Coding tidy up and correctness fixes

Author: chrissearle

src/main/kotlin/no/java/cupcake/Application.kt

@@ -1,8 +1,10 @@
 package no.java.cupcake
 
 import io.ktor.server.application.Application
+import io.ktor.server.application.ApplicationCallPipeline
 import io.ktor.server.application.ApplicationEnvironment
 import io.ktor.server.cio.EngineMain
+import kotlinx.coroutines.launch
 import no.java.cupcake.bring.BringService
 import no.java.cupcake.clients.bringClient
 import no.java.cupcake.clients.sleepingPillClient
@@ -34,10 +36,13 @@ fun Application.module() {
     configureHTTP()
     val userInfoEndpoint = configureAuth(oidcConfig = environment.oidcConfig())
     configureUserInfoRoute(userInfoEndpoint = userInfoEndpoint)
+    val sleepingPillService = sleepingPillService(bringService())
     configureRouting(
-        sleepingPillService = sleepingPillService(bringService()),
+        sleepingPillService = sleepingPillService,
         securityOptional = !environment.bool("jwt.enabled"),
     )
+    val ready = launch { sleepingPillService.warmUp() }
+    intercept(ApplicationCallPipeline.Setup) { ready.join() }
 }
 
 private fun Application.sleepingPillService(bringService: BringService): SleepingPillService {

src/main/kotlin/no/java/cupcake/api/ApiError.kt

@@ -11,38 +11,44 @@ data class ErrorResponse(
     val fieldValue: String? = null,
 )
 
-sealed class ApiError(
-    protected open val errorResponse: ErrorResponse,
-) {
-    open fun messageMap(): Map<String, ErrorResponse> = mapOf("error" to errorResponse)
-
-    fun status() = this.errorResponse.status
+sealed interface ApiError {
+    val response: ErrorResponse
 }
 
+fun ApiError.status() = response.status
+
+fun ApiError.messageMap(): Map<String, ErrorResponse> =
+    when (this) {
+        is UpstreamError -> mapOf("upstream" to upstream, "error" to response)
+
+        is RequiredField,
+        is CallPrincipalMissing,
+        is TokenMissing,
+        is TokenMissingUser,
+        is RefreshTokenInvalid,
+        -> mapOf("error" to response)
+    }
+
 abstract class UpstreamError(
     open val upstream: ErrorResponse,
     val systemName: String,
-) : ApiError(
+) : ApiError {
+    override val response =
         ErrorResponse(
             status = HttpStatusCode.InternalServerError,
             message = "call to $systemName failed",
-        ),
-    ) {
-    override fun messageMap() =
-        mapOf(
-            "upstream" to upstream,
-            "error" to errorResponse,
         )
 }
 
 abstract class RequiredField(
     val fieldName: String,
-) : ApiError(
+) : ApiError {
+    override val response =
         ErrorResponse(
             status = HttpStatusCode.BadRequest,
             message = "$fieldName required",
-        ),
-    )
+        )
+}
 
 data object ConferenceIdRequired : RequiredField(fieldName = "id")
 
@@ -53,30 +59,41 @@ data class SleepingPillCallFailed(
         systemName = "SleepingPill",
     )
 
-data object CallPrincipalMissing : ApiError(
-    ErrorResponse(
-        status = HttpStatusCode.Unauthorized,
-        message = "Principal missing",
-    ),
-)
+data class CognitoCallFailed(
+    override val upstream: ErrorResponse,
+) : UpstreamError(
+        upstream = upstream,
+        systemName = "Cognito",
+    )
 
-data object TokenMissing : ApiError(
-    ErrorResponse(
-        status = HttpStatusCode.Unauthorized,
-        message = "Principal missing token",
-    ),
-)
+data object CallPrincipalMissing : ApiError {
+    override val response =
+        ErrorResponse(
+            status = HttpStatusCode.Unauthorized,
+            message = "Principal missing",
+        )
+}
 
-data object TokenMissingUser : ApiError(
-    ErrorResponse(
-        status = HttpStatusCode.Unauthorized,
-        message = "User missing in token",
-    ),
-)
+data object TokenMissing : ApiError {
+    override val response =
+        ErrorResponse(
+            status = HttpStatusCode.Unauthorized,
+            message = "Principal missing token",
+        )
+}
 
