Feat/support user context data (#168)

Author: mgamsjager

.autover/changes/30d09ded-3472-4555-b1e3-f9e3abfa38c7.json

@@ -0,0 +1,11 @@
+{
+  "Projects": [
+    {
+      "Name": "Amazon.Extensions.CognitoAuthentication",
+      "Type": "Patch",
+      "ChangelogMessages": [
+        "Add support for UserContextData"
+      ]
+    }
+  ]
+}

CHANGELOG.md

@@ -83,4 +83,4 @@ Thanks [DmitryProskurin](https://github.com/DmitryProskurin) for the above chang
 
 ### Amazon.Extensions.CognitoAuthentication (2.1.0)
 * Added support for TOTP challenges, supports the existing way by defaulting to SMS, but also has an additional override method to allow setting the challenge type.
-* Make the methods of CognitoUser virtual so that mock test cases could be written for CognitoUser class.
+* Make the methods of CognitoUser virtual so that mock test cases could be written for CognitoUser class.

src/Amazon.Extensions.CognitoAuthentication/CognitoAuthenticationClasses.cs

@@ -69,50 +69,61 @@ public AuthFlowResponse(string sessionId, AuthenticationResultType authenticatio
         /// </summary>
         public IDictionary<string, string> ClientMetadata { get; }
 
-        /// <summary>
-        /// The analytics metadata for collecting Amazon Pinpoint metrics.
-        /// </summary>
+        /// <summary>
+        /// The analytics metadata for collecting Amazon Pinpoint metrics.
+        /// </summary>
         public AnalyticsMetadataType AnalyticsMetadata { get; set; }
+
+        /// <summary>
+        /// Additional UserContextDataType 
+        /// </summary>
+        public UserContextDataType UserContextData { get; set; }
     }
 
     /// <summary>
-    /// Class containing the necessary properities to initiate SRP authentication flow
+    /// Class containing the necessary properties to initiate SRP authentication flow
     /// </summary>
     public class InitiateSrpAuthRequest
     {
         /// <summary>
         /// The password for the corresponding CognitoUser.
         /// </summary>
-        public string Password { get; set; }
-        /// <summary>
-        /// The password for the device associated with the corresponding CognitoUser 
-        /// </summary>
-        public string DevicePass { get; set; }
-        /// <summary>
-        /// The device password verifier for the device associated with the corresponding CognitoUser
-        /// </summary>
-        public string DeviceVerifier { get; set; }
-        /// <summary>
-        /// The Device Key Group for the device associated with the corresponding CognitoUser
-        /// </summary>
-        public string DeviceGroupKey { get; set; }
+        public string Password { get; set; }
+        /// <summary>
+        /// The password for the device associated with the corresponding CognitoUser 
+        /// </summary>
+        public string DevicePass { get; set; }
+        /// <summary>
+        /// The device password verifier for the device associated with the corresponding CognitoUser
+        /// </summary>
+        public string DeviceVerifier { get; set; }
+        /// <summary>
+        /// The Device Key Group for the device associated with the corresponding CognitoUser
+        /// </summary>
+        public string DeviceGroupKey { get; set; }
         /// <summary>
         /// The client metadata for the current authentication flow.
         /// </summary>
-        public IDictionary<string, string> ClientMetadata { get; set; }
-        /// <summary>
-        /// The analytics metadata for collecting Amazon Pinpoint metrics.
-        /// </summary>
+        public IDictionary<string, string> ClientMetadata { get; set; }
+        /// <summary>
+        /// The analytics metadata for collecting Amazon Pinpoint metrics.
+        /// </summary>
         public AnalyticsMetadataType AnalyticsMetadata { get; set; }
-        /// <summary>
-        /// Enable custom auth flow
-        /// https://docs.aws.amazon.com/cognito/latest/developerguide/amazon-cognito-user-pools-authentication-flow.html#Using-SRP-password-verification-in-custom-authentication-flow
+  
+        /// <summary>
+        /// Additional UserContextDataType 
+        /// </summary>
+        public UserContextDataType UserContextData { get; set; }
+        
+        /// <summary>
+        /// Enable custom auth flow
+        /// https://docs.aws.amazon.com/cognito/latest/developerguide/amazon-cognito-user-pools-authentication-flow.html#Using-SRP-password-verification-in-custom-authentication-flow
         /// </summary>
         public bool IsCustomAuthFlow { get; set; }
     }
 
