When fga.write(writeRequest).get(); @@ -283,8 +290,7 @@ public void write_readAssertions() throws Exception { fga.setStoreId(storeId); String authModelId = writeAuthModel(storeId); fga.setAuthorizationModelId(authModelId); - WriteAssertionsRequest writeRequest = new WriteAssertionsRequest() - .assertions(List.of(new Assertion().tupleKey(DEFAULT_TUPLE_KEY).expectation(true))); + List assertions = List.of(DEFAULT_ASSERTION); // When fga.writeAssertions(writeRequest).get(); diff --git a/src/test/java/dev/openfga/sdk/api/client/OpenFgaClientTest.java b/src/test/java/dev/openfga/sdk/api/client/OpenFgaClientTest.java index 9340c0a..3ec3ceb 100644 --- a/src/test/java/dev/openfga/sdk/api/client/OpenFgaClientTest.java +++ b/src/test/java/dev/openfga/sdk/api/client/OpenFgaClientTest.java @@ -1016,11 +1016,11 @@ public void writeTest_writes() throws Exception { // Given String postPath = "https://localhost/stores/01YCP46JKYM8FJCQ37NMBYHE5X/write"; String expectedBody = String.format( - "{\"writes\":{\"tuple_keys\":[{\"object\":\"%s\",\"relation\":\"%s\",\"user\":\"%s\"}]},\"deletes\":null,\"authorization_model_id\":\"%s\"}", + "{\"writes\":{\"tuple_keys\":[{\"object\":\"%s\",\"relation\":\"%s\",\"user\":\"%s\"}]},\"deletes\":{\"tuple_keys\":[]},\"authorization_model_id\":\"%s\"}", DEFAULT_OBJECT, DEFAULT_RELATION, DEFAULT_USER, DEFAULT_AUTH_MODEL_ID); mockHttpClient.onPost(postPath).withBody(is(expectedBody)).doReturn(200, EMPTY_RESPONSE_BODY); ClientWriteRequest request = new ClientWriteRequest() - .writes(List.of(new TupleKey() + .writes(List.of(new ClientTupleKey() ._object(DEFAULT_OBJECT) .relation(DEFAULT_RELATION) .user(DEFAULT_USER))); @@ -1040,11 +1040,11 @@ public void writeTest_deletes() throws Exception { // Given String postPath = "https://localhost/stores/01YCP46JKYM8FJCQ37NMBYHE5X/write"; String expectedBody = String.format( - "{\"writes\":null,\"deletes\":{\"tuple_keys\":[{\"object\":\"%s\",\"relation\":\"%s\",\"user\":\"%s\"}]},\"authorization_model_id\":\"%s\"}", + "{\"writes\":{\"tuple_keys\":[]},\"deletes\":{\"tuple_keys\":[{\"object\":\"%s\",\"relation\":\"%s\",\"user\":\"%s\"}]},\"authorization_model_id\":\"%s\"}", DEFAULT_OBJECT, DEFAULT_RELATION, DEFAULT_USER, DEFAULT_AUTH_MODEL_ID); mockHttpClient.onPost(postPath).withBody(is(expectedBody)).doReturn(200, EMPTY_RESPONSE_BODY); ClientWriteRequest request = new ClientWriteRequest() - .deletes(List.of(new TupleKey() + .deletes(List.of(new ClientTupleKey() ._object(DEFAULT_OBJECT) .relation(DEFAULT_RELATION) .user(DEFAULT_USER))); @@ -1064,11 +1064,10 @@ public void writeTuplesTest() throws Exception { "{\"writes\":{\"tuple_keys\":[{\"object\":\"%s\",\"relation\":\"%s\",\"user\":\"%s\"}]},\"deletes\":null,\"authorization_model_id\":\"%s\"}", DEFAULT_OBJECT, DEFAULT_RELATION, DEFAULT_USER, DEFAULT_AUTH_MODEL_ID); mockHttpClient.onPost(postPath).withBody(is(expectedBody)).doReturn(200, EMPTY_RESPONSE_BODY); - TupleKeys tuples = new TupleKeys() - .tupleKeys(List.of(new TupleKey() - ._object(DEFAULT_OBJECT) - .relation(DEFAULT_RELATION) - .user(DEFAULT_USER))); + List tuples = List.of(new ClientTupleKey() + ._object(DEFAULT_OBJECT) + .relation(DEFAULT_RELATION) + .user(DEFAULT_USER)); // When fga.writeTuples(tuples); @@ -1085,11 +1084,10 @@ public void deleteTuplesTest() throws Exception { "{\"writes\":null,\"deletes\":{\"tuple_keys\":[{\"object\":\"%s\",\"relation\":\"%s\",\"user\":\"%s\"}]},\"authorization_model_id\":\"%s\"}", DEFAULT_OBJECT, DEFAULT_RELATION, DEFAULT_USER, DEFAULT_AUTH_MODEL_ID); mockHttpClient.onPost(postPath).withBody(is(expectedBody)).doReturn(200, EMPTY_RESPONSE_BODY); - TupleKeys tuples = new