fix: Update OAuth host handling to support for regions

reeshika-h · reeshika-h · commit 96403b1eb0d1 · 2025-09-09T13:45:30.000+05:30
diff --git a/src/main/java/com/contentstack/cms/Contentstack.java b/src/main/java/com/contentstack/cms/Contentstack.java
@@ -748,11 +748,25 @@ public Builder setOAuthConfig(OAuthConfig config) {
          * @return Builder instance
          */
         public Builder setOAuth(String appId, String clientId, String clientSecret, String redirectUri) {
+            return setOAuth(appId, clientId, clientSecret, redirectUri, this.hostname);
+        }
+
+        /**
+         * Configures OAuth with client credentials and specific host
+         * @param appId Application ID
+         * @param clientId Client ID
+         * @param clientSecret Client secret
+         * @param redirectUri Redirect URI
+         * @param host API host (e.g. "api.contentstack.io", "eu-api.contentstack.com")
+         * @return Builder instance
+         */
+        public Builder setOAuth(String appId, String clientId, String clientSecret, String redirectUri, String host) {
             this.oauthConfig = OAuthConfig.builder()
                 .appId(appId)
                 .clientId(clientId)
                 .clientSecret(clientSecret)
                 .redirectUri(redirectUri)
+                .host(host)
                 .build();
             return this;
         }
@@ -765,10 +779,23 @@ public Builder setOAuth(String appId, String clientId, String clientSecret, Stri
          * @return Builder instance
          */
         public Builder setOAuthWithPKCE(String appId, String clientId, String redirectUri) {
+            return setOAuthWithPKCE(appId, clientId, redirectUri, this.hostname);
+        }
+
+        /**
+         * Configures OAuth with PKCE (no client secret) and specific host
+         * @param appId Application ID
+         * @param clientId Client ID
+         * @param redirectUri Redirect URI
+         * @param host API host (e.g. "api.contentstack.io", "eu-api.contentstack.com")
+         * @return Builder instance
+         */
+        public Builder setOAuthWithPKCE(String appId, String clientId, String redirectUri, String host) {
             this.oauthConfig = OAuthConfig.builder()
                 .appId(appId)
                 .clientId(clientId)
                 .redirectUri(redirectUri)
+                .host(host)
                 .build();
             return this;
         }
diff --git a/src/main/java/com/contentstack/cms/models/OAuthConfig.java b/src/main/java/com/contentstack/cms/models/OAuthConfig.java
@@ -25,6 +25,7 @@ public class OAuthConfig {
     private final String scope;
     private final String authEndpoint;
     private final String tokenEndpoint;
+    private final String host;
 
     /**
      * Validates the configuration
@@ -69,13 +70,16 @@ public String getFormattedAuthorizationEndpoint() {
             return authEndpoint;
         }
 
-        String hostname = Util.OAUTH_APP_HOST;
+        String hostname = host != null ? host : Util.OAUTH_APP_HOST;
 
         // Transform hostname if needed
         if (hostname.contains("contentstack")) {
             hostname = hostname
-                    .replaceAll("^api\\.", "app.") // api.contentstack -> app.contentstack
-                    .replaceAll("\\.io$", ".com");  // *.io -> *.com
+                    .replaceAll("-api\\.", "-app.") // eu-api.contentstack.com -> eu-app.contentstack.com
+                    .replaceAll("^api\\.", "app.") // api.contentstack.io -> app.contentstack.io
+                    .replaceAll("\\.io$", ".com"); // *.io -> *.com
+        } else {
+            hostname = Util.OAUTH_APP_HOST;
         }
 
         return "https://" + hostname + String.format(Util.OAUTH_AUTHORIZE_ENDPOINT, appId);
@@ -91,13 +95,16 @@ public String getTokenEndpoint() {
             return tokenEndpoint;
         }
 
-        String hostname = Util.OAUTH_API_HOST;
+        String hostname = host != null ? host : Util.OAUTH_API_HOST;
 
         // Transform hostname if needed
         if (hostname.contains("contentstack")) {
-            hostname = hostname
-                    .replaceAll("^dev\\d+\\.", "dev.") // dev1.* -> dev.*
-                    .replaceAll("\\.io$", ".com");      // *.io -> *.com
+            hostname = hostname 
+                    .replaceAll("-api\\.", "-developerhub-api.") // eu-api.contentstack.com -> eu-developerhub-api.contentstack.com
+                    .replaceAll("^api\\.", "developerhub-api.") // api.contentstack.io -> developerhub-api.contentstack.io
+                    .replaceAll("\\.io$", ".com"); // *.io -> *.com
+        } else {
+            hostname = Util.OAUTH_API_HOST;
         }
 
         return "https://" + hostname + Util.OAUTH_TOKEN_ENDPOINT;
diff --git a/src/test/java/com/contentstack/cms/oauth/OAuthTest.java b/src/test/java/com/contentstack/cms/oauth/OAuthTest.java
@@ -14,6 +14,7 @@
 import org.mockito.junit.MockitoJUnitRunner;
 
 import com.contentstack.cms.Contentstack;
+import com.contentstack.cms.core.Util;
 import com.contentstack.cms.models.OAuthConfig;
 import com.contentstack.cms.models.OAuthTokens;
 import com.google.gson.Gson;
@@ -195,6 +196,154 @@ public void testAuthUrlUniqueness() {
         assertNotEquals("URLs should be different due to different PKCE challenges", url1, url2);
     }
 
