Implement connector config dependency for OAuth consent URL

airbyte-integrations/connector-templates/source-python-http-api/integration_tests/acceptance.py

@@ -10,7 +10,7 @@
 
 @pytest.fixture(scope="session", autouse=True)
 def connector_setup():
-    """ This fixture is a placeholder for external resources that acceptance test might require."""
+    """This fixture is a placeholder for external resources that acceptance test might require."""
     # TODO: setup test dependencies if needed. otherwise remove the TODO comments
     yield
     # TODO: clean up test dependencies

airbyte-integrations/connector-templates/source-python/integration_tests/acceptance.py

@@ -10,7 +10,7 @@
 
 @pytest.fixture(scope="session", autouse=True)
 def connector_setup():
-    """ This fixture is a placeholder for external resources that acceptance test might require."""
+    """This fixture is a placeholder for external resources that acceptance test might require."""
     # TODO: setup test dependencies
     yield
     # TODO: clean up test dependencies

airbyte-integrations/connector-templates/source-singer/integration_tests/acceptance.py

@@ -10,7 +10,7 @@
 
 @pytest.fixture(scope="session", autouse=True)
 def connector_setup():
-    """ This fixture is a placeholder for external resources that acceptance test might require."""
+    """This fixture is a placeholder for external resources that acceptance test might require."""
     # TODO: setup test dependencies
     yield
     # TODO: clean up test dependencies

airbyte-oauth/src/main/java/io/airbyte/oauth/BaseOAuth2Flow.java

@@ -12,6 +12,8 @@
 import io.airbyte.config.persistence.ConfigNotFoundException;
 import io.airbyte.config.persistence.ConfigRepository;
 import io.airbyte.protocol.models.OAuthConfigSpecification;
+import io.airbyte.validation.json.JsonSchemaValidator;
+import io.airbyte.validation.json.JsonValidationException;
 import java.io.IOException;
 import java.lang.reflect.Type;
 import java.net.URI;
@@ -75,25 +77,61 @@ public BaseOAuth2Flow(final ConfigRepository configRepository,
   }
 
   @Override
+  @Deprecated
   public String getSourceConsentUrl(final UUID workspaceId, final UUID sourceDefinitionId, final String redirectUrl)
       throws IOException, ConfigNotFoundException {
     final JsonNode oAuthParamConfig = getSourceOAuthParamConfig(workspaceId, sourceDefinitionId);
-    return formatConsentUrl(sourceDefinitionId, getClientIdUnsafe(oAuthParamConfig), redirectUrl);
+    return formatConsentUrl(sourceDefinitionId, getClientIdUnsafe(oAuthParamConfig), redirectUrl, Jsons.emptyObject());
+  }
+
+  @Override
+  public String getSourceConsentUrl(final UUID workspaceId,
+                                    final UUID sourceDefinitionId,
+                                    final String redirectUrl,
+                                    final JsonNode inputOAuthConfiguration,
+                                    final OAuthConfigSpecification oAuthConfigSpecification)
+      throws IOException, ConfigNotFoundException, JsonValidationException {
+    validateInputOAuthConfiguration(oAuthConfigSpecification, inputOAuthConfiguration);
+    final JsonNode oAuthParamConfig = getSourceOAuthParamConfig(workspaceId, sourceDefinitionId);
+    return formatConsentUrl(sourceDefinitionId, getClientIdUnsafe(oAuthParamConfig), redirectUrl, inputOAuthConfiguration);
   }
 