TupleKeys() - .tupleKeys(List.of(new TupleKey() - ._object(DEFAULT_OBJECT) - .relation(DEFAULT_RELATION) - .user(DEFAULT_USER))); + List tuples = List.of(new ClientTupleKey() + ._object(DEFAULT_OBJECT) + .relation(DEFAULT_RELATION) + .user(DEFAULT_USER)); // When fga.deleteTuples(tuples); @@ -1405,16 +1403,14 @@ public void listObjectsTest() throws Exception { // Given String postPath = String.format("https://localhost/stores/%s/list-objects", DEFAULT_STORE_ID); String expectedBody = String.format( - "{\"authorization_model_id\":\"%s\",\"type\":null,\"relation\":\"%s\",\"user\":\"%s\",\"contextual_tuples\":null}", + "{\"authorization_model_id\":\"%s\",\"type\":null,\"relation\":\"%s\",\"user\":\"%s\",\"contextual_tuples\":{\"tuple_keys\":[]}}", DEFAULT_AUTH_MODEL_ID, DEFAULT_RELATION, DEFAULT_USER); mockHttpClient .onPost(postPath) .withBody(is(expectedBody)) .doReturn(200, String.format("{\"objects\":[\"%s\"]}", DEFAULT_OBJECT)); - ListObjectsRequest request = new ListObjectsRequest() - .authorizationModelId(DEFAULT_AUTH_MODEL_ID) - .relation(DEFAULT_RELATION) - .user(DEFAULT_USER); + ClientListObjectsRequest request = + new ClientListObjectsRequest().relation(DEFAULT_RELATION).user(DEFAULT_USER); // When ListObjectsResponse response = fga.listObjects(request).get(); @@ -1430,25 +1426,15 @@ public void listObjects_storeIdRequired() { clientConfiguration.storeId(null); // When - var exception = assertThrows(FgaInvalidParameterException.class, () -> fga.listObjects(new ListObjectsRequest()) - .get()); + var exception = + assertThrows(FgaInvalidParameterException.class, () -> fga.listObjects(new ClientListObjectsRequest()) + .get()); // Then assertEquals( "Required parameter storeId was invalid when calling ClientConfiguration.", exception.getMessage()); } - @Test - public void listObjects_bodyRequired() { - // When - ExecutionException execException = assertThrows( - ExecutionException.class, () -> fga.listObjects(null).get()); - - // Then - ApiException exception = assertInstanceOf(ApiException.class, execException.getCause()); - assertEquals("Missing the required parameter 'body' when calling listObjects", exception.getMessage()); - } - @Test public void listObjects_400() throws Exception { // Given @@ -1459,7 +1445,7 @@ public void listObjects_400() throws Exception { // When ExecutionException execException = - assertThrows(ExecutionException.class, () -> fga.listObjects(new ListObjectsRequest()) + assertThrows(ExecutionException.class, () -> fga.listObjects(new ClientListObjectsRequest()) .get()); // Then @@ -1481,7 +1467,7 @@ public void listObjects_404() throws Exception { // When ExecutionException execException = - assertThrows(ExecutionException.class, () -> fga.listObjects(new ListObjectsRequest()) + assertThrows(ExecutionException.class, () -> fga.listObjects(new ClientListObjectsRequest()) .get()); // Then @@ -1502,7 +1488,7 @@ public void listObjects_500() throws Exception { // When ExecutionException execException = - assertThrows(ExecutionException.class, () -> fga.listObjects(new ListObjectsRequest()) + assertThrows(ExecutionException.class, () -> fga.listObjects(new ClientListObjectsRequest()) .get()); // Then @@ -1646,16 +1632,14 @@ public void writeAssertionsTest() throws Exception { "{\"assertions\":[{\"tuple_key\":{\"object\":\"%s\",\"relation\":\"%s\",\"user\":\"%s\"},\"expectation\":true}]}", DEFAULT_OBJECT, DEFAULT_RELATION, DEFAULT_USER); mockHttpClient.onPut(putUrl).withBody(is(expectedBody)).doReturn(200, EMPTY_RESPONSE_BODY); - WriteAssertionsRequest request = new WriteAssertionsRequest() - .assertions(List.of(new Assertion() - .tupleKey(new