Add noAuthIdentityResolver instead of nullptr, fix include headers

Author: sbaluja

src/aws-cpp-sdk-core/include/aws/core/auth/AWSAuthSigner.h

@@ -11,8 +11,4 @@
 #include <aws/core/auth/signer/AWSAuthV4Signer.h>
 #include <aws/core/auth/signer/AWSAuthEventStreamV4Signer.h>
 #include <aws/core/auth/signer/AWSNullSigner.h>
-
-#include <smithy/identity/auth/built-in/NoAuthScheme.h>
-#include <smithy/identity/auth/built-in/NoAuthSchemeOption.h>
-
 // This is a header that represents old legacy all-in-one header to maintain backward compatibility

src/aws-cpp-sdk-core/include/smithy/client/AwsSmithyClient.h

@@ -352,18 +352,15 @@ namespace client
 
         GetContextEndpointParametersOutcome GetContextEndpointParametersImpl(const AwsSmithyClientAsyncRequestContext& ctx) const {
           Aws::Vector<Aws::Endpoint::EndpointParameter> endpointParameters;
-          //nullptr indicates we're using noAuth and therefore there is no identity
-          if (ctx.m_awsIdentity != nullptr) {
-            const auto resolvedAccountId = ctx.m_awsIdentity->accountId();
-            const auto resolvedNonEmptyAccountId = resolvedAccountId.has_value() && !resolvedAccountId.value().empty();
-            // Set user agent if account ID was resolved in identity provider
-            if (resolvedNonEmptyAccountId) {
-              ctx.m_pRequest->AddUserAgentFeature(Aws::Client::UserAgentFeature::RESOLVED_ACCOUNT_ID);
-            }
-            // Only set EP param if client configuration does not have a configured account ID and we resolved a account id
-            if (resolvedNonEmptyAccountId && m_clientConfiguration.accountId.empty()) {
-              endpointParameters.emplace_back("AccountId", resolvedAccountId.value(), Aws::Endpoint::EndpointParameter::ParameterOrigin::OPERATION_CONTEXT);
-            }
+          const auto resolvedAccountId = ctx.m_awsIdentity->accountId();
+          const auto resolvedNonEmptyAccountId = resolvedAccountId.has_value() && !resolvedAccountId.value().empty();
+          // Set user agent if account ID was resolved in identity provider
+          if (resolvedNonEmptyAccountId) {
+            ctx.m_pRequest->AddUserAgentFeature(Aws::Client::UserAgentFeature::RESOLVED_ACCOUNT_ID);
+          }
+          // Only set EP param if client configuration does not have a configured account ID and we resolved a account id
+          if (resolvedNonEmptyAccountId && m_clientConfiguration.accountId.empty()) {
+            endpointParameters.emplace_back("AccountId", resolvedAccountId.value(), Aws::Endpoint::EndpointParameter::ParameterOrigin::OPERATION_CONTEXT);
           }
           return endpointParameters;
         }

src/aws-cpp-sdk-core/include/smithy/identity/auth/built-in/NoAuthScheme.h

@@ -9,6 +9,7 @@
 
 #include <smithy/identity/identity/AwsCredentialIdentityBase.h>
 #include <smithy/identity/signer/built-in/NoAuthSigner.h>
+#include <smithy/identity/resolver/built-in/NoAuthIdentityResolver.h>
 
 namespace smithy {
     constexpr char NOAUTH[] = "smithy.api#noAuth";
@@ -21,48 +22,55 @@ namespace smithy {
 
         explicit NoAuthScheme()
             : AuthScheme(NOAUTH),
-            m_signer{Aws::MakeShared<AwsNoAuthSigner>("NoAuthScheme")}
+            m_signer{Aws::MakeShared<AwsNoAuthSigner>("NoAuthScheme")},
+            m_identityResolver{Aws::MakeShared<NoAuthIdentityResolver>("NoAuthScheme")}
         {
             assert(m_signer);
+            assert(m_identityResolver);
         }
 
         explicit NoAuthScheme(std::shared_ptr<AwsCredentialIdentityResolverT> identityResolver,
                                     const Aws::String& serviceName,
                                     const Aws::String& region)
               : AuthScheme(NOAUTH),
-              m_signer{Aws::MakeShared<AwsNoAuthSigner>("NoAuthScheme")}
+              m_signer{Aws::MakeShared<AwsNoAuthSigner>("NoAuthScheme")},
+              m_identityResolver{Aws::MakeShared<NoAuthIdentityResolver>("NoAuthScheme")}
           {
             AWS_UNREFERENCED_PARAM(identityResolver);
             AWS_UNREFERENCED_PARAM(serviceName);
             AWS_UNREFERENCED_PARAM(region);
             assert(m_signer);
+            assert(m_identityResolver);
           }
 
         explicit NoAuthScheme(const Aws::String& serviceName,
                                   const Aws::String& region)
             : NoAuthScheme(nullptr, serviceName, region)
         {
           assert(m_signer);
+          assert(m_identityResolver);
         }
 
