Adds clientConfig to CognitoIdentityCredentials to support passing in region and other config to the underlying CognitoIdentity service client

Author: chrisradek

.changes/next-release/feature-CognitoIdentityCredentials-1f2c8c48.json

@@ -0,0 +1,5 @@
+{
+  "type": "feature",
+  "category": "CognitoIdentityCredentials",
+  "description": "Adds `clientConfig` as an optional parameter to the `CognitoIdentityCredentials` constructor. This parameter can be used to pass in client configuration to the underlying `CognitoIdentity` service client."
+}

lib/credentials/cognito_identity_credentials.d.ts

@@ -1,30 +1,42 @@
 import {Credentials} from '../credentials';
 import {AWSError} from '../error';
+import {ConfigurationOptions} from '../config';
 import CognitoIdentity = require('../../clients/cognitoidentity');
 import STS = require('../../clients/sts');
+
 export class CognitoIdentityCredentials extends Credentials {
-		/**
-		 * Creates a new credentials object.
-		 */
-		constructor(options?: CognitoIdentity.Types.GetIdInput|CognitoIdentity.Types.GetCredentialsForIdentityInput|CognitoIdentity.Types.GetOpenIdTokenInput|STS.Types.AssumeRoleWithWebIdentityRequest);
-		/**
-		 * Refreshes credentials using AWS.CognitoIdentity.getCredentialsForIdentity(), or AWS.STS.assumeRoleWithWebIdentity().
-		 */
-		refresh(callback: (err: AWSError) => void): void;
-        /**
-         * Clears the cached Cognito ID associated with the currently configured identity pool ID.
-         */
-        clearCachedId(): void;
-        /**
-         * The raw data response from the call to AWS.CognitoIdentity.getCredentialsForIdentity(), or AWS.STS.assumeRoleWithWebIdentity().
-         */
-        data: CognitoIdentity.Types.GetCredentialsForIdentityResponse|STS.Types.AssumeRoleWithWebIdentityResponse;
-        /**
-         * The Cognito ID returned by the last call to AWS.CognitoIdentity.getOpenIdToken().
-         */
-        identityId: string;
-        /**
-         * The map of params passed to AWS.CognitoIdentity.getId(), AWS.CognitoIdentity.getOpenIdToken(), and AWS.STS.assumeRoleWithWebIdentity().
-         */
-        params: CognitoIdentity.Types.GetIdInput|CognitoIdentity.Types.GetOpenIdTokenInput|STS.Types.AssumeRoleWithWebIdentityRequest;
-	}
+    /**
+     * Creates a new credentials object with optional configuration.
+     */
+    constructor(options: CognitoIdentityCredentials.CognitoIdentityOptions, clientConfig?: ConfigurationOptions);
+    /**
+     * Creates a new credentials object.
+     */
+    constructor(options?: CognitoIdentityCredentials.CognitoIdentityOptions);
+    /**
+     * Refreshes credentials using AWS.CognitoIdentity.getCredentialsForIdentity(), or AWS.STS.assumeRoleWithWebIdentity().
+     */
+    refresh(callback: (err: AWSError) => void): void;
+    /**
+     * Clears the cached Cognito ID associated with the currently configured identity pool ID.
+     */
+    clearCachedId(): void;
+    /**
+     * The raw data response from the call to AWS.CognitoIdentity.getCredentialsForIdentity(), or AWS.STS.assumeRoleWithWebIdentity().
+     */
+    data: CognitoIdentity.Types.GetCredentialsForIdentityResponse|STS.Types.AssumeRoleWithWebIdentityResponse;
+    /**
+     * The Cognito ID returned by the last call to AWS.CognitoIdentity.getOpenIdToken().
+     */
+    identityId: string;
+    /**
+     * The map of params passed to AWS.CognitoIdentity.getId(), AWS.CognitoIdentity.getOpenIdToken(), and AWS.STS.assumeRoleWithWebIdentity().
+     */
+    params: CognitoIdentity.Types.GetIdInput|CognitoIdentity.Types.GetOpenIdTokenInput|STS.Types.AssumeRoleWithWebIdentityRequest;
+}
+
+// Needed to expose interfaces on the class
+declare namespace CognitoIdentityCredentials {
+    export type CognitoIdentityCredentialsInputs = CognitoIdentity.GetIdInput|CognitoIdentity.GetCredentialsForIdentityInput|CognitoIdentity.GetOpenIdTokenInput|STS.AssumeRoleWithWebIdentityRequest;
+    export type CognitoIdentityOptions = CognitoIdentityCredentialsInputs & {LoginId?: string}
+}