TupleKey() - ._object(DEFAULT_OBJECT) - .relation(DEFAULT_RELATION) - .user(DEFAULT_USER)) - .expectation(true))); + List assertions = List.of(new ClientAssertion() + .user(DEFAULT_USER) + .relation(DEFAULT_RELATION) + ._object(DEFAULT_OBJECT) + .expectation(true)); // When - fga.writeAssertions(request).get(); + fga.writeAssertions(assertions).get(); // Then mockHttpClient.verify().put(putUrl).withBody(is(expectedBody)).called(1); @@ -1667,9 +1651,8 @@ public void writeAssertions_storeIdRequired() { clientConfiguration.storeId(null); // When - var exception = - assertThrows(FgaInvalidParameterException.class, () -> fga.writeAssertions(new WriteAssertionsRequest()) - .get()); + var exception = assertThrows(FgaInvalidParameterException.class, () -> fga.writeAssertions(List.of()) + .get()); // Then assertEquals( @@ -1682,9 +1665,8 @@ public void writeAssertions_authModelIdRequired() { clientConfiguration.authorizationModelId(null); // When - var exception = - assertThrows(FgaInvalidParameterException.class, () -> fga.writeAssertions(new WriteAssertionsRequest()) - .get()); + var exception = assertThrows(FgaInvalidParameterException.class, () -> fga.writeAssertions(List.of()) + .get()); // Then assertEquals( @@ -1692,17 +1674,6 @@ public void writeAssertions_authModelIdRequired() { exception.getMessage()); } - @Test - public void writeAssertions_bodyRequired() { - // When - ExecutionException execException = assertThrows( - ExecutionException.class, () -> fga.writeAssertions(null).get()); - - // Then - ApiException exception = assertInstanceOf(ApiException.class, execException.getCause()); - assertEquals("Missing the required parameter 'body' when calling writeAssertions", exception.getMessage()); - } - @Test public void writeAssertions_400() throws Exception { // Given @@ -1713,9 +1684,8 @@ public void writeAssertions_400() throws Exception { .doReturn(400, "{\"code\":\"validation_error\",\"message\":\"Generic validation error\"}"); // When - ExecutionException execException = - assertThrows(ExecutionException.class, () -> fga.writeAssertions(new WriteAssertionsRequest()) - .get()); + ExecutionException execException = assertThrows( + ExecutionException.class, () -> fga.writeAssertions(List.of()).get()); // Then mockHttpClient.verify().put(putUrl).called(1); @@ -1736,9 +1706,8 @@ public void writeAssertions_404() throws Exception { .doReturn(404, "{\"code\":\"undefined_endpoint\",\"message\":\"Endpoint not enabled\"}"); // When - ExecutionException execException = - assertThrows(ExecutionException.class, () -> fga.writeAssertions(new WriteAssertionsRequest()) - .get()); + ExecutionException execException = assertThrows( + ExecutionException.class, () -> fga.writeAssertions(List.of()).get()); // Then mockHttpClient.verify().put(putUrl).called(1); @@ -1758,9 +1727,8 @@ public void writeAssertions_500() throws Exception { .doReturn(500, "{\"code\":\"internal_error\",\"message\":\"Internal Server Error\"}"); // When - ExecutionException execException = - assertThrows(ExecutionException.class, () -> fga.writeAssertions(new WriteAssertionsRequest()) - .get()); + ExecutionException execException = assertThrows( + ExecutionException.class, () -> fga.writeAssertions(List.of()).get()); // Then mockHttpClient.verify().put(putUrl).called(1); From 669e745ac5d8b37773738161757d6df6c5f36f03 Mon Sep 17 00:00:00 2001 From: "Justin \"J.R.