refactor ini file handling logic for write command #454
There are no files selected for viewing
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -1,6 +1,8 @@ | ||
| using System.Diagnostics; | ||
| using System.Text; | ||
| using Amazon.Runtime.CredentialManagement; | ||
| using IniParser; | ||
| using IniParser.Model; | ||
|
|
||
| namespace D2L.Bmx; | ||
|
|
||
|
|
@@ -11,6 +13,9 @@ internal class WriteHandler( | |
| BmxConfig config, | ||
| FileIniDataParser parser | ||
| ) { | ||
| // this is different from `Encoding.UTF8` which has the undesirable `encoderShouldEmitUTF8Identifier: true` | ||
| private static readonly UTF8Encoding Utf8 = new(); | ||
|
|
||
| public async Task HandleAsync( | ||
| string? org, | ||
| string? user, | ||
|
|
@@ -64,39 +69,50 @@ bool useCredentialProcess | |
| using( File.Create( output ) ) { }; | ||
| } | ||
|
|
||
| string awsConfigFilePath = useCredentialProcess ? output : SharedCredentialsFile.DefaultConfigFilePath; | ||
| var awsConfig = GetParsedIniFileOrNull( awsConfigFilePath ); | ||
|
|
||
| string awsCredentialsFilePath = useCredentialProcess ? SharedCredentialsFile.DefaultFilePath : output; | ||
| var awsCredentials = GetParsedIniFileOrNull( awsCredentialsFilePath ); | ||
|
|
||
| if( useCredentialProcess ) { | ||
| Debug.Assert( awsConfig is not null ); | ||
|
There was a problem hiding this comment. What is the thought process behind this being an assertion only in debug builds? EDIT: Also we got BMX_DEBUG, should it just be Assert in all builds that is only tested with BMX_DEBUG = 1 ? There was a problem hiding this comment. The main goal here is to make the compiler's nullable analysis happy in a clear and intentional way.
We could use the null-forgiving operator
By using
We can also avoid sprinkling The fact that this is also a runtime assertion in debug builds is more or less a side effect that I don't care that much. I don't think we should make it actually asserts at runtime when There was a problem hiding this comment. We've used this technique to document our assumptions in code before, e.g. It's also used by the .NET runtime libraries, e.g. These are assumptions that should always hold true. If there's a real non-negligible chance that they could be false, then they should become real runtime assertions like if ( !assumption ) {
throw new InvalidOperationException( "bad condition" );
} |
||
|
|
||
| if( awsCredentials is not null && awsCredentials.Sections.ContainsSection( profile ) ) { | ||
| awsCredentials.Sections.RemoveSection( profile ); | ||
| parser.WriteFile( awsCredentialsFilePath, awsCredentials, Utf8 ); | ||
| } | ||
|
|
||
| string sectionName = profile == "default" ? "default" : $"profile {profile}"; | ||
|
|
||
| if( !awsConfig.Sections.ContainsSection( sectionName ) ) { | ||
| awsConfig.Sections.AddSection( sectionName ); | ||
| } | ||
| awsConfig[sectionName]["credential_process"] = | ||
| "bmx print --format json --cache --non-interactive" | ||
| + $" --org {oktaApi.Org}" | ||
| + $" --user {oktaApi.User}" | ||
| + $" --account {awsCredsInfo.Account}" | ||
| + $" --role {awsCredsInfo.Role}" | ||
| + $" --duration {awsCredsInfo.Duration}"; | ||
|
|
||
| parser.WriteFile( awsConfigFilePath, awsConfig, Utf8 ); | ||
| } else { | ||
| Debug.Assert( awsCredentials is not null ); | ||
|
|
||
| if( awsConfig is not null ) { | ||
| string sectionName = profile == "default" ? "default" : $"profile {profile}"; | ||
|
|
||
| if( | ||
| awsConfig.Sections.ContainsSection( sectionName ) | ||
| && awsConfig[sectionName].ContainsKey( "credential_process" ) | ||
| ) { | ||
| if( awsConfig[sectionName].Count == 1 ) { | ||
| awsConfig.Sections.RemoveSection( sectionName ); | ||
| } else { | ||
| awsConfig[sectionName].RemoveKey( "credential_process" ); | ||
| } | ||
| parser.WriteFile( awsConfigFilePath, awsConfig, Utf8 ); | ||
|
Comment on lines
-99
to
+115
There was a problem hiding this comment. nit: without explicitly specifying the encoding, |
||
| Console.WriteLine( | ||
| """ | ||
| An existing profile with the same name using the `credential_process` setting was found in the default config file. | ||
|
|
@@ -106,14 +122,19 @@ bool useCredentialProcess | |
| ); | ||
| } | ||
| } | ||
|
|
||
| if( !awsCredentials.Sections.ContainsSection( profile ) ) { | ||
| awsCredentials.Sections.AddSection( profile ); | ||
| } | ||
| awsCredentials[profile]["aws_access_key_id"] = awsCredsInfo.Credentials.AccessKeyId; | ||
| awsCredentials[profile]["aws_secret_access_key"] = awsCredsInfo.Credentials.SecretAccessKey; | ||
| awsCredentials[profile]["aws_session_token"] = awsCredsInfo.Credentials.SessionToken; | ||
|
|
||
| parser.WriteFile( awsCredentialsFilePath, awsCredentials, Utf8 ); | ||
| } | ||
| } | ||
|
|
||
| private IniData? GetParsedIniFileOrNull( string path ) { | ||
| return File.Exists( path ) ? parser.ReadFile( path ) : null; | ||
| } | ||
| } | ||
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
This is the main change.
My main pet peeve in this area is that
outputanddatacould have one of two different meanings, depending on the value ofuseCredentialProcess. I find this confusing lower down where the logic splits into two branches.So, here, I changed the variable assignment so that
outputwill no longer be used beyond this point, and we will have distinct names for the two different types of files/data.As a nice side-effect, this is also the last place where we do any INI file parsing, or have any reference to
SharedCredentialsFile.