lib/credentials/cognito_identity_credentials.js

@@ -102,18 +102,35 @@ AWS.CognitoIdentityCredentials = AWS.util.inherit(AWS.Credentials, {
    *     // and multiple users are signed in at once, used for caching
    *     LoginId: 'example@gmail.com'
    *
+   *   }, {
+   *      // optionally provide configuration to apply to the underlying AWS.CognitoIdentity service client
+   *      // if configuration is not provided, then configuration will be pulled from AWS.config
+   *
+   *      // region should match the region your identity pool is located in
+   *      region: 'us-east-1',
+   *
+   *      // specify timeout options
+   *      httpOptions: {
+   *        timeout: 100
+   *      }
    *   });
    * @see AWS.CognitoIdentity.getId
    * @see AWS.CognitoIdentity.getCredentialsForIdentity
    * @see AWS.STS.assumeRoleWithWebIdentity
    * @see AWS.CognitoIdentity.getOpenIdToken
+   * @see AWS.Config
+   * @note If a region is not provided in the global AWS.config, or
+   *   specified in the `clientConfig` to the CognitoIdentityCredentials
+   *   constructor, you may encounter a 'Missing credentials in config' error
+   *   when calling making a service call.
    */
-  constructor: function CognitoIdentityCredentials(params) {
+  constructor: function CognitoIdentityCredentials(params, clientConfig) {
     AWS.Credentials.call(this);
     this.expired = true;
     this.params = params;
     this.data = null;
     this._identityId = null;
+    this._clientConfig = AWS.util.copy(clientConfig || {});
     this.loadCachedId();
     var self = this;
     Object.defineProperty(this, 'identityId', {
@@ -296,10 +313,14 @@ AWS.CognitoIdentityCredentials = AWS.util.inherit(AWS.Credentials, {
    * @api private
    */
   createClients: function() {
+    var clientConfig = this._clientConfig;
     this.webIdentityCredentials = this.webIdentityCredentials ||
       new AWS.WebIdentityCredentials(this.params);
-    this.cognito = this.cognito ||
-      new CognitoIdentity({params: this.params});
+    if (!this.cognito) {
+      var cognitoConfig = AWS.util.merge({}, clientConfig);
+      cognitoConfig.params = this.params;
+      this.cognito = new CognitoIdentity(cognitoConfig);
+    }
     this.sts = this.sts || new STS();
   },
 

test/credentials.spec.coffee

@@ -896,6 +896,17 @@ describe 'AWS.CognitoIdentityCredentials', ->
       expect(creds.sts).to.eql(sts)
       expect(creds.webIdentityCredentials).to.eql(webIdentityCredentials)
 
+    it 'uses global config for cognito client if client congif ommitted', ->
+      creds.createClients();
+      expect(creds.cognito.config.region).to.equal(AWS.config.region);
+      expect(creds.cognito.config.httpOptions.timeout).to.equal(AWS.config.httpOptions.timeout);
+
+    it 'passes clientConfig to cognito client', ->
+      creds = new AWS.CognitoIdentityCredentials(initParams, {region: 'us-west-2', httpOptions: {timeout: 50}})
+      creds.createClients();
+      expect(creds.cognito.config.region).to.equal('us-west-2');
+      expect(creds.cognito.config.httpOptions.timeout).to.equal(50);
+
   describe 'refresh', ->
     beforeEach -> setupClients()
 

ts/cognitoidentitycredentials.ts

@@ -0,0 +1,36 @@
+import {CognitoIdentityCredentials} from '../lib/credentials/cognito_identity_credentials';
+
+const creds1 = new CognitoIdentityCredentials();
+const creds2 = new CognitoIdentityCredentials({
+    IdentityPoolId: 'fake'
+});
+const creds3: CognitoIdentityCredentials = new CognitoIdentityCredentials({
+    IdentityId: 'id'
+});
+
+const creds4: CognitoIdentityCredentials = new CognitoIdentityCredentials({
+    IdentityId: 'id',
+    RoleArn: 'arn'
+});
+
+const credOptions: CognitoIdentityCredentials.CognitoIdentityOptions = {
+    IdentityId: 'id',
+    Logins: {
+        'graph.facebook.com': 'FBTOKEN',
+        'www.amazon.com': 'AMAZONTOKEN',
+        'accounts.google.com': 'GOOGLETOKEN',
+        'api.twitter.com': 'TWITTERTOKEN',
+        'www.digits.com': 'DIGITSTOKEN'
+    },
+    LoginId: 'example@gmail.com'
+}
+
+const creds5: CognitoIdentityCredentials = new CognitoIdentityCredentials(credOptions);
+
+// test client config
+const creds6: CognitoIdentityCredentials = new CognitoIdentityCredentials(credOptions, {
+    httpOptions: {
+        timeout: 50
+    },
+    region: 'us-west-2'
+});