Change IdentityProviderResponse interface

Author: ndyakov

identity/azure_default_identity_provider_test.go

@@ -52,11 +52,11 @@ func TestAzureDefaultIdentityProvider_RequestToken(t *testing.T) {
 	mCredFactory := &mockCredFactory{}
 	mCredFactory.On("NewDefaultAzureCredential", mock.Anything).Return(mCreds, nil)
 	provider.credFactory = mCredFactory
-	token, err = provider.RequestToken(context.Background())
-	assert.NotNil(t, token, "token should not be nil")
-	assert.NoError(t, err, "failed to request token")
-	assert.Equal(t, shared.ResponseTypeAccessToken, token.Type(), "token type should be access token")
-	assert.Equal(t, mToken, token.AccessToken(), "access token should be equal to testJWTToken")
+	resp, err := provider.RequestToken(context.Background())
+	assert.NotNil(t, resp, "resp should not be nil")
+	assert.NoError(t, err, "failed to request resp")
+	assert.Equal(t, shared.ResponseTypeAccessToken, resp.Type(), "resp type should be access resp")
+	assert.Equal(t, mToken, resp.(shared.AccessTokenIDPResponse).AccessToken(), "access token should be equal to testJWTToken")
 }
 
 func TestAzureDefaultIdentityProvider_RequestTokenWithScopes(t *testing.T) {
@@ -84,19 +84,19 @@ func TestAzureDefaultIdentityProvider_RequestTokenWithScopes(t *testing.T) {
 		mCredFactory := &mockCredFactory{}
 		mCredFactory.On("NewDefaultAzureCredential", mock.Anything).Return(mCreds, nil)
 		provider.credFactory = mCredFactory
-		token, err = provider.RequestToken(context.Background())
-		assert.NotNil(t, token, "token should not be nil")
-		assert.NoError(t, err, "failed to request token")
-		assert.Equal(t, shared.ResponseTypeAccessToken, token.Type(), "token type should be access token")
-		assert.Equal(t, mToken, token.AccessToken(), "access token should be equal to testJWTToken")
+		resp, err := provider.RequestToken(context.Background())
+		assert.NotNil(t, resp, "resp should not be nil")
+		assert.NoError(t, err, "failed to request resp")
+		assert.Equal(t, shared.ResponseTypeAccessToken, resp.Type(), "resp type should be access resp")
+		assert.Equal(t, mToken, resp.(shared.AccessTokenIDPResponse).AccessToken(), "access resp should be equal to testJWTToken")
 	})
 	t.Run("RequestToken with error from credFactory", func(t *testing.T) {
 		// use mockAzureCredential to simulate the environment
 		mCredFactory := &mockCredFactory{}
 		mCredFactory.On("NewDefaultAzureCredential", mock.Anything).Return(nil, assert.AnError)
 		provider.credFactory = mCredFactory
-		token, err := provider.RequestToken(context.Background())
-		assert.Nil(t, token, "token should be nil")
-		assert.Error(t, err, "failed to request token")
+		resp, err := provider.RequestToken(context.Background())
+		assert.Nil(t, resp, "resp should be nil")
+		assert.Error(t, err, "failed to request resp")
 	})
 }

identity/confidential_identity_provider_test.go

@@ -268,7 +268,7 @@ func TestConfidentialIdentityProvider_RequestToken(t *testing.T) {
 		}
 		assert.NotEmpty(t, token, "RequestToken() token should not be empty")
 		assert.Equal(t, token.Type(), shared.ResponseTypeAuthResult, "RequestToken() token type should be AuthResult")
-		assert.Equal(t, token.AuthResult().ExpiresOn, expiresOn, "RequestToken() token expiration should match")
+		assert.Equal(t, token.(shared.AuthResultIDPResponse).AuthResult().ExpiresOn, expiresOn, "RequestToken() token expiration should match")
 	})
 	t.Run("with error", func(t *testing.T) {
 		t.Parallel()

internal/idp_response.go

@@ -80,11 +80,6 @@ func (a *IDPResp) AuthResult() public.AuthResult {
 	return *a.authResultVal
 }
 
-// HasAuthResult returns true if an AuthResult is set
-func (a *IDPResp) HasAuthResult() bool {
-	return a.authResultVal != nil
-}
-
 // AccessToken returns the AccessToken if present, or an empty AccessToken if not set
 // Use HasAccessToken() to check if the value is actually set
 func (a *IDPResp) AccessToken() azcore.AccessToken {
@@ -94,17 +89,7 @@ func (a *IDPResp) AccessToken() azcore.AccessToken {
 	return *a.accessTokenVal
 }
 
-// HasAccessToken returns true if an AccessToken is set
-func (a *IDPResp) HasAccessToken() bool {
-	return a.accessTokenVal != nil
-}
-
 // RawToken returns the raw token string
 func (a *IDPResp) RawToken() string {
 	return a.rawTokenVal
 }
-
-// HasRawToken returns true if a raw token is set
-func (a *IDPResp) HasRawToken() bool {
-	return a.rawTokenVal != ""
-}

