Auth Manager API part 1: HTTPRequest, HTTPHeader

[adutra]

As requested, I'm splitting #10753 in many PRs. This one is the first one. It introduces HTTPRequest which is a prerequisite for the AuthManager API.

[adutra]

@danielcweeks @nastra FYI, I wasn't satisfied with returning Map<String, List<String>> from here, especially because of corner cases around case-sensitivity. I was planning to tackle that as a follow-up task, but since we are starting from square zero here, what you see here is the "enhanced" version.

[adutra]

All these methods will be useful later.

[adutra]

This class is loosely inspired by org.apache.hc.core5.http.message.HeaderGroup.

[nastra]

to me it seems like we should rather embed the functionality of building an URI from a HTTPRequest here (and also do the same for encoding the body). Additionally, building an URI from the path does some validation to make sure it doesn't start with a /. I'd say this is something that we can move into a check method annotated with @Value.Check. That way we don't need the util methods in RESTUtil and can move testing into TestHTTPRequest. I've added an example diff below:

--- a/core/src/main/java/org/apache/iceberg/rest/HTTPRequest.java
+++ b/core/src/main/java/org/apache/iceberg/rest/HTTPRequest.java
@@ -18,10 +18,14 @@
  */
 package org.apache.iceberg.rest;

+import com.fasterxml.jackson.core.JsonProcessingException;
 import com.fasterxml.jackson.databind.ObjectMapper;
 import java.net.URI;
+import java.net.URISyntaxException;
 import java.util.Map;
 import javax.annotation.Nullable;
+import org.apache.hc.core5.net.URIBuilder;
+import org.apache.iceberg.exceptions.RESTException;
 import org.immutables.value.Value;

 /** Represents an HTTP request. */
@@ -49,7 +53,19 @@ public interface HTTPRequest {
    */
   @Value.Lazy
   default URI requestUri() {
-    return RESTUtil.buildRequestUri(this);
+    // if full path is provided, use the input path as path
+    String fullPath =
+        (path().startsWith("https://") || path().startsWith("http://"))
+            ? path()
+            : String.format("%s/%s", baseUri(), path());
+    try {
+      URIBuilder builder = new URIBuilder(RESTUtil.stripTrailingSlash(fullPath));
+      queryParameters().forEach(builder::addParameter);
+      return builder.build();
+    } catch (URISyntaxException e) {
+      throw new RESTException(
+          "Failed to create request URI from base %s, params %s", fullPath, queryParameters());
+    }
   }

   /** Returns the HTTP method of this request. */
@@ -77,7 +93,17 @@ public interface HTTPRequest {
   @Nullable
   @Value.Redacted
   default String encodedBody() {
-    return RESTUtil.encodeRequestBody(this);
+    Object body = body();
+    if (body instanceof Map) {
+      return RESTUtil.encodeFormData((Map<?, ?>) body);
+    } else if (body != null) {
+      try {
+        return mapper().writeValueAsString(body);
+      } catch (JsonProcessingException e) {
+        throw new RESTException(e, "Failed to encode request body: %s", body);
+      }
+    }
+    return null;
   }

   /**
@@ -88,4 +114,13 @@ public interface HTTPRequest {
   default ObjectMapper mapper() {
     return RESTObjectMapper.mapper();
   }
+
+  @Value.Check
+  default void check() {
+    if (path().startsWith("/")) {
+      throw new RESTException(
+          "Received a malformed path for a REST request: %s. Paths should not start with /",
+          path());
+    }
+  }
 }

[adutra]

Yes that's a good idea.

[nastra]

do we actually have a use case for this? I see the value in having asMap() / asSimpleMap() but I feel like we don't need this method atm?

[adutra]

This one will be very useful later to do things like this in HTTPClient:

HTTPRequest req = ...
HttpUriRequestBase request = new HttpUriRequestBase(req.method().name(), req.requestUri());
req.headers().asMultiMap().forEach(request::addHeader);

[nastra]

same as I mentioned above. Do we actually have a use case for a bunch of these static methods? I would try to keep those to the amount we actually need

[adutra]

If the methods are tested, is that a big deal? This one indeed has no usage today, but more auth managers in the future could use it.

[nastra]

The Iceberg project typically tries to only add things to APIs that are needed for current use cases instead of planning for potential use cases that may or may not actually exist/happen (independent of whether there are tests for unused methods or not).
You also have to keep in mind that everything that's being added to iceberg-core can't be easily changed without going through an API deprecation cycle, so we're trying to be mindful about what's really required in terms of APIs

[adutra]

Fair enough, let's remove all the static methods for now.

[nastra]

please also add a test where the key/value is null

[nastra]

can be private

[nastra]

please also add tests where null is passed to all the methods that take nullable parameters, such as entries()/contains()/addIfAbsent()

[nastra]

checks like this should always have a .hasMessage check to make sure we get the right error msg back (unfortunately we can't easily enforce such a rule via checkstyle)

[adutra]

The message is generated by Immutables and will be rather cryptic. But OK.

[nastra]

we might want to consider naming this (and the other method) withHeaderIfAbsent() to clearly indicate that (potentially) a new instance is returned because add in the name suggests that the existing object is modified

[nastra]

personally I think the test code would be much more readable without having a parameterized test and rather have just two separate test methods that verify the body is properly encoded as form data/JSON, but I'm ok with what's currently here and I'll leave that up to you.

Also we probably might want to have some tests where the body can't be encoded due to:

• body is null
• body is a Map with null values
• body is an invalid JSON

[nastra]

LGTM, thanks @adutra for all your work on this.

[danielcweeks]

Shouldn't this be Set<HTTPHeader>? This would also take care of cases where there are actualy k/v duplicates (which we don't appear to handle)

[danielcweeks]

I feel like we should also annotate this as @NotNull

[adutra]

I don't see a @NotNull annotation available in iceberg-core? Besides, the immutable generated class is annotated with @AllParametersAreNonNullByDefault.

[nastra]

@danielcweeks @NotNull shouldn't be needed here, because everything not marked as @Nullable or Optional is implicitly not null with Immutables

[danielcweeks]

Same here, set

[danielcweeks]

I feel like putIfAbsent() is more idiomatic here. Otherwise it just code would generally be redundant:

headers.putHeaderIfAbsent(header)

vs.

headers.putIfAbsent(header)

[danielcweeks]

Same idiomatic comment here. Generally we use with prefix for builders, not mutators.

[danielcweeks]

Is there are reason we're making this overridable? It seems like we should insulate the case behavior by making this a private static method.

[danielcweeks]

Does this mean that we redact all header values? Maybe I don't fully understand the Immutable behavior here, but that's a bit problematic because we probably only want to redact sensitive headers (like AUTHORIZATION).

[danielcweeks]

It would be good to add a test for duplicate behavior as well.