+    @Test
+    public void testDefaultOAuthEndpoints() {
+        // Test with default hosts
+        OAuthConfig config = OAuthConfig.builder()
+                .appId(TEST_APP_ID)
+                .clientId(TEST_CLIENT_ID)
+                .redirectUri(TEST_REDIRECT_URI)
+                .build();
+        OAuthHandler handler = new OAuthHandler(mockHttpClient, config);
+
+        String authUrl = handler.authorize();
+        String tokenUrl = config.getTokenEndpoint();
+
+        assertTrue("Auth URL should use default app host",
+                authUrl.contains(Util.OAUTH_APP_HOST));
+        assertTrue("Token URL should use default API host",
+                tokenUrl.contains(Util.OAUTH_API_HOST));
+    }
+
+    @Test
+    public void testHostTransformations() {
+        // Test cases: {API Host, Expected App Host, Expected Token Host}
+        String[][] testCases = {
+            // Default region
+            {"api.contentstack.io", "app.contentstack.com", "developerhub-api.contentstack.com"},
+            {"api-contentstack.com", "app-contentstack.com", "developerhub-api-contentstack.com"},
+            
+            // AWS regions
+            {"eu-api.contentstack.com", "eu-app.contentstack.com", "eu-developerhub-api.contentstack.com"},
+            {"eu-api-contentstack.com", "eu-app-contentstack.com", "eu-developerhub-api-contentstack.com"},
+            {"au-api.contentstack.com", "au-app.contentstack.com", "au-developerhub-api.contentstack.com"},
+            {"au-api-contentstack.com", "au-app-contentstack.com", "au-developerhub-api-contentstack.com"},
+            
+            // Azure regions
+            {"azure-na-api.contentstack.com", "azure-na-app.contentstack.com", "azure-na-developerhub-api.contentstack.com"},
+            {"azure-na-api-contentstack.com", "azure-na-app-contentstack.com", "azure-na-developerhub-api-contentstack.com"},
+            {"azure-eu-api.contentstack.com", "azure-eu-app.contentstack.com", "azure-eu-developerhub-api.contentstack.com"},
+            {"azure-eu-api-contentstack.com", "azure-eu-app-contentstack.com", "azure-eu-developerhub-api-contentstack.com"},
+            
+            // GCP regions
+            {"gcp-na-api.contentstack.com", "gcp-na-app.contentstack.com", "gcp-na-developerhub-api.contentstack.com"},
+            {"gcp-na-api-contentstack.com", "gcp-na-app-contentstack.com", "gcp-na-developerhub-api-contentstack.com"},
+            {"gcp-eu-api.contentstack.com", "gcp-eu-app.contentstack.com", "gcp-eu-developerhub-api.contentstack.com"},
+            {"gcp-eu-api-contentstack.com", "gcp-eu-app-contentstack.com", "gcp-eu-developerhub-api-contentstack.com"}
+        };
+
+        for (String[] testCase : testCases) {
+            String apiHost = testCase[0];
+            String expectedAppHost = testCase[1];
+            String expectedTokenHost = testCase[2];
+
+            OAuthConfig config = OAuthConfig.builder()
+                    .appId(TEST_APP_ID)
+                    .clientId(TEST_CLIENT_ID)
+                    .redirectUri(TEST_REDIRECT_URI)
+                    .host(apiHost)
+                    .build();
+            OAuthHandler handler = new OAuthHandler(mockHttpClient, config);
+
+            String authUrl = handler.authorize();
+            String tokenUrl = config.getTokenEndpoint();
+
+            assertTrue(String.format("Auth URL for %s should contain %s", apiHost, expectedAppHost),
+                    authUrl.contains(expectedAppHost));
+            assertTrue(String.format("Token URL for %s should contain %s", apiHost, expectedTokenHost),
+                    tokenUrl.contains(expectedTokenHost));
+        }
+    }
+
+    @Test
+    public void testHostStorage() {
+        String testHost = "eu-api.contentstack.com";
+        
+        // Test host storage in OAuthConfig
+        OAuthConfig config = OAuthConfig.builder()
+                .appId(TEST_APP_ID)
+                .clientId(TEST_CLIENT_ID)
+                .redirectUri(TEST_REDIRECT_URI)
+                .host(testHost)
+                .build();
+                
+        assertEquals("Host should be stored in OAuthConfig",
+                testHost, config.getHost());
+                
+        // Test host storage via Contentstack.Builder
+        Contentstack client = new Contentstack.Builder()
+                .setOAuth(TEST_APP_ID, TEST_CLIENT_ID, TEST_CLIENT_SECRET, TEST_REDIRECT_URI, testHost)
+                .build();
+                
+        String authUrl = client.getOAuthAuthorizationUrl();
+        assertTrue("Auth URL should use stored host",
+                authUrl.contains("eu-app.contentstack.com"));
+                
+        // Test host storage via PKCE builder
+        client = new Contentstack.Builder()
+                .setOAuthWithPKCE(TEST_APP_ID, TEST_CLIENT_ID, TEST_REDIRECT_URI, testHost)
+                .build();
+                
+        authUrl = client.getOAuthAuthorizationUrl();
+        assertTrue("Auth URL should use stored host with PKCE",
+                authUrl.contains("eu-app.contentstack.com"));
+    }
+
+    @Test
+    public void testDefaultHosts() {
+        // Test with no host specified
+        OAuthConfig config = OAuthConfig.builder()
+                .appId(TEST_APP_ID)
+                .clientId(TEST_CLIENT_ID)
+                .redirectUri(TEST_REDIRECT_URI)
+                .build();
+        OAuthHandler handler = new OAuthHandler(mockHttpClient, config);
+
+        String authUrl = handler.authorize();
+        String tokenUrl = config.getTokenEndpoint();
+
+        assertTrue("Auth URL should use default app host",
+                authUrl.contains(Util.OAUTH_APP_HOST));
+        assertTrue("Token URL should use default API host",
+                tokenUrl.contains(Util.OAUTH_API_HOST));
+    }
+
+    @Test
+    public void testCustomEndpoints() {
+        // Test with custom endpoints
+        String customAuthEndpoint = "https://custom.auth.endpoint";
+        String customTokenEndpoint = "https://custom.token.endpoint";
+
+        OAuthConfig config = OAuthConfig.builder()
+                .appId(TEST_APP_ID)
+                .clientId(TEST_CLIENT_ID)
+                .redirectUri(TEST_REDIRECT_URI)
+                .authEndpoint(customAuthEndpoint)
+                .tokenEndpoint(customTokenEndpoint)
+                .build();
+        OAuthHandler handler = new OAuthHandler(mockHttpClient, config);
+
+        String authUrl = handler.authorize();
+        String tokenUrl = config.getTokenEndpoint();
+
+        assertEquals("Should use custom auth endpoint",
+                customAuthEndpoint, authUrl);
+        assertEquals("Should use custom token endpoint",
+                customTokenEndpoint, tokenUrl);
+    }
+
+
+
     // =================
     // TOKEN EXCHANGE TESTS
     // =================
