disallow fetching collector auth token when TokenHash is enabled (#569)

app/src/ApiClient.ts

@@ -129,6 +129,7 @@ export interface Aggregator {
   is_first_party: boolean;
   vdafs: string[];
   query_types: string[];
+  features: string[];
 }
 
 export interface NewAggregator {

app/src/aggregators/AggregatorDetail.tsx

@@ -125,6 +125,14 @@ function AggregatorPropertyTable() {
               .join(", ")
           }
         />
+        <TableRow
+          label="Supported features"
+          value={({ features }) =>
+            features
+              .map((v) => v.replaceAll(/([A-Z])/g, " $1").toLowerCase())
+              .join(", ")
+          }
+        />
       </tbody>
     </Table>
   );

app/src/tasks/TaskDetail/CollectorAuthTokens.tsx

@@ -1,11 +1,11 @@
 import { useFetcher } from "react-router-dom";
 import Col from "react-bootstrap/Col";
 import React from "react";
-import { CollectorAuthToken } from "../../ApiClient";
+import { Aggregator, CollectorAuthToken } from "../../ApiClient";
 import Button from "react-bootstrap/Button";
 import Card from "react-bootstrap/Card";
 import ListGroup from "react-bootstrap/ListGroup";
-import { CopyCode } from "../../util";
+import { CopyCode, useLoaderPromise } from "../../util";
 import { Badge } from "react-bootstrap";
 
 export default function CollectorAuthTokens() {
@@ -15,6 +15,11 @@ export default function CollectorAuthTokens() {
       fetcher.load("collector_auth_tokens");
   }, [fetcher]);
 
+  const leader = useLoaderPromise<Aggregator | null>("leaderAggregator", null);
+  if (!leader || leader.features.includes("TokenHash")) {
+    return <></>;
+  }
+
   if (fetcher.data) {
     const { collectorAuthTokens } = fetcher.data as {
       collectorAuthTokens: CollectorAuthToken[];

app/src/util.tsx

@@ -3,7 +3,7 @@ import Col from "react-bootstrap/Col";
 import Row from "react-bootstrap/Row";
 import { LinkContainer } from "react-router-bootstrap";
 import React, { Suspense } from "react";
-import { Await, useRouteLoaderData } from "react-router-dom";
+import { Await, useRouteLoaderData, useLoaderData } from "react-router-dom";
 import { Account } from "./ApiClient";
 import Placeholder from "react-bootstrap/Placeholder";
 import { Button, OverlayTrigger, Tooltip } from "react-bootstrap";
@@ -105,6 +105,13 @@ export function CopyCode({ code }: { code: string }) {
   );
 }
 
+export function useLoaderPromise<T>(key: string, initialState: T): T {
+  return usePromise(
+    (useLoaderData() as { [k: string]: Promise<T> })[key],
+    initialState,
+  );
+}
+
 export function usePromise<T>(promise: PromiseLike<T>, initialState: T): T {
   const [state, setState] = React.useState<T>(initialState);
   React.useEffect(() => {

client/tests/tasks.rs

@@ -1,4 +1,5 @@
 mod harness;
+use divviup_api::entity::aggregator::Features;
 use divviup_client::{DivviupClient, NewTask, Vdaf};
 use harness::with_configured_client;
 use std::sync::Arc;
@@ -53,13 +54,31 @@ async fn rename_task(app: Arc<DivviupApi>, account: Account, client: DivviupClie
 }
 
 #[test(harness = with_configured_client)]
-async fn collector_auth_tokens(
+async fn collector_auth_tokens_no_token_hash(
     app: Arc<DivviupApi>,
     account: Account,
     client: DivviupClient,
 ) -> TestResult {
     let task = fixtures::task(&app, &account).await;
+
+    let mut leader = task.leader_aggregator(app.db()).await?.into_active_model();
+    leader.features = ActiveValue::Set(Features::default().into());
+    leader.update(app.db()).await?;
+
     let tokens = client.task_collector_auth_tokens(&task.id).await?;
     assert!(!tokens.is_empty()); // we don't have aggregator-api client logs here
     Ok(())
 }
+
+#[test(harness = with_configured_client)]
+async fn collector_auth_tokens_token_hash(
+    app: Arc<DivviupApi>,
+    account: Account,
+    client: DivviupClient,
+) -> TestResult {
+    let task = fixtures::task(&app, &account).await;
+    let leader = task.leader_aggregator(app.db()).await?;
+    assert!(leader.features.token_hash_enabled());
+    assert!(client.task_collector_auth_tokens(&task.id).await.is_err());
+    Ok(())
+}

src/routes/tasks.rs

@@ -108,10 +108,14 @@ pub mod collector_auth_tokens {
         conn: &mut Conn,
         (task, db, State(client)): (Task, Db, State<Client>),
     ) -> Result<impl Handler, Error> {
-        let crypter = conn.state().unwrap();
         let leader = task.leader_aggregator(&db).await?;
-        let client = leader.client(client, crypter)?;
-        let task_response = client.get_task(&task.id).await?;
-        Ok(Json([task_response.collector_auth_token]))
+        if leader.features.token_hash_enabled() {
+            Err(Error::NotFound)
+        } else {
+            let crypter = conn.state().unwrap();
+            let client = leader.client(client, crypter)?;
+            let task_response = client.get_task(&task.id).await?;
+            Ok(Json([task_response.collector_auth_token]))
+        }
     }
 }

