Storage Browser Default Auth

[ashika112]

Description of changes

• Creates Amplify Auth adapter [This is expected to be moved to UI. Including this atm to make testing easier.]
• Creates ListPaths which is equivalent to ListLocations
• Updates type for ListPaths

TODO

• Pagination + Memoization
• Aligning behavior on user group edge case

Description of how you validated changes

• Unit test
• Manual testing using sample app

Checklist

• PR description included
• yarn test passes
• Unit Tests are changed or added
• Relevant documentation is changed or added (and PR referenced)

Checklist for repo maintainers

• Verify E2E tests for existing workflows are working as expected or add E2E tests for newly added workflows
• New source file paths included in this PR have been added to CODEOWNERS, if appropriate

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.

[ashika112]

Adapter will most likely be moved to UI

[ashika112]

Adapter will most likely be moved to UI

[AllanZhengYP]

Sanity check: the default bucket exists in buckets as well right?

[ashika112]

Yes.

[AllanZhengYP]

Nit: this name is not straightforward because this function does not take in paths input. What about renaming it to something like:

const authSession = await fetchAuthSession();
const locations = resolveAllowedLocationsFromSession( {buckets, authSession })

[ashika112]

Yes i have been trying to find the right naming too. I will updated this

[AllanZhengYP]

Sanity check: does this match the types in the backend package?

[ashika112]

Yes verified

[AllanZhengYP]

Subject to API review tho but it's better to align the scope here with the scope from other API: https://github.com/ashika112/amplify-js/blob/9cbc71d8a78ce8944db9642d7222efaec55f99e1/packages/storage/src/internals/types/credentials.ts#L81

[ashika112]

@AllanZhengYP I check in with Caleb on this, he proposed a different change in interface for both managedAuth and AmplifyAuth locations. Will raise a sep PR when we make that update everywhere

[ashika112]

Interface we want to move to should be along the lines of:

export interface LocationData {
  bucket: string;
  permission: Permission;
  prefix: string;
  type: LocationType;
}

[AllanZhengYP]

Does this mean default bucket? Should it be continue?

[ashika112]

This is for when there is no paths. So locations will be [] at that point.

[AllanZhengYP]

Sanity check, what are the cases when a path is omitted from locations? I'm wondering if we should fail-fast in these scenarios.

[AllanZhengYP]

Nit: Looking at our doc it seems backend also support Functions access type. It make sense to not support it here, but just make sure we document it.

[ashika112]

what are the cases when a path is omitted from locations?

• There is logic in resolvePermissions on what permission to pick for what use cases like authenticated, unAuthenticated, user group, entity etc. Whereever we could fail fast that is done. This logic here is more santizing the array after resolvePermission.

[ashika112]

Nit: Looking at our doc it seems backend also support Functions access type. It make sense to not support it here, but just make sure we document it.

This will result in empty paths it actually would not even make it to buckets but for both of these scenarios we fail fast so it would not even get to this point

[AllanZhengYP]

Nit: this can be moved to a function similar to resolvePermissions