fix(rt): import signing test suite (#451)

Author: aajtodd

aws-runtime/aws-signing/build.gradle.kts

@@ -9,6 +9,8 @@ extra["moduleName"] = "aws.sdk.kotlin.runtime.auth.signing"
 
 val smithyKotlinVersion: String by project
 val kotestVersion: String by project
+val ktorVersion: String by project
+val kotlinxSerializationVersion: String by project
 
 kotlin {
     sourceSets {
@@ -30,6 +32,11 @@ kotlin {
         commonTest {
             dependencies {
                 implementation(project(":aws-runtime:testing"))
+
+                // sigv4 test suite
+                implementation("io.ktor:ktor-utils:$ktorVersion")
+                implementation("io.ktor:ktor-http-cio:$ktorVersion")
+                implementation("org.jetbrains.kotlinx:kotlinx-serialization-json:$kotlinxSerializationVersion")
             }
         }
 

aws-runtime/aws-signing/common/src/aws/sdk/kotlin/runtime/auth/signing/AwsSigV4SigningMiddleware.kt

@@ -18,11 +18,14 @@ import aws.smithy.kotlin.runtime.http.operation.SdkHttpOperation
 import aws.smithy.kotlin.runtime.http.operation.withContext
 import aws.smithy.kotlin.runtime.logging.Logger
 import aws.smithy.kotlin.runtime.util.get
+import kotlin.time.Duration
+import kotlin.time.ExperimentalTime
 
 /**
  * HTTP request pipeline middleware that signs outgoing requests
  */
 @InternalSdkApi
+@OptIn(ExperimentalTime::class)
 public class AwsSigV4SigningMiddleware internal constructor(private val config: Config) : Feature {
 
     public class Config {
@@ -71,6 +74,13 @@ public class AwsSigV4SigningMiddleware internal constructor(private val config:
          * Most services do not require this additional header.
          */
         public var signedBodyHeaderType: AwsSignedBodyHeaderType = AwsSignedBodyHeaderType.NONE
+
+        /**
+         * If non-zero and the signing transform is query param, then signing will add X-Amz-Expires to the query
+         * string, equal to the value specified here.  If this value is zero or if header signing is being used then
+         * this parameter has no effect.
+         */
+        public var expiresAfter: Duration? = null
     }
 
     public companion object Feature : HttpClientFeatureFactory<Config, AwsSigV4SigningMiddleware> {
@@ -132,6 +142,7 @@ public class AwsSigV4SigningMiddleware internal constructor(private val config:
                 omitSessionToken = config.omitSessionToken
                 normalizeUriPath = config.normalizeUriPath
                 useDoubleUriEncode = config.useDoubleUriEncode
+                expiresAfter = config.expiresAfter
 
                 signedBodyHeader = config.signedBodyHeaderType
                 signedBodyValue = when {

aws-runtime/aws-signing/common/test-resources/aws-signing-test-suite/README.md

@@ -0,0 +1,12 @@
+{
+    "credentials": {
+        "access_key_id": "AKIDEXAMPLE",
+        "secret_access_key": "wJalrXUtnFEMI/K7MDENG+bPxRfiCYEXAMPLEKEY"
+    },
+    "expiration_in_seconds": 3600,
+    "normalize": true,
+    "region": "us-east-1",
+    "service": "service",
+    "sign_body": false,
+    "timestamp": "2015-08-30T12:36:00Z"
+}

aws-runtime/aws-signing/common/test-resources/aws-signing-test-suite/v4/get-header-key-duplicate/context.json

@@ -0,0 +1,9 @@
+GET
+/
+
+host:example.amazonaws.com
+my-header1:value2,value2,value1
+x-amz-date:20150830T123600Z
+
+host;my-header1;x-amz-date
+e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

aws-runtime/aws-signing/common/test-resources/aws-signing-test-suite/v4/get-header-key-duplicate/header-canonical-request.txt

@@ -0,0 +1 @@
+c9d5ea9f3f72853aea855b47ea873832890dbdd183b4468f858259531a5138ea

aws-runtime/aws-signing/common/test-resources/aws-signing-test-suite/v4/get-header-key-duplicate/header-signature.txt

@@ -0,0 +1,8 @@
+GET / HTTP/1.1
+Host:example.amazonaws.com
+My-Header1:value2
+My-Header1:value2
+My-Header1:value1
+X-Amz-Date:20150830T123600Z
+Authorization:AWS4-HMAC-SHA256 Credential=AKIDEXAMPLE/20150830/us-east-1/service/aws4_request, SignedHeaders=host;my-header1;x-amz-date, Signature=c9d5ea9f3f72853aea855b47ea873832890dbdd183b4468f858259531a5138ea
+

aws-runtime/aws-signing/common/test-resources/aws-signing-test-suite/v4/get-header-key-duplicate/header-signed-request.txt

@@ -0,0 +1,4 @@
+AWS4-HMAC-SHA256
+20150830T123600Z
+20150830/us-east-1/service/aws4_request
+dc7f04a3abfde8d472b0ab1a418b741b7c67174dad1551b4117b15527fbe966c

aws-runtime/aws-signing/common/test-resources/aws-signing-test-suite/v4/get-header-key-duplicate/header-string-to-sign.txt

@@ -0,0 +1,8 @@
+GET
+/
+X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=AKIDEXAMPLE%2F20150830%2Fus-east-1%2Fservice%2Faws4_request&X-Amz-Date=20150830T123600Z&X-Amz-Expires=3600&X-Amz-SignedHeaders=host%3Bmy-header1
+host:example.amazonaws.com
+my-header1:value2,value2,value1
+
+host;my-header1
+e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

aws-runtime/aws-signing/common/test-resources/aws-signing-test-suite/v4/get-header-key-duplicate/query-canonical-request.txt

@@ -0,0 +1 @@
+3349ee0b81b4b589da0ff28a395c3591e04de515651dd74f298fa992d1507a97