feat(api): Pass authorization in header instead of query parameter for API category (#2918)

mattcreaser · web-flow · commit 5cbc21b299a7 · 2024-09-24T15:46:17.000-03:00
diff --git a/aws-api/src/main/java/com/amplifyframework/api/aws/SubscriptionEndpoint.java b/aws-api/src/main/java/com/amplifyframework/api/aws/SubscriptionEndpoint.java
@@ -16,14 +16,14 @@
 package com.amplifyframework.api.aws;
 
 import android.net.Uri;
-import android.util.Base64;
 import androidx.annotation.NonNull;
 import androidx.annotation.Nullable;
 import androidx.core.util.ObjectsCompat;
 
 import com.amplifyframework.AmplifyException;
 import com.amplifyframework.api.ApiException;
 import com.amplifyframework.api.ApiException.ApiAuthException;
+import com.amplifyframework.api.aws.utils.JSONObjectExtensionsKt;
 import com.amplifyframework.api.graphql.GraphQLRequest;
 import com.amplifyframework.api.graphql.GraphQLResponse;
 import com.amplifyframework.core.Action;
@@ -126,11 +126,13 @@ <T> void requestSubscription(
             if (webSocketListener == null || webSocketListener.isDisconnectedState()) {
                 webSocketListener = new AmplifyWebSocketListener();
                 try {
-                    webSocket = okHttpClient.newWebSocket(new Request.Builder()
-                                                              .url(buildConnectionRequestUrl(authType))
-                                                              .addHeader("Sec-WebSocket-Protocol", "graphql-ws")
-                                                              .header("User-Agent", UserAgent.string())
-                                                              .build(), webSocketListener);
+                    Request.Builder builder = new Request.Builder()
+                                                  .url(buildConnectionRequestUrl())
+                                                  .addHeader("Sec-WebSocket-Protocol", "graphql-ws")
+                                                  .header("User-Agent", UserAgent.string());
+                    // Add all authorization headers
+                    getConnectionAuthorizationHeaders(authType).forEach(builder::header);
+                    webSocket = okHttpClient.newWebSocket(builder.build(), webSocketListener);
                 } catch (ApiException apiException) {
                     onSubscriptionError.accept(apiException);
                     return;
@@ -303,17 +305,17 @@ void releaseSubscription(String subscriptionId) throws ApiException {
         }
     }
 
+    private Map<String, String> getConnectionAuthorizationHeaders(AuthorizationType authType) throws ApiException {
+        JSONObject headers = authorizer.createHeadersForConnection(authType);
+        return JSONObjectExtensionsKt.toStringMap(headers);
+    }
+
     /*
      * Discover WebSocket endpoint from the AppSync endpoint.
      * AppSync endpoint : https://xxxxxxxxxxxx.appsync-api.ap-southeast-2.amazonaws.com/graphql
      * Discovered WebSocket endpoint : wss:// xxxxxxxxxxxx.appsync-realtime-api.ap-southeast-2.amazonaws.com/graphql
      */
-    private String buildConnectionRequestUrl(AuthorizationType authType) throws ApiException {
-        // Construct the authorization header for connection request
-        final byte[] rawHeader = authorizer.createHeadersForConnection(authType)
-            .toString()
-            .getBytes();
-
+    private String buildConnectionRequestUrl() throws ApiException {
         URL appSyncEndpoint = null;
         try {
             appSyncEndpoint = new URL(apiConfiguration.getEndpoint());
@@ -343,8 +345,6 @@ private String buildConnectionRequestUrl(AuthorizationType authType) throws ApiE
             .scheme("wss")
             .authority(authority)
             .path(path)
-            .appendQueryParameter("header", Base64.encodeToString(rawHeader, Base64.DEFAULT))
-            .appendQueryParameter("payload", "e30=")
             .build()
             .toString();
     }
diff --git a/aws-api/src/main/java/com/amplifyframework/api/aws/utils/JSONObjectExtensions.kt b/aws-api/src/main/java/com/amplifyframework/api/aws/utils/JSONObjectExtensions.kt
@@ -0,0 +1,24 @@
+/*
+ * Copyright 2024 Amazon.com, Inc. or its affiliates. All Rights Reserved.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License").
+ * You may not use this file except in compliance with the License.
+ * A copy of the License is located at
+ *
+ *  http://aws.amazon.com/apache2.0
+ *
+ * or in the "license" file accompanying this file. This file is distributed
+ * on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either
+ * express or implied. See the License for the specific language governing
+ * permissions and limitations under the License.
+ */
+
+package com.amplifyframework.api.aws.utils
+
+import org.json.JSONObject
+
+internal fun JSONObject.toStringMap(): Map<String, String> {
+    val map = mutableMapOf<String, String>()
+    this.keys().forEach { key -> map[key] = this.getString(key) }
+    return map
+}
