Skip to content

WPS: added key byte cache to the auth policy #22277

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
KrzysztofCwalina merged 2 commits into from
Jun 29, 2021
Merged

WPS: added key byte cache to the auth policy #22277

KrzysztofCwalina merged 2 commits into from
Jun 29, 2021

Conversation

@KrzysztofCwalina
Copy link
Member

@KrzysztofCwalina KrzysztofCwalina commented Jun 29, 2021
edited
Loading

cc: @jkotas

At some point we might want to cache the whole token, but that is a bit more tricky as the JWT audience changes from call to call (it's the absolute URI).

@KrzysztofCwalina KrzysztofCwalina marked this pull request as ready for review June 29, 2021 17:09
jsquire
jsquire approved these changes Jun 29, 2021
View reviewed changes
Copy link
Member

@jsquire jsquire left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Should we consider adding a test or two for validation of the behavior?

sdk/webpubsub/Azure.Messaging.WebPubSub/src/WebPubSubAuthenticationPolicy.cs
public KeyBytesCache(string key)
{
Key = key;
KeyBytes = Encoding.UTF8.GetBytes(key);
Copy link
Member

@jsquire jsquire Jun 29, 2021

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
KeyBytes = Encoding.UTF8.GetBytes(key);
KeyBytes = string.IsNullOrEmpty(key)
? Array.Empty<byte>()
: Encoding.UTF8.GetBytes(key);

Probably a tiny efficiency, but should we consider avoiding GetBytes when the string is empty? It looks like there's no special case for it and it'll do some stack allocations that we can avoid. (ref) Maybe a factory method for an empty instance, instead?

@KrzysztofCwalina
Copy link
Member Author

KrzysztofCwalina commented Jun 29, 2021

Should we consider adding a test or two for validation of the behavior?

We will be adding test before GA but it's a non trivial workitem. The problem is that this component is inherently difficult to test. There are not APIs to observe changes to the service.

I was also thinking about unit testing this policy with fake messages. I need to talk to Pavel about adding fake Transport/Request/Response for that. He wanted to do something like that in Azure.Core, i.e. add test only Request/Response.

@KrzysztofCwalina KrzysztofCwalina merged commit 6b98ba0 into Azure:main Jun 29, 2021
@KrzysztofCwalina KrzysztofCwalina deleted the WPS_cache branch July 8, 2021 16:19
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@jsquire jsquire jsquire approved these changes

@pakrym pakrym Awaiting requested review from pakrym

@schaabs schaabs Awaiting requested review from schaabs

@JialinXin JialinXin Awaiting requested review from JialinXin JialinXin is a code owner

@vicancy vicancy Awaiting requested review from vicancy vicancy is a code owner

+1 more reviewer

@jkotas jkotas jkotas approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@KrzysztofCwalina @jsquire @jkotas