\" Hill" Date: Wed, 27 Sep 2023 01:52:04 -0700 Subject: [PATCH 18/22] docs: Flesh out README --- README.md | 115 +++++++++++++++++- .../openfga/sdk/api/client/OpenFgaClient.java | 25 +++- .../client/OpenFgaClientIntegrationTest.java | 2 +- 3 files changed, 139 insertions(+), 3 deletions(-) diff --git a/README.md b/README.md index fa2d49a..b9a18e0 100644 --- a/README.md +++ b/README.md @@ -1,5 +1,7 @@ # Java SDK for OpenFGA +[![Maven Central](https://img.shields.io/maven-central/v/dev.openfga/openfga-sdk.svg?label=Maven%20Central)](https://search.maven.org/search?q=g:%22dev.openfga%22%20AND%20a:%22openfga-sdk%22) +[![Javadoc](https://javadoc.io/badge2/dev.openfga/openfga-sdk/javadoc.svg)](https://javadoc.io/doc/dev.openfga/openfga-sdk) [![Release](https://img.shields.io/github/v/release/openfga/java-sdk?sort=semver&color=green)](https://github.com/openfga/java-sdk/releases) [![License](https://img.shields.io/badge/License-Apache_2.0-blue.svg)](./LICENSE) [![FOSSA Status](https://app.fossa.com/api/projects/git%2Bgithub.com%2Fopenfga%2Fjava-sdk.svg?type=shield)](https://app.fossa.com/projects/git%2Bgithub.com%2Fopenfga%2Fjava-sdk?ref=badge_shield) @@ -65,6 +67,49 @@ OpenFGA is designed to make it easy for application builders to model their perm ## Installation +The OpenFGA Java SDK is available on [Maven Central](https://central.sonatype.com/). + +It can be used with the following: + +* Gradle (Groovy) + +```groovy +implementation 'dev.openfga:openfga-sdk:0.0.4' +``` + +* Gradle (Kotlin) + +```kotlin +implementation("dev.openfga:openfga-sdk:0.0.4") +``` + +* Apache Maven + +```xml + + dev.openfga + openfga-sdk + 0.0.4 + +``` + +* Ivy + +```xml + +``` + +* SBT + +```scala +libraryDependencies += "dev.openfga" % "openfga-sdk" % "0.0.4" +``` + +* Leiningen + +```edn +[dev.openfga/openfga-sdk "0.0.4"] +``` ## Getting Started @@ -75,17 +120,85 @@ OpenFGA is designed to make it easy for application builders to model their perm #### No Credentials -```cjava +```java +import com.fasterxml.jackson.databind.ObjectMapper; +import dev.openfga.sdk.api.client.ApiClient; +import dev.openfga.sdk.api.client.OpenFgaClient; +import dev.openfga.sdk.api.configuration.ClientConfiguration; +import java.net.http.HttpClient; + +public class Example { + public static void main(String[] args) throws Exception { + var clientConfig = new ClientConfiguration() + .apiUrl(System.getenv("OPENFGA_API_URL")) // If not specified, will default to "https://localhost:8080" + .storeId(System.getenv("OPENFGA_STORE_ID")) // Not required when calling createStore() or listStores() + .authorizationModelId(System.getenv("OPENFGA_AUTHORIZATION_MODEL_ID")); // Optional, can be overridden per request + var apiClient = new ApiClient(HttpClient.newBuilder(), new ObjectMapper()); + + var fgaClient = new OpenFgaClient(apiClient, clientConfig); + var response = fgaClient.readAuthorizationModels().get(); + } +} ``` #### API Token ```java +import com.fasterxml.jackson.databind.ObjectMapper; +import dev.openfga.sdk.api.client.ApiClient; +import dev.openfga.sdk.api.client.OpenFgaClient; +import dev.openfga.sdk.api.configuration.ApiToken; +import dev.openfga.sdk.api.configuration.ClientConfiguration; +import dev.openfga.sdk.api.configuration.Credentials; +import java.net.http.HttpClient; + +public class Example { + public static void main(String[] args) throws Exception { + var clientConfig = new ClientConfiguration() + .apiUrl(System.getenv("OPENFGA_API_URL")) // If not specified, will default to "https://localhost:8080" + .storeId(System.getenv("OPENFGA_STORE_ID")) // Not required when calling createStore() or listStores() + .authorizationModelId(System.getenv("OPENFGA_AUTHORIZATION_MODEL_ID")) // Optional, can be overridden per request + .credentials(new Credentials( + new ApiToken(System.getenv("OPENFGA_API_TOKEN")) // will be passed as the "Authorization: Bearer ${ApiToken}" request header + )); + var apiClient = new ApiClient(HttpClient.newBuilder(), new ObjectMapper()); + + var fgaClient = new OpenFgaClient(apiClient, clientConfig); + var response = fgaClient.readAuthorizationModels().get(); + } +} ``` #### Client Credentials ```java +import com.fasterxml.jackson.databind.ObjectMapper; +import dev.openfga.sdk.api.client.ApiClient; +import dev.openfga.sdk.api.client.OpenFgaClient; +import dev.openfga.sdk.api.configuration.ClientConfiguration; +import dev.openfga.sdk.api.configuration.ClientCredentials; +import dev.openfga.sdk.api.configuration.Credentials; +import java.net.http.HttpClient; + +public class Example { + public static void main(String[] args) throws Exception { + var clientConfig = new ClientConfiguration() + .apiUrl(System.getenv("OPENFGA_API_URL")) // If not specified, will default to "https://localhost:8080" + .storeId(System.getenv("OPENFGA_STORE_ID")) // Not required when calling createStore() or listStores() + .authorizationModelId(System.getenv("OPENFGA_AUTHORIZATION_MODEL_ID")) // Optional, can be overridden per request + .credentials(new Credentials( + new ClientCredentials() + .apiTokenIssuer(System.getenv("OPENFGA_API_TOKEN_ISSUER")) + .apiAudience(System.getenv("OPENFGA_API_AUDIENCE")) + .clientId(System.getenv("OPENFGA_CLIENT_ID")) + .clientSecret(System.getenv("OPENFGA_CLIENT_SECRET")) + )); + var apiClient = new ApiClient(HttpClient.newBuilder(), new ObjectMapper()); + + var fgaClient = new OpenFgaClient(apiClient, clientConfig); + var response = fgaClient.readAuthorizationModels().get(); + } +} ``` diff --git a/src/main/java/dev/openfga/sdk/api/client/OpenFgaClient.java b/src/main/java/dev/openfga/sdk/api/client/OpenFgaClient.java index 9833ae5..95971cb 100644 --- a/src/main/java/dev/openfga/sdk/api/client/OpenFgaClient.java +++ b/src/main/java/dev/openfga/sdk/api/client/OpenFgaClient.java @@ -105,6 +105,16 @@ public CompletableFuture deleteStore() throws FgaInvalidParameterException * Authorization Models * ************************/ + /** + * ReadAuthorizationModels - Read all authorization models + * + * @throws FgaInvalidParameterException When the Store ID is null, empty, or whitespace + */ + public CompletableFuture readAuthorizationModels() + throws FgaInvalidParameterException { + return readAuthorizationModels(null); + } + /** * ReadAuthorizationModels - Read all authorization models * @@ -114,7 +124,20 @@ public CompletableFuture readAuthorizationModel ReadAuthorizationModelsOptions options) throws FgaInvalidParameterException { configuration.assertValid(); String storeId = configuration.getStoreIdChecked(); - return call(() -> api.readAuthorizationModels(storeId, options.getPageSize(), options.getContinuationToken())); + + Integer pageSize; + String continuationToken; + + if (options != null) { + pageSize = options.getPageSize(); + continuationToken = options.getContinuationToken(); + } else { + // null are valid for these values + continuationToken = null; + pageSize = null; + } + + return call(() -> api.readAuthorizationModels(storeId, pageSize, continuationToken)); } /** diff --git a/src/test-integration/java/dev/openfga/sdk/api/client/OpenFgaClientIntegrationTest.java b/src/test-integration/java/dev/openfga/sdk/api/client/OpenFgaClientIntegrationTest.java index ca0760b..219f320 100644 --- a/src/test-integration/java/dev/openfga/sdk/api/client/OpenFgaClientIntegrationTest.java +++ b/src/test-integration/java/dev/openfga/sdk/api/client/OpenFgaClientIntegrationTest.java @@ -293,7 +293,7 @@ public void write_readAssertions() throws Exception { List assertions = List.of(DEFAULT_ASSERTION); // When - fga.writeAssertions(writeRequest).get(); + fga.writeAssertions(assertions).get(); ReadAssertionsResponse response = fga.readAssertions().get(); // Then From 4bc66da497f0ab496a716d0f14b42238aa06ef12 Mon Sep 17 00:00:00 2001 From: "Justin \"J.R.