   @Override
+  @Deprecated
   public String getDestinationConsentUrl(final UUID workspaceId, final UUID destinationDefinitionId, final String redirectUrl)
       throws IOException, ConfigNotFoundException {
     final JsonNode oAuthParamConfig = getDestinationOAuthParamConfig(workspaceId, destinationDefinitionId);
-    return formatConsentUrl(destinationDefinitionId, getClientIdUnsafe(oAuthParamConfig), redirectUrl);
+    return formatConsentUrl(destinationDefinitionId, getClientIdUnsafe(oAuthParamConfig), redirectUrl, Jsons.emptyObject());
+  }
+
+  @Override
+  public String getDestinationConsentUrl(final UUID workspaceId,
+                                         final UUID destinationDefinitionId,
+                                         final String redirectUrl,
+                                         final JsonNode inputOAuthConfiguration,
+                                         final OAuthConfigSpecification oAuthConfigSpecification)
+      throws IOException, ConfigNotFoundException, JsonValidationException {
+    validateInputOAuthConfiguration(oAuthConfigSpecification, inputOAuthConfiguration);
+    final JsonNode oAuthParamConfig = getDestinationOAuthParamConfig(workspaceId, destinationDefinitionId);
+    return formatConsentUrl(destinationDefinitionId, getClientIdUnsafe(oAuthParamConfig), redirectUrl, inputOAuthConfiguration);
   }
 
   /**
    * Depending on the OAuth flow implementation, the URL to grant user's consent may differ,
    * especially in the query parameters to be provided. This function should generate such consent URL
    * accordingly.
+   *
+   * @param definitionId The configured definition ID of this client
+   * @param clientId The configured client ID
+   * @param redirectUrl the redirect URL
+   * @param inputOAuthConfiguration any configuration property from connector necessary for this OAuth
+   *        Flow
    */
-  protected abstract String formatConsentUrl(UUID definitionId, String clientId, String redirectUrl) throws IOException;
+  protected abstract String formatConsentUrl(final UUID definitionId,
+                                             final String clientId,
+                                             final String redirectUrl,
+                                             final JsonNode inputOAuthConfiguration)
+      throws IOException;
 
   private static String generateRandomState() {
     return RandomStringUtils.randomAlphanumeric(7);
@@ -151,7 +189,8 @@ public Map<String, Object> completeSourceOAuth(final UUID workspaceId,
                                                  final String redirectUrl,
                                                  final JsonNode inputOAuthConfiguration,
                                                  final OAuthConfigSpecification oAuthConfigSpecification)
-      throws IOException, ConfigNotFoundException {
+      throws IOException, ConfigNotFoundException, JsonValidationException {
+    validateInputOAuthConfiguration(oAuthConfigSpecification, inputOAuthConfiguration);
     final JsonNode oAuthParamConfig = getDestinationOAuthParamConfig(workspaceId, sourceDefinitionId);
     return formatOAuthOutput(
         oAuthParamConfig,
@@ -171,7 +210,8 @@ public Map<String, Object> completeDestinationOAuth(final UUID workspaceId,
                                                       final String redirectUrl,
                                                       final JsonNode inputOAuthConfiguration,
                                                       final OAuthConfigSpecification oAuthConfigSpecification)
-      throws IOException, ConfigNotFoundException {
+      throws IOException, ConfigNotFoundException, JsonValidationException {
+    validateInputOAuthConfiguration(oAuthConfigSpecification, inputOAuthConfiguration);
     final JsonNode oAuthParamConfig = getDestinationOAuthParamConfig(workspaceId, destinationDefinitionId);
     return formatOAuthOutput(
         oAuthParamConfig,
@@ -260,6 +300,14 @@ public List<String> getDefaultOAuthOutputPath() {
     return List.of("credentials");
   }
 