internal/idp_response_test.go

@@ -171,10 +171,7 @@ func TestNewIDPResp(t *testing.T) {
 			},
 			wantErr: false,
 			checkResult: func(t *testing.T, resp *IDPResp) {
-				assert.True(t, resp.HasAuthResult())
 				assert.Equal(t, "test-token", resp.AuthResult().AccessToken)
-				assert.False(t, resp.HasAccessToken())
-				assert.False(t, resp.HasRawToken())
 			},
 		},
 		{
@@ -185,7 +182,6 @@ func TestNewIDPResp(t *testing.T) {
 			},
 			wantErr: false,
 			checkResult: func(t *testing.T, resp *IDPResp) {
-				assert.True(t, resp.HasAuthResult())
 				assert.Equal(t, "test-token", resp.AuthResult().AccessToken)
 			},
 		},
@@ -198,7 +194,6 @@ func TestNewIDPResp(t *testing.T) {
 			},
 			wantErr: false,
 			checkResult: func(t *testing.T, resp *IDPResp) {
-				assert.True(t, resp.HasAccessToken())
 				assert.Equal(t, "test-token", resp.AccessToken().Token)
 				assert.Equal(t, "test-token", resp.RawToken())
 			},
@@ -212,7 +207,6 @@ func TestNewIDPResp(t *testing.T) {
 			},
 			wantErr: false,
 			checkResult: func(t *testing.T, resp *IDPResp) {
-				assert.True(t, resp.HasAccessToken())
 				assert.Equal(t, "test-token", resp.AccessToken().Token)
 				assert.Equal(t, "test-token", resp.RawToken())
 			},
@@ -223,10 +217,7 @@ func TestNewIDPResp(t *testing.T) {
 			result:     "test-token",
 			wantErr:    false,
 			checkResult: func(t *testing.T, resp *IDPResp) {
-				assert.True(t, resp.HasRawToken())
 				assert.Equal(t, "test-token", resp.RawToken())
-				assert.False(t, resp.HasAuthResult())
-				assert.False(t, resp.HasAccessToken())
 			},
 		},
 		{
@@ -235,7 +226,6 @@ func TestNewIDPResp(t *testing.T) {
 			result:     stringPtr("test-token"),
 			wantErr:    false,
 			checkResult: func(t *testing.T, resp *IDPResp) {
-				assert.True(t, resp.HasRawToken())
 				assert.Equal(t, "test-token", resp.RawToken())
 			},
 		},

manager/defaults.go

@@ -104,7 +104,7 @@ func (*defaultIdentityProviderResponseParser) ParseResponse(response shared.Iden
 
 	switch response.Type() {
 	case shared.ResponseTypeAuthResult:
-		authResult := response.AuthResult()
+		authResult := response.(shared.AuthResultIDPResponse).AuthResult()
 		if authResult.ExpiresOn.IsZero() {
 			return nil, fmt.Errorf("auth result expiration time is not set")
 		}
@@ -117,10 +117,10 @@ func (*defaultIdentityProviderResponseParser) ParseResponse(response shared.Iden
 		expiresOn = authResult.ExpiresOn.UTC()
 
 	case shared.ResponseTypeRawToken, shared.ResponseTypeAccessToken:
-		tokenStr := response.RawToken()
+		tokenStr := response.(shared.RawTokenIDPResponse).RawToken()
 
 		if response.Type() == shared.ResponseTypeAccessToken {
-			accessToken := response.AccessToken()
+			accessToken := response.(shared.AccessTokenIDPResponse).AccessToken()
 			if accessToken.Token == "" {
 				return nil, fmt.Errorf("access token value is empty")
 			}

shared/identity_provider_response.go

@@ -25,13 +25,28 @@ type IdentityProviderResponseParser interface {
 	ParseResponse(response IdentityProviderResponse) (*token.Token, error)
 }
 
-// IdentityProviderResponse is an interface that defines the methods for an identity provider authentication result.
-// It is used to get the type of the authentication result, the authentication result itself (can be AuthResult or AccessToken),
+// IdentityProviderResponse is an interface that defines the
+// type method for the identity provider response. It is used to
+// identify the type of response returned by the identity provider.
+// The type can be either AuthResult, AccessToken, or RawToken. You can
+// use this interface to check the type of the response and handle it accordingly.
 type IdentityProviderResponse interface {
-	// Type returns the type of the auth result
+	// Type returns the type of identity provider response
 	Type() string
+}
+
+// AuthResultIDPResponse is an interface that defines the method for getting the auth result.
+type AuthResultIDPResponse interface {
 	AuthResult() public.AuthResult
+}
+
+// AccessTokenIDPResponse is an interface that defines the method for getting the access token.
+type AccessTokenIDPResponse interface {
 	AccessToken() azcore.AccessToken
+}
+
+// RawTokenIDPResponse is an interface that defines the method for getting the raw token.
+type RawTokenIDPResponse interface {
 	RawToken() string
 }
 

shared/identity_provider_response_test.go

@@ -156,12 +156,12 @@ func TestNewIDPResponse(t *testing.T) {
 
 			switch tt.responseType {
 			case ResponseTypeAuthResult:
-				assert.NotNil(t, resp.AuthResult())
+				assert.NotNil(t, resp.(AuthResultIDPResponse).AuthResult())
 			case ResponseTypeAccessToken:
-				assert.NotNil(t, resp.AccessToken())
-				assert.NotEmpty(t, resp.AccessToken().Token)
+				assert.NotNil(t, resp.(AccessTokenIDPResponse).AccessToken())
+				assert.NotEmpty(t, resp.(AccessTokenIDPResponse).AccessToken().Token)
 			case ResponseTypeRawToken:
-				assert.NotEmpty(t, resp.RawToken())
+				assert.NotEmpty(t, resp.(RawTokenIDPResponse).RawToken())
 			}
 		})
 	}
@@ -271,7 +271,7 @@ func TestIdentityProvider(t *testing.T) {
 				assert.NoError(t, err)
 				assert.NotNil(t, response)
 				assert.Equal(t, ResponseTypeRawToken, response.Type())
-				assert.Equal(t, "test-token", response.RawToken())
+				assert.Equal(t, "test-token", response.(RawTokenIDPResponse).RawToken())
 			}
 		})
 	}