\" Hill" Date: Wed, 27 Sep 2023 02:03:00 -0700 Subject: [PATCH 19/22] fix: do not send empty writes/deletes --- .../dev/openfga/sdk/api/client/OpenFgaClient.java | 11 +++++++++-- .../dev/openfga/sdk/api/client/OpenFgaClientTest.java | 4 ++-- 2 files changed, 11 insertions(+), 4 deletions(-) diff --git a/src/main/java/dev/openfga/sdk/api/client/OpenFgaClient.java b/src/main/java/dev/openfga/sdk/api/client/OpenFgaClient.java index 95971cb..34517d6 100644 --- a/src/main/java/dev/openfga/sdk/api/client/OpenFgaClient.java +++ b/src/main/java/dev/openfga/sdk/api/client/OpenFgaClient.java @@ -266,8 +266,15 @@ public CompletableFuture write(ClientWriteRequest request, ClientWriteOp WriteRequest body = new WriteRequest(); if (request != null) { - body.writes(ClientTupleKey.asTupleKeys(request.getWrites())); - body.deletes(ClientTupleKey.asTupleKeys(request.getDeletes())); + TupleKeys writes = ClientTupleKey.asTupleKeys(request.getWrites()); + if (!writes.getTupleKeys().isEmpty()) { + body.writes(writes); + } + + TupleKeys deletes = ClientTupleKey.asTupleKeys(request.getDeletes()); + if (!deletes.getTupleKeys().isEmpty()) { + body.deletes(deletes); + } } if (options != null && !isNullOrWhitespace(options.getAuthorizationModelId())) { diff --git a/src/test/java/dev/openfga/sdk/api/client/OpenFgaClientTest.java b/src/test/java/dev/openfga/sdk/api/client/OpenFgaClientTest.java index 3ec3ceb..296ffc2 100644 --- a/src/test/java/dev/openfga/sdk/api/client/OpenFgaClientTest.java +++ b/src/test/java/dev/openfga/sdk/api/client/OpenFgaClientTest.java @@ -1016,7 +1016,7 @@ public void writeTest_writes() throws Exception { // Given String postPath = "https://localhost/stores/01YCP46JKYM8FJCQ37NMBYHE5X/write"; String expectedBody = String.format( - "{\"writes\":{\"tuple_keys\":[{\"object\":\"%s\",\"relation\":\"%s\",\"user\":\"%s\"}]},\"deletes\":{\"tuple_keys\":[]},\"authorization_model_id\":\"%s\"}", + "{\"writes\":{\"tuple_keys\":[{\"object\":\"%s\",\"relation\":\"%s\",\"user\":\"%s\"}]},\"deletes\":null,\"authorization_model_id\":\"%s\"}", DEFAULT_OBJECT, DEFAULT_RELATION, DEFAULT_USER, DEFAULT_AUTH_MODEL_ID); mockHttpClient.onPost(postPath).withBody(is(expectedBody)).doReturn(200, EMPTY_RESPONSE_BODY); ClientWriteRequest request = new ClientWriteRequest() @@ -1040,7 +1040,7 @@ public void writeTest_deletes() throws Exception { // Given String postPath = "https://localhost/stores/01YCP46JKYM8FJCQ37NMBYHE5X/write"; String expectedBody = String.format( - "{\"writes\":{\"tuple_keys\":[]},\"deletes\":{\"tuple_keys\":[{\"object\":\"%s\",\"relation\":\"%s\",\"user\":\"%s\"}]},\"authorization_model_id\":\"%s\"}", + "{\"writes\":null,\"deletes\":{\"tuple_keys\":[{\"object\":\"%s\",\"relation\":\"%s\",\"user\":\"%s\"}]},\"authorization_model_id\":\"%s\"}", DEFAULT_OBJECT, DEFAULT_RELATION, DEFAULT_USER, DEFAULT_AUTH_MODEL_ID); mockHttpClient.onPost(postPath).withBody(is(expectedBody)).doReturn(200, EMPTY_RESPONSE_BODY); ClientWriteRequest request = new ClientWriteRequest() From 739f568b6202364ebead3b5e5b3956191e6d1f0b Mon Sep 17 00:00:00 2001 From: "Justin \"J.R.\" Hill" Date: Wed, 27 Sep 2023 02:03:10 -0700 Subject: [PATCH 20/22] chore: Bump version to 0.0.5 --- CHANGELOG.md | 7 +++++++ README.md | 12 ++++++------ build.gradle | 2 +- publish.gradle | 2 +- .../openfga/sdk/api/configuration/Configuration.java | 4 ++-- .../sdk/api/configuration/ConfigurationTest.java | 2 +- 6 files changed, 18 insertions(+), 11 deletions(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index 4a06299..c69564d 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -1,5 +1,12 @@ # Changelog +## v0.0.5 + +### [0.0.5](https://github.com/openfga/java-sdk/compare/v0.0.4...v0.0.5) (2023-09-27) + +- feat: introduced higher level OpenFgaClient class +- docs: updated the README with usage instructions + ## v0.0.3, v0.0.4 ### [0.0.4](https://github.com/openfga/java-sdk/compare/v0.0.2...v0.0.4) (2023-09-21) diff --git a/README.md b/README.md index b9a18e0..ecabb8d 100644 --- a/README.md +++ b/README.md @@ -74,13 +74,13 @@ It can be used with the following: * Gradle (Groovy) ```groovy -implementation 'dev.openfga:openfga-sdk:0.0.4' +implementation 'dev.openfga:openfga-sdk:0.0.5' ``` * Gradle (Kotlin) ```kotlin -implementation("dev.openfga:openfga-sdk:0.0.4") +implementation("dev.openfga:openfga-sdk:0.0.5") ``` * Apache Maven @@ -89,26 +89,26 @@ implementation("dev.openfga:openfga-sdk:0.0.4") dev.openfga openfga-sdk - 0.0.4 + 0.0.5 ``` * Ivy ```xml - + ``` * SBT ```scala -libraryDependencies += "dev.openfga" % "openfga-sdk" % "0.0.4" +libraryDependencies += "dev.openfga" % "openfga-sdk" % "0.0.5" ``` * Leiningen ```edn -[dev.openfga/openfga-sdk "0.0.4"] +[dev.openfga/openfga-sdk "0.0.5"] ``` diff --git a/build.gradle b/build.gradle index 993799e..291c259 100644 --- a/build.gradle +++ b/build.gradle @@ -18,7 +18,7 @@ plugins { apply from: 'publish.gradle' group = 'dev.openfga' -version = '0.0.4' +version = '0.0.5' repositories { mavenCentral() diff --git a/publish.gradle b/publish.gradle index b070679..927ab8c 100644 --- a/publish.gradle +++ b/publish.gradle @@ -6,7 +6,7 @@ publishing { pom { group = 'dev.openfga' name = 'openfga-sdk' - version = '0.0.4' + version = '0.0.5' description = 'This is an autogenerated Java SDK for OpenFGA. It provides a wrapper around the [OpenFGA API definition](https://openfga.dev/api).' url = 'https://openfga.dev' licenses { diff --git a/src/main/java/dev/openfga/sdk/api/configuration/Configuration.java b/src/main/java/dev/openfga/sdk/api/configuration/Configuration.java index 3e4e910..8738c9d 100644 --- a/src/main/java/dev/openfga/sdk/api/configuration/Configuration.java +++ b/src/main/java/dev/openfga/sdk/api/configuration/Configuration.java @@ -27,10 +27,10 @@ * Configurations for an api client. */ public class Configuration implements BaseConfiguration { - public static final String VERSION = "0.0.4"; + public static final String VERSION = "0.0.5"; private static final String DEFAULT_API_URL = "http://localhost:8080"; - private static final String DEFAULT_USER_AGENT = "openfga-sdk java/0.0.4"; + private static final String DEFAULT_USER_AGENT = "openfga-sdk java/0.0.5"; private static final Duration DEFAULT_READ_TIMEOUT = Duration.ofSeconds(10); private static final Duration DEFAULT_CONNECT_TIMEOUT = Duration.ofSeconds(10); diff --git a/src/test/java/dev/openfga/sdk/api/configuration/ConfigurationTest.java b/src/test/java/dev/openfga/sdk/api/configuration/ConfigurationTest.java index 4a6428c..5f4f8f1 100644 --- a/src/test/java/dev/openfga/sdk/api/configuration/ConfigurationTest.java +++ b/src/test/java/dev/openfga/sdk/api/configuration/ConfigurationTest.java @@ -20,7 +20,7 @@ class ConfigurationTest { private static final String DEFAULT_API_URL = "http://localhost:8080"; - private static final String DEFAULT_USER_AGENT = "openfga-sdk java/0.0.4"; + private static final String DEFAULT_USER_AGENT = "openfga-sdk java/0.0.5"; private static final Duration DEFAULT_READ_TIMEOUT = Duration.ofSeconds(10); private static final Duration DEFAULT_CONNECT_TIMEOUT = Duration.ofSeconds(10); From 68d86e04a4afb6d204d339fd33c47c7bf38bbec7 Mon Sep 17 00:00:00 2001 From: "Justin \"J.R.