+  private static void validateInputOAuthConfiguration(final OAuthConfigSpecification oauthConfigSpecification, final JsonNode inputOAuthConfiguration)
+      throws JsonValidationException {
+    if (oauthConfigSpecification.getOauthUserInputFromConnectorConfigSpecification() != null) {
+      final JsonSchemaValidator validator = new JsonSchemaValidator();
+      validator.ensure(oauthConfigSpecification.getOauthUserInputFromConnectorConfigSpecification(), inputOAuthConfiguration);
+    }
+  }
+
   private static String urlEncode(final String s) {
     try {
       return URLEncoder.encode(s, StandardCharsets.UTF_8);

airbyte-oauth/src/main/java/io/airbyte/oauth/BaseOAuthFlow.java

@@ -8,12 +8,14 @@
 import com.google.common.collect.ImmutableMap;
 import com.google.common.collect.ImmutableMap.Builder;
 import io.airbyte.commons.json.Jsons;
+import io.airbyte.commons.map.MoreMaps;
 import io.airbyte.config.ConfigSchema;
 import io.airbyte.config.DestinationOAuthParameter;
 import io.airbyte.config.SourceOAuthParameter;
 import io.airbyte.config.persistence.ConfigNotFoundException;
 import io.airbyte.config.persistence.ConfigRepository;
 import io.airbyte.protocol.models.OAuthConfigSpecification;
+import io.airbyte.validation.json.JsonSchemaValidator;
 import io.airbyte.validation.json.JsonValidationException;
 import java.io.IOException;
 import java.util.HashMap;
@@ -124,21 +126,29 @@ protected Map<String, Object> formatOAuthOutput(final JsonNode oAuthParamConfig,
    */
   protected Map<String, Object> formatOAuthOutput(final JsonNode oAuthParamConfig,
                                                   final Map<String, Object> completeOAuthFlow,
-                                                  final OAuthConfigSpecification oAuthConfigSpecification) {
-    final Builder<String, Object> outputs = ImmutableMap.builder();
-    // inject masked params outputs
+                                                  final OAuthConfigSpecification oAuthConfigSpecification)
+      throws JsonValidationException {
+    final JsonSchemaValidator validator = new JsonSchemaValidator();
+
+    final Builder<String, Object> oAuthServerOutputBuilder = ImmutableMap.builder();
     for (final String key : Jsons.keys(oAuthParamConfig)) {
       if (oAuthConfigSpecification.getCompleteOauthServerOutputSpecification().has(key)) {
-        outputs.put(key, MoreOAuthParameters.SECRET_MASK);
+        oAuthServerOutputBuilder.put(key, MoreOAuthParameters.SECRET_MASK);
       }
     }
-    // collect oauth result outputs
+    final Map<String, Object> oAuthServerOutputs = oAuthServerOutputBuilder.build();
+    validator.ensure(oAuthConfigSpecification.getCompleteOauthServerOutputSpecification(), Jsons.jsonNode(oAuthServerOutputs));
+
+    final Builder<String, Object> oAuthBuilder = ImmutableMap.builder();
     for (final String key : completeOAuthFlow.keySet()) {
       if (oAuthConfigSpecification.getCompleteOauthOutputSpecification().has(key)) {
-        outputs.put(key, completeOAuthFlow.get(key));
+        oAuthBuilder.put(key, completeOAuthFlow.get(key));
       }
     }
-    return outputs.build();
+    final Map<String, Object> oAuthOutputs = oAuthBuilder.build();
+    validator.ensure(oAuthConfigSpecification.getCompleteOauthOutputSpecification(), Jsons.jsonNode(oAuthOutputs));
+
+    return MoreMaps.merge(oAuthServerOutputs, oAuthOutputs);
   }
 
   /**

airbyte-oauth/src/main/java/io/airbyte/oauth/OAuthFlowImplementation.java

@@ -7,16 +7,33 @@
 import com.fasterxml.jackson.databind.JsonNode;
 import io.airbyte.config.persistence.ConfigNotFoundException;
 import io.airbyte.protocol.models.OAuthConfigSpecification;
+import io.airbyte.validation.json.JsonValidationException;
 import java.io.IOException;
 import java.util.Map;
 import java.util.UUID;
 
 public interface OAuthFlowImplementation {
 
+  @Deprecated
   String getSourceConsentUrl(UUID workspaceId, UUID sourceDefinitionId, String redirectUrