Skip to content

Add AwsCredentialFeatures to Credential Providers #4238

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 11 commits into from
Jul 30, 2025
Merged

Add AwsCredentialFeatures to Credential Providers #4238

merged 11 commits into from
Jul 30, 2025

Conversation

landonxjames
Copy link
Contributor

@landonxjames landonxjames commented Jul 28, 2025
edited
Loading

Motivation and Context

Continuing the work in #4224, adding user-agent feature tracking for Credential Providers.

Description

Added AwsCredentialFeatures properties for each implementor of ProvideCredentials in aws-config.

Testing

Added integration tests for each of the supported Credential Providers. This required exposing some previously pub(crate) utility functions as pub under a test-util feature flag.

By submitting this pull request, I confirm that you can use, modify, copy, and redistribute this contribution, under the terms of your choice.

@github-actions GitHub Actions
Copy link

A new generated diff is ready to view.

A new doc preview is ready to view.

@github-actions GitHub Actions
Copy link

A new generated diff is ready to view.

A new doc preview is ready to view.

@landonxjames landonxjames marked this pull request as ready for review July 28, 2025 21:27
@landonxjames landonxjames requested a review from a team as a code owner July 28, 2025 21:27
@github-actions GitHub Actions
Copy link

A new generated diff is ready to view.

A new doc preview is ready to view.

@github-actions GitHub Actions
Copy link

A new generated diff is ready to view.

A new doc preview is ready to view.

aajtodd
aajtodd reviewed Jul 29, 2025
View reviewed changes
Copy link
Contributor

@aajtodd aajtodd left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Overall looks good. It seems like we made a lot of stuff public or behind a test-util feature to allow testing via sdk/integration-tests. Part of me wonders if we wouldn't be better off making these unit tests in aws-config OR updating our integration tests to assert a specific UA credential feature

e.g.

make_test!(prefer_environment, feature: AwsCredentialFeature::CredentialsEnvVars)

That way we don't have to expose a bunch of test utilities just for this. I'm slightly concerned about having to maintain a bunch of things in test-util because we made them public but open to discussion.

@ysaito1001
Copy link
Contributor

It seems like we made a lot of stuff public or behind a test-util feature to allow testing via sdk/integration-tests. Part of me wonders if we wouldn't be better off making these unit tests in aws-config

Good point. We should generally place tests in sdk/integration-tests only when tests are something specific about those target services. For instance, the test logic in imds_ua_feature can equally apply to any services, so probably better off having those tests in aws-config and making newly exposed test-utils back to pub(crate) 🤔

ysaito1001
ysaito1001 reviewed Jul 29, 2025
View reviewed changes
Copy link
Contributor

@ysaito1001 ysaito1001 left a comment
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Will circle back for the test part, but looks great. Thank you for making this change 👍

@landonxjames
Add tests for AwsCredentialFeatures
63f2134
@landonxjames
Undo some of the new test-utils that were exposed
eda2912
@landonxjames
Remove credential feature integration tests that relied on new aws-co…
37276c5 
…nfig test-utils

Move remaining test into S3 tests since that kind of serves as our catch
all for random features
@landonxjames
Copy link
Contributor Author

We discussed offline and decided that the best course of action, to avoid exposing new pub test-util functions, is to test the credentials features are added in aws-config and only retain some of the tests that don't need new test-util functionality in integration tests. This work was done in:

  • 63f2134 adding tests to aws-config
  • eda2912 removing the newly expose test-utils
  • 37276c5 removing the now broken integration tests and moving the remaining ones to the S3 test crate

@github-actions GitHub Actions
Copy link

A new generated diff is ready to view.

A new doc preview is ready to view.

ysaito1001
ysaito1001 approved these changes Jul 29, 2025
View reviewed changes
Copy link
Contributor

@ysaito1001 ysaito1001 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

There is a CI failure, but the changes look good.

@github-actions GitHub Actions
Copy link

A new generated diff is ready to view.

A new doc preview is ready to view.

aajtodd
aajtodd approved these changes Jul 30, 2025
View reviewed changes
@github-actions GitHub Actions
Copy link

A new generated diff is ready to view.

A new doc preview is ready to view.

@landonxjames landonxjames merged commit fa922a5 into feature/credential-features Jul 30, 2025
45 checks passed
@landonxjames landonxjames deleted the landonxjames/credential-providers branch July 30, 2025 18:39
@landonxjames landonxjames mentioned this pull request Jul 30, 2025
Merged
1 task
landonxjames added a commit that referenced this pull request Jul 30, 2025
@landonxjames @aws-sdk-rust-ci
Merge feature/credential-features branch to main (#4240)
0642b3b 
## Motivation and Context
<!--- Why is this change required? What problem does it solve? -->
<!--- If it fixes an open issue, please link to the issue here -->
Merging the feature branch containing work from the below two PRs:
* #4238
* #4224


## Checklist
<!--- If a checkbox below is not applicable, then please DELETE it
rather than leaving it unchecked -->
- [x] For changes to the AWS SDK, generated SDK code, or SDK runtime
crates, I have created a changelog entry Markdown file in the
`.changelog` directory, specifying "aws-sdk-rust" in the `applies_to`
key.

----

_By submitting this pull request, I confirm that you can use, modify,
copy, and redistribute this contribution, under the terms of your
choice._

---------

Co-authored-by: AWS SDK Rust Bot <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@aajtodd aajtodd aajtodd approved these changes

@ysaito1001 ysaito1001 ysaito1001 approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@landonxjames @ysaito1001 @aajtodd