\" Hill" Date: Thu, 28 Sep 2023 11:00:26 -0700 Subject: [PATCH 21/22] docs: Fix .NET-esque comments in README --- README.md | 16 ++++++++-------- 1 file changed, 8 insertions(+), 8 deletions(-) diff --git a/README.md b/README.md index ecabb8d..0e32cc1 100644 --- a/README.md +++ b/README.md @@ -270,7 +270,7 @@ Delete a store. > Requires a client initialized with a storeId ```java -var store = await fgaClient.deleteStore().get(); +var store = fgaClient.deleteStore().get(); ``` #### Authorization Models @@ -335,7 +335,7 @@ var request = new WriteAuthorizationModelRequest() var response = fgaClient.writeAuthorizationModel(request).get(); -// response.AuthorizationModelId = "01GXSA8YR785C4FYS3C0RTG7B1" +// response.getAuthorizationModelId() = "01GXSA8YR785C4FYS3C0RTG7B1" ``` #### Read a Single Authorization Model @@ -365,9 +365,9 @@ Reads the latest authorization model (note: this ignores the model id in configu ```java var response = fgaClient.readLatestAuthorizationModel().get(); -// response.AuthorizationModel.Id = "01GXSA8YR785C4FYS3C0RTG7B1" -// response.AuthorizationModel.SchemaVersion = "1.1" -// response.AuthorizationModel.TypeDefinitions = [{ "type": "document", "relations": { ... } }, { "type": "user", "relations": { ... }}] +// response.getAuthorizationModel().getId() = "01GXSA8YR785C4FYS3C0RTG7B1" +// response.getAuthorizationModel().SchemaVersion() = "1.1" +// response.getAuthorizationModel().TypeDefinitions() = [{ "type": "document", "relations": { ... } }, { "type": "user", "relations": { ... }}] ``` #### Relationship Tuples @@ -498,7 +498,7 @@ var options = new ClientCheckOptions() .authorizationModelId("01GXSA8YR785C4FYS3C0RTG7B1"); var response = fgaClient.check(request, options).get(); -// response.Allowed = true +// response.getAllowed() = true ``` ##### Batch Check @@ -526,7 +526,7 @@ var options = new ClientCheckOptions() var response = fgaClient.expand(request, options).get(); -// response.Tree.Root = {"name":"document:roadmap#viewer","leaf":{"users":{"users":["user:81684243-9356-4421-8fbf-a4f8d36aa31b","user:f52a4f7a-054d-47ff-bb6e-3ac81269988f"]}}} +// response.getTree().getRoot() = {"name":"document:roadmap#viewer","leaf":{"users":{"users":["user:81684243-9356-4421-8fbf-a4f8d36aa31b","user:f52a4f7a-054d-47ff-bb6e-3ac81269988f"]}}} ``` ##### List Objects @@ -552,7 +552,7 @@ var options = new ClientListObjectsOptions() var response = fgaClient.listObjects(request, options).get(); -// response.Objects = ["document:roadmap"] +// response.getObjects() = ["document:roadmap"] ``` ##### List Relations From d907238089ee930887670fccb789486aeb96b332 Mon Sep 17 00:00:00 2001 From: "Justin \"J.R.\" Hill" Date: Thu, 28 Sep 2023 13:34:55 -0700 Subject: [PATCH 22/22] chore(java-sdk): Update Changelog entries Co-authored-by: Raghd Hamzeh --- CHANGELOG.md | 5 +++-- 1 file changed, 3 insertions(+), 2 deletions(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index c69564d..f38be19 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -4,8 +4,9 @@ ### [0.0.5](https://github.com/openfga/java-sdk/compare/v0.0.4...v0.0.5) (2023-09-27) -- feat: introduced higher level OpenFgaClient class -- docs: updated the README with usage instructions +- feat(client): add `OpenFgaClient` wrapping `OpenFgaApi` and exposing a simplified interface. + See [docs](https://github.com/openfga/java-sdk?tab=readme-ov-file#initializing-the-api-client) +- chore(docs): update the README with installation and usage instructions. ## v0.0.3, v0.0.4