test-support/src/client_logs.rs

@@ -70,6 +70,14 @@ pub struct ClientLogs {
 }
 
 impl ClientLogs {
+    pub fn len(&self) -> usize {
+        self.logged_conns.read().unwrap().len()
+    }
+
+    pub fn is_empty(&self) -> bool {
+        self.logged_conns.read().unwrap().is_empty()
+    }
+
     pub fn logs(&self) -> Vec<LoggedConn> {
         self.logged_conns.read().unwrap().clone()
     }

tests/tasks.rs

@@ -723,14 +723,21 @@ mod update {
 }
 
 mod collector_auth_tokens {
-    use divviup_api::clients::aggregator_client::api_types::AuthenticationToken;
+    use divviup_api::{
+        clients::aggregator_client::api_types::AuthenticationToken, entity::aggregator::Features,
+    };
 
     use super::{assert_eq, test, *};
 
     #[test(harness = with_client_logs)]
-    async fn as_member(app: DivviupApi, client_logs: ClientLogs) -> TestResult {
+    async fn as_member_no_token_hash(app: DivviupApi, client_logs: ClientLogs) -> TestResult {
         let (user, account, ..) = fixtures::member(&app).await;
         let task = fixtures::task(&app, &account).await;
+
+        let mut leader = task.leader_aggregator(app.db()).await?.into_active_model();
+        leader.features = ActiveValue::Set(Features::default().into());
+        leader.update(app.db()).await?;
+
         let mut conn = get(format!("/api/tasks/{}/collector_auth_tokens", task.id))
             .with_api_headers()
             .with_state(user)
@@ -749,11 +756,34 @@ mod collector_auth_tokens {
         Ok(())
     }
 
+    #[test(harness = with_client_logs)]
+    async fn as_member_with_token_hash(app: DivviupApi, client_logs: ClientLogs) -> TestResult {
+        let (user, account, ..) = fixtures::member(&app).await;
+        let task = fixtures::task(&app, &account).await;
+        let leader = task.leader_aggregator(app.db()).await?;
+        assert!(leader.features.token_hash_enabled());
+
+        let mut conn = get(format!("/api/tasks/{}/collector_auth_tokens", task.id))
+            .with_api_headers()
+            .with_state(user)
+            .run_async(&app)
+            .await;
+
+        assert!(client_logs.is_empty());
+        assert_not_found!(conn);
+        Ok(())
+    }
+
     #[test(harness = with_client_logs)]
     async fn as_rando(app: DivviupApi, client_logs: ClientLogs) -> TestResult {
         let user = fixtures::user();
         let account = fixtures::account(&app).await;
         let task = fixtures::task(&app, &account).await;
+
+        let mut leader = task.leader_aggregator(app.db()).await?.into_active_model();
+        leader.features = ActiveValue::Set(Features::default().into());
+        leader.update(app.db()).await?;
+
         let mut conn = get(format!("/api/tasks/{}/collector_auth_tokens", task.id))
             .with_api_headers()
             .with_state(user)
@@ -769,6 +799,11 @@ mod collector_auth_tokens {
         let (admin, ..) = fixtures::admin(&app).await;
         let account = fixtures::account(&app).await;
         let task = fixtures::task(&app, &account).await;
+
+        let mut leader = task.leader_aggregator(app.db()).await?.into_active_model();
+        leader.features = ActiveValue::Set(Features::default().into());
+        leader.update(app.db()).await?;
+
         let mut conn = get(format!("/api/tasks/{}/collector_auth_tokens", task.id))
             .with_api_headers()
             .with_state(admin)
@@ -791,6 +826,11 @@ mod collector_auth_tokens {
         let token = fixtures::admin_token(&app).await;
         let account = fixtures::account(&app).await;
         let task = fixtures::task(&app, &account).await;
+
+        let mut leader = task.leader_aggregator(app.db()).await?.into_active_model();
+        leader.features = ActiveValue::Set(Features::default().into());
+        leader.update(app.db()).await?;
+
         let mut conn = get(format!("/api/tasks/{}/collector_auth_tokens", task.id))
             .with_api_headers()
             .with_auth_header(token)
@@ -813,6 +853,11 @@ mod collector_auth_tokens {
         let account = fixtures::account(&app).await;
         let (_, token) = fixtures::api_token(&app, &account).await;
         let task = fixtures::task(&app, &account).await;
+
+        let mut leader = task.leader_aggregator(app.db()).await?.into_active_model();
+        leader.features = ActiveValue::Set(Features::default().into());
+        leader.update(app.db()).await?;
+
         let mut conn = get(format!("/api/tasks/{}/collector_auth_tokens", task.id))
             .with_api_headers()
             .with_auth_header(token)
@@ -837,6 +882,11 @@ mod collector_auth_tokens {
 
         let account = fixtures::account(&app).await;
         let task = fixtures::task(&app, &account).await;
+
+        let mut leader = task.leader_aggregator(app.db()).await?.into_active_model();
+        leader.features = ActiveValue::Set(Features::default().into());
+        leader.update(app.db()).await?;
+
         let mut conn = get(format!("/api/tasks/{}/collector_auth_tokens", task.id))
             .with_api_headers()
             .with_auth_header(token)