-data object RefreshTokenInvalid : ApiError(
-    ErrorResponse(
-        status = HttpStatusCode.Unauthorized,
-        message = "Refresh token is invalid or has expired",
-    ),
-)
+data object TokenMissingUser : ApiError {
+    override val response =
+        ErrorResponse(
+            status = HttpStatusCode.Unauthorized,
+            message = "User missing in token",
+        )
+}
+
+data object RefreshTokenInvalid : ApiError {
+    override val response =
+        ErrorResponse(
+            status = HttpStatusCode.Unauthorized,
+            message = "Refresh token is invalid or has expired",
+        )
+}

src/main/kotlin/no/java/cupcake/api/Respond.kt

@@ -7,27 +7,15 @@ import io.ktor.server.response.respondRedirect
 import io.ktor.server.routing.RoutingContext
 
 context(context: RoutingContext)
-suspend inline fun <reified A : Any> Either<ApiError, A>.performResponse(
-    status: HttpStatusCode = HttpStatusCode.OK,
-    redirect: Boolean = false,
-) = when (this) {
-    is Either.Left -> {
-        context.respond(value)
-    }
-
-    is Either.Right -> {
-        when (redirect) {
-            false -> context.call.respond(status, value)
-            true -> context.call.respondRedirect(value.toString())
-        }
-    }
+suspend inline fun <reified A : Any> Either<ApiError, A>.respond(status: HttpStatusCode = HttpStatusCode.OK) {
+    onLeft { context.respond(it) }
+    onRight { context.call.respond(status, it) }
 }
 
 context(context: RoutingContext)
-suspend inline fun <reified A : Any> Either<ApiError, A>.respond(status: HttpStatusCode = HttpStatusCode.OK) =
-    performResponse(status, redirect = false)
-
-context(context: RoutingContext)
-suspend inline fun <reified A : Any> Either<ApiError, A>.redirect() = performResponse(redirect = true)
+suspend inline fun <reified A : Any> Either<ApiError, A>.redirect() {
+    onLeft { context.respond(it) }
+    onRight { context.call.respondRedirect(it.toString()) }
+}
 
 suspend fun RoutingContext.respond(error: ApiError) = call.respond(error.status(), error.messageMap())

src/main/kotlin/no/java/cupcake/bring/BringService.kt

@@ -44,11 +44,7 @@ class BringService(
         }
     }
 
-    fun getPostalCode(id: String?): PostalCode? {
-        if (id == null) return null
-
-        return cache.get(id)
-    }
+    fun getPostalCode(id: String?) = id?.let(cache::get)
 
     private fun scheduleRefresh() {
         logger.info { "Scheduling postal code cache refresh" }

src/main/kotlin/no/java/cupcake/plugins/HTTP.kt

@@ -14,7 +14,6 @@ fun Application.configureHTTP() {
         allowMethod(HttpMethod.Delete)
         allowMethod(HttpMethod.Patch)
         allowHeader(HttpHeaders.Authorization)
-        allowHeader("MyCustomHeader")
         anyHost()
     }
     install(Compression)

src/main/kotlin/no/java/cupcake/plugins/Routing.kt

@@ -42,7 +42,7 @@ fun Application.configureRouting(
                         get("/sessions") {
                             either {
                                 sleepingPillService.sessions(
-                                    id = ConferenceId(call.parameters["id"]).bind(),
+                                    id = ConferenceId(call.parameters["id"]),
                                 )
                             }.respond()
                         }

src/main/kotlin/no/java/cupcake/plugins/Security.kt

@@ -1,5 +1,9 @@
 package no.java.cupcake.plugins
 
+import arrow.core.Either
+import arrow.core.raise.context.bind
+import arrow.core.raise.context.either
+import arrow.core.raise.context.ensureNotNull
 import com.auth0.jwk.JwkProviderBuilder
 import io.ktor.client.HttpClient
 import io.ktor.client.call.body
@@ -17,14 +21,19 @@ import io.ktor.server.auth.authenticate
 import io.ktor.server.auth.jwt.JWTPrincipal
 import io.ktor.server.auth.jwt.jwt
 import io.ktor.server.auth.principal
-import io.ktor.server.response.respond
 import io.ktor.server.response.respondText
 import io.ktor.server.routing.get
 import io.ktor.server.routing.routing
 import kotlinx.coroutines.runBlocking
 import kotlinx.serialization.SerialName
 import kotlinx.serialization.Serializable
 import kotlinx.serialization.json.Json
+import no.java.cupcake.api.CallPrincipalMissing
+import no.java.cupcake.api.CognitoCallFailed
+import no.java.cupcake.api.ErrorResponse
+import no.java.cupcake.api.TokenMissing
+import no.java.cupcake.api.TokenMissingUser
+import no.java.cupcake.api.respond
 import no.java.cupcake.config.OidcConfig
 import java.net.URI
 import java.util.concurrent.TimeUnit
@@ -114,30 +123,44 @@ fun Application.configureUserInfoRoute(userInfoEndpoint: String) {
     routing {
         authenticate("javaBin") {
             get("/api/me") {
-                val p = call.principal<JWTPrincipal>()!!
-                val token =
-                    call.request.headers[HttpHeaders.Authorization]
-                        ?.removePrefix("Bearer ") ?: ""
+                either {
+                    val principal = ensureNotNull(call.principal<JWTPrincipal>()) { CallPrincipalMissing }
+                    val token =
+                        ensureNotNull(
+                            call.request.headers[HttpHeaders.Authorization]?.removePrefix("Bearer "),
+                        ) { TokenMissing }
+
+                    val groups =
+                        principal.payload
+                            .getClaim("cognito:groups")
+                            ?.asList(String::class.java)
+                            .orEmpty()
+
+                    val userInfo =
+                        Either
+                            .catch {
+                                http
+                                    .get(userInfoEndpoint) {
+                                        header(HttpHeaders.Authorization, "Bearer $token")
+                                    }.body<UserInfoResponse>()
+                            }.mapLeft {
+                                CognitoCallFailed(
+                                    ErrorResponse(
+                                        HttpStatusCode.BadGateway,
+                                        it.message ?: "userinfo call failed",
+                                    ),
+                                )
+                            }.bind()
+
+                    val email = ensureNotNull(userInfo.email) { TokenMissingUser }
 
-                val groups =
-                    p.payload
-                        .getClaim("cognito:groups")
-                        ?.asList(String::class.java) ?: emptyList()
-
-                val userInfo =
-                    http
-                        .get(userInfoEndpoint) {
-                            header(HttpHeaders.Authorization, "Bearer $token")
-                        }.body<UserInfoResponse>()
-
-                call.respond(
                     UserInfo(
-                        sub = p.payload.subject,
-                        preferredUsername = userInfo.email ?: p.payload.subject,
-                        email = userInfo.email ?: "",
+                        sub = principal.payload.subject,
+                        preferredUsername = email,
+                        email = email,
                         groups = groups,
-                    ),
-                )
+                    )
+                }.respond()
             }
         }
     }

src/main/kotlin/no/java/cupcake/sleepingpill/Conference.kt

@@ -1,8 +1,9 @@
 package no.java.cupcake.sleepingpill
 
-import arrow.core.raise.either
-import arrow.core.raise.ensure
+import arrow.core.raise.Raise
+import arrow.core.raise.context.ensureNotNull
 import kotlinx.serialization.Serializable
+import no.java.cupcake.api.ApiError
 import no.java.cupcake.api.ConferenceIdRequired
 import java.time.Year
 
@@ -29,14 +30,13 @@ data class SleepingPillConferences(
 )
 
 @Serializable
-data class ConferenceId private constructor(
+@JvmInline
+value class ConferenceId private constructor(
     val id: String,
 ) {
     companion object {
+        context(_: Raise<ApiError>)
         operator fun invoke(id: String?) =
-            either {
-                ensure(!id.isNullOrBlank()) { ConferenceIdRequired }
-                ConferenceId(id)
-            }
+            ConferenceId(ensureNotNull(id?.takeIf { it.isNotBlank() }) { ConferenceIdRequired })
     }
 }