         //legacy constructors
         explicit NoAuthScheme(std::shared_ptr<AwsCredentialIdentityResolverT> identityResolver, const Aws::String& serviceName, const Aws::String& region, Aws::Client::AWSAuthV4Signer::PayloadSigningPolicy policy, bool urlEscape)
             :  AuthScheme(NOAUTH),
-            m_signer{Aws::MakeShared<AwsNoAuthSigner>("NoAuthScheme")}
+            m_signer{Aws::MakeShared<AwsNoAuthSigner>("NoAuthScheme")},
+            m_identityResolver{Aws::MakeShared<NoAuthIdentityResolver>("NoAuthScheme")}
         {
           AWS_UNREFERENCED_PARAM(identityResolver);
           AWS_UNREFERENCED_PARAM(serviceName);
           AWS_UNREFERENCED_PARAM(region);
           AWS_UNREFERENCED_PARAM(policy);
           AWS_UNREFERENCED_PARAM(urlEscape);
           assert(m_signer);
+          assert(m_identityResolver);
         }
 
         virtual ~NoAuthScheme() = default;
 
         std::shared_ptr<AwsCredentialIdentityResolverT> identityResolver() override
         {
-            return nullptr;
+            return m_identityResolver;
         }
 
         std::shared_ptr<AwsCredentialSignerT> signer() override
@@ -72,5 +80,6 @@ namespace smithy {
 
     protected:
         std::shared_ptr<AwsCredentialSignerT> m_signer;
+        std::shared_ptr<AwsCredentialIdentityResolverT> m_identityResolver;
     };
 }

src/aws-cpp-sdk-core/include/smithy/identity/resolver/built-in/NoAuthIdentityResolver.h

@@ -0,0 +1,30 @@
+/**
+ * Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved.
+ * SPDX-License-Identifier: Apache-2.0.
+ */
+#pragma once
+
+#include <smithy/identity/resolver/AwsCredentialIdentityResolver.h>
+
+#include <aws/core/auth/AWSCredentials.h>
+
+namespace smithy {
+    /**
+     * A no-auth identity resolver that returns empty credentials for unauthenticated requests
+     */
+    class NoAuthIdentityResolver : public AwsCredentialIdentityResolver {
+    public:
+        NoAuthIdentityResolver() = default;
+        virtual ~NoAuthIdentityResolver() = default;
+
+        ResolveIdentityFutureOutcome getIdentity(const IdentityProperties& identityProperties, const AdditionalParameters& additionalParameters) override
+        {
+            AWS_UNREFERENCED_PARAM(identityProperties);
+            AWS_UNREFERENCED_PARAM(additionalParameters);
+
+            auto smithyCreds = Aws::MakeUnique<AwsCredentialIdentity>("NoAuthIdentityResolver");
+            // Return empty identity for no-auth scenarios
+            return {std::move(smithyCreds)};
+        }
+    };
+}

src/aws-cpp-sdk-core/source/smithy/client/AwsSmithyClientBase.cpp

@@ -195,15 +195,14 @@ bool AwsSmithyClientBase::ResolveIdentityAuth(
     assert(pRequestCtx->m_authSchemeOption.schemeId);
 
     // resolve identity
-    if (strcmp(authSchemeOptionOutcome.GetResult().schemeId, smithy::NOAUTH) != 0) {
-        auto identityOutcome = this->ResolveIdentity(*pRequestCtx);
-        if (!identityOutcome.IsSuccess())
-        {
-          responseHandler(std::move(identityOutcome));
-          return false;
-        }
-        pRequestCtx->m_awsIdentity = std::move(identityOutcome.GetResultWithOwnership());
+    auto identityOutcome = this->ResolveIdentity(*pRequestCtx);
+    if (!identityOutcome.IsSuccess())
+    {
+      responseHandler(std::move(identityOutcome));
+      return false;
     }
+    pRequestCtx->m_awsIdentity = std::move(identityOutcome.GetResultWithOwnership());
+
 
 
     // get endpoint params from operation context

tools/code-generation/generator/src/main/java/com/amazonaws/util/awsclientgenerator/domainmodels/codegeneration/Operation.java