     /// <summary>
-    /// Class containing the necessary properities to initiate custom authentication flow
+    /// Class containing the necessary properties to initiate custom authentication flow
     /// </summary>
     public class InitiateCustomAuthRequest
     {
@@ -124,16 +135,21 @@ public class InitiateCustomAuthRequest
         /// <summary>
         /// The client metadata for the current authentication flow.
         /// </summary>
-        public IDictionary<string, string> ClientMetadata { get; set; }
-
-        /// <summary>
-        /// The analytics metadata for collecting Amazon Pinpoint metrics.
-        /// </summary>
+        public IDictionary<string, string> ClientMetadata { get; set; }
+
+        /// <summary>
+        /// The analytics metadata for collecting Amazon Pinpoint metrics.
+        /// </summary>
         public AnalyticsMetadataType AnalyticsMetadata { get; set; }
+
+        /// <summary>
+        /// Additional UserContextDataType 
+        /// </summary>
+        public UserContextDataType UserContextData { get; set; }
     }
 
     /// <summary>
-    /// Class containing the necessary properities to initiate either REFRESH_TOKEN or
+    /// Class containing the necessary properties to initiate either REFRESH_TOKEN or
     /// REFRESH_TOKEN_AUTH authentication
     /// </summary>
     public class InitiateRefreshTokenAuthRequest
@@ -146,7 +162,7 @@ public class InitiateRefreshTokenAuthRequest
     }
 
     /// <summary>
-    /// Class containing the necessary properities to respond to an MFA authentication challenge
+    /// Class containing the necessary properties to respond to an MFA authentication challenge
     /// </summary>
     public class RespondToMfaRequest
     {
@@ -167,7 +183,7 @@ public class RespondToMfaRequest
     }
 
     /// <summary>
-    /// Class containing the necessary properities to respond to an MFA authentication challenge
+    /// Class containing the necessary properties to respond to an MFA authentication challenge
     /// </summary>
     public class RespondToSmsMfaRequest : RespondToMfaRequest
     {
@@ -178,7 +194,7 @@ public class RespondToSmsMfaRequest : RespondToMfaRequest
     }
 
     /// <summary>
-    /// Class containing the necessary properities to respond to a new password required authentication challenge
+    /// Class containing the necessary properties to respond to a new password required authentication challenge
     /// </summary>
     public class RespondToNewPasswordRequiredRequest
     {
@@ -194,7 +210,7 @@ public class RespondToNewPasswordRequiredRequest
     }
 
     /// <summary>
-    /// Class containing the necessary properities to respond to a custom authentication challenge
+    /// Class containing the necessary properties to respond to a custom authentication challenge
     /// </summary>
     public class RespondToCustomChallengeRequest
     {
@@ -208,15 +224,20 @@ public class RespondToCustomChallengeRequest
         /// </summary>
         public IDictionary<string, string> ClientMetadata { get; set; } = new Dictionary<string, string>();
 
-        /// <summary>
-        /// The analytics metadata for collecting Amazon Pinpoint metrics.
-        /// </summary>
+        /// <summary>
+        /// The analytics metadata for collecting Amazon Pinpoint metrics.
+        /// </summary>
         public AnalyticsMetadataType AnalyticsMetadata { get; set; }
 
         /// <summary>
         /// The sessionID for the current authentication flow.
         /// </summary>
         public string SessionID { get; set; }
+
+        /// <summary>
+        /// Additional UserContextDataType 
+        /// </summary>
+        public UserContextDataType UserContextData { get; set; }
     }
 
     /// <summary>
@@ -232,11 +253,11 @@ public class InitiateAdminNoSrpAuthRequest
         /// <summary>
         /// Optional client metadata to provide in the Initiate Admin Authentication API call
         /// </summary>
-        public IDictionary<string, string> ClientMetadata { get; set; }
-
-        /// <summary>
-        /// Optional analytics metadata for collecting Amazon Pinpoint metrics.
-        /// </summary>
-        public AnalyticsMetadataType AnalyticsMetadata { get; set; }
+        public IDictionary<string, string> ClientMetadata { get; set; }
+
+        /// <summary>
+        /// Optional analytics metadata for collecting Amazon Pinpoint metrics.
+        /// </summary>
+        public AnalyticsMetadataType AnalyticsMetadata { get; set; }       
     }
 }

src/Amazon.Extensions.CognitoAuthentication/CognitoUserAuthentication.cs

@@ -68,6 +68,8 @@ public virtual async Task<AuthFlowResponse> StartWithSrpAuthAsync(InitiateSrpAut
                 initiateRequest.ClientMetadata = new Dictionary<string, string>(srpRequest.ClientMetadata);
             }
 