@@ -102,6 +102,10 @@ public boolean hasSigV4aAuth() {
         return auth != null && auth.contains("aws.auth#sigv4a");
     }
 
+    public boolean hasNoAuth() {
+        return auth != null && auth.contains("smithy.api#noAuth");
+    }
+
     public boolean hasBearerAuth() {
         return auth != null && auth.contains("smithy.api#httpBearerAuth");
     }

tools/code-generation/generator/src/main/java/com/amazonaws/util/awsclientgenerator/domainmodels/codegeneration/ServiceModel.java

@@ -51,18 +51,22 @@ public boolean hasSigV4Auth() {
         if(metadata.getSignatureVersion().equals("v4") || metadata.getSignatureVersion().equals("s3v4")) {
             return true;
         }
-        return authSchemes.contains("aws.auth#sigv4") || operations.values().parallelStream().anyMatch(operation -> operation.getSignerName().equals("Aws::Auth::SIGV4_SIGNER"));
+        return authSchemes.contains("aws.auth#sigv4") || operations.values().parallelStream().anyMatch(operation -> operation.getSignerName().equals("Aws::Auth::SIGV4_SIGNER") || operation.hasSigV4Auth());
     }
 
     public boolean hasSigV4aAuth() {
-        return authSchemes.contains("aws.auth#sigv4a") || operations.values().parallelStream().anyMatch(operation -> operation.getSignerName().equals("Aws::Auth::SIGV4A_SIGNER"));
+        return authSchemes.contains("aws.auth#sigv4a") || operations.values().parallelStream().anyMatch(operation -> operation.getSignerName().equals("Aws::Auth::SIGV4A_SIGNER") || operation.hasSigV4aAuth());
+    }
+
+    public boolean hasNoAuth() {
+        return authSchemes.contains("smithy.api#noAuth") || operations.values().parallelStream().anyMatch(operation -> operation.getSignerName().equals("Aws::Auth::NULL_SIGNER") || operation.hasNoAuth());
     }
 
     public boolean hasBearerAuth() {
         if(metadata.getSignatureVersion().equals("bearer")) {
             return true;
         }
-        return authSchemes.contains("smithy.api#httpBearerAuth") || operations.values().parallelStream().anyMatch(operation -> operation.getSignerName().equals("Aws::Auth::BEARER_SIGNER"));
+        return authSchemes.contains("smithy.api#httpBearerAuth") || operations.values().parallelStream().anyMatch(operation -> operation.getSignerName().equals("Aws::Auth::BEARER_SIGNER") || operation.hasBearerAuth());
     }
 
     public boolean hasOnlyBearerAuth() {

tools/code-generation/generator/src/main/resources/com/amazonaws/util/awsclientgenerator/velocity/cpp/cbor/CborRequestSource.vm

@@ -24,6 +24,9 @@
 #if($operation.hasBearerAuth())
 \#include <smithy/identity/auth/built-in/BearerTokenAuthSchemeOption.h>
 #end
+#if($operation.hasNoAuth())
+\#include <smithy/identity/auth/built-in/NoAuthScheme.h>
+#end
 #end ###if($serviceModel.useSmithyClient)
 
 \#include <utility>

tools/code-generation/generator/src/main/resources/com/amazonaws/util/awsclientgenerator/velocity/cpp/json/JsonRequestSource.vm

@@ -24,6 +24,9 @@
 #if($operation.hasBearerAuth())
 \#include <smithy/identity/auth/built-in/BearerTokenAuthSchemeOption.h>
 #end
+#if($operation.hasNoAuth())
+\#include <smithy/identity/auth/built-in/NoAuthScheme.h>
+#end
 #end ###if($serviceModel.useSmithyClient)
 \#include <utility>
 #if(${CppViewHelper.hasListMemberUsedForHeader($shape)})

tools/code-generation/generator/src/main/resources/com/amazonaws/util/awsclientgenerator/velocity/cpp/smithy/SmithyClientHeader.vm

@@ -27,6 +27,9 @@
 #if($serviceModel.hasSigV4aAuth())
 \#include <smithy/identity/auth/built-in/SigV4aAuthScheme.h>
 #end
+#if($serviceModel.hasNoAuth())
+\#include <smithy/identity/auth/built-in/NoAuthScheme.h>
+#end
 \#include <smithy/identity/auth/built-in/GenericAuthSchemeResolver.h>
 \#include <smithy/client/serializer/${serializer}.h>
 \#include <aws/${metadata.projectName}/${metadata.classNamePrefix}ErrorMarshaller.h>