+            initiateRequest.UserContextData = srpRequest.UserContextData;
+
             initiateRequest.AnalyticsMetadata = srpRequest.AnalyticsMetadata;
 
             if (srpRequest.IsCustomAuthFlow)
@@ -86,6 +88,8 @@ public virtual async Task<AuthFlowResponse> StartWithSrpAuthAsync(InitiateSrpAut
                 challengeRequest.ClientMetadata = new Dictionary<string, string>(srpRequest.ClientMetadata);
             }
 
+            challengeRequest.UserContextData = srpRequest.UserContextData;
+
             challengeRequest.AnalyticsMetadata = srpRequest.AnalyticsMetadata;
 
             bool challengeResponsesValid = challengeRequest != null && challengeRequest.ChallengeResponses != null;
@@ -243,7 +247,8 @@ public virtual async Task<AuthFlowResponse> StartWithCustomAuthAsync(InitiateCus
                 AuthParameters = new Dictionary<string, string>(customRequest.AuthParameters),
                 ClientId = ClientID,
                 ClientMetadata = new Dictionary<string, string>(customRequest.ClientMetadata),
-                AnalyticsMetadata = customRequest.AnalyticsMetadata
+                AnalyticsMetadata = customRequest.AnalyticsMetadata,
+                UserContextData = customRequest.UserContextData
             };
 
             InitiateAuthResponse initiateResponse = await Provider.InitiateAuthAsync(authRequest, cancellationToken).ConfigureAwait(false);
@@ -289,7 +294,8 @@ public virtual async Task<AuthFlowResponse> RespondToCustomAuthAsync(RespondToCu
                 ChallengeResponses = new Dictionary<string, string>(customRequest.ChallengeParameters),
                 ClientMetadata = new Dictionary<string, string>(customRequest.ClientMetadata),
                 AnalyticsMetadata = customRequest.AnalyticsMetadata,
-                Session = customRequest.SessionID
+                Session = customRequest.SessionID,
+                UserContextData = customRequest.UserContextData
             };
 
             RespondToAuthChallengeResponse authResponse =
@@ -546,7 +552,6 @@ public virtual async Task<AuthFlowResponse> RespondToNewPasswordRequiredAsync(Re
                 { CognitoConstants.ChlgParamNewPassword, newPasswordRequest.NewPassword},
                 { CognitoConstants.ChlgParamUsername, Username }
             };
-
             if (requiredAttributes != null)
             {
                 foreach (KeyValuePair<string, string> attribute in requiredAttributes)
@@ -754,7 +759,7 @@ private AdminInitiateAuthRequest CreateAdminAuthRequest(InitiateAdminNoSrpAuthRe
             {
                 returnRequest.ClientMetadata = new Dictionary<string, string>(adminRequest.ClientMetadata);
             }
-
+           
             returnRequest.AnalyticsMetadata = adminRequest.AnalyticsMetadata;
 
             return returnRequest;

test/Amazon.Extensions.CognitoAuthentication.IntegrationTests/CognitoAWSCredentialsTests.cs

@@ -21,6 +21,7 @@
 
 using Amazon;
 using Amazon.CognitoIdentity;
+using Amazon.CognitoIdentityProvider.Model;
 using Amazon.CognitoIdentity.Model;
 using Amazon.Extensions.CognitoAuthentication;
 using Amazon.IdentityManagement;
@@ -54,7 +55,11 @@ public async Task TestGetCognitoAWSCredentials()
             AuthFlowResponse context =
                 await user.StartWithSrpAuthAsync(new InitiateSrpAuthRequest()
                 {
-                    Password = password
+                    Password = password,
+                    UserContextData = new UserContextDataType {
+                        EncodedData = "AmazonCognitoAdvancedSecurityData_object",
+                        IpAddress = "192.0.2.1"
+                    }
                 });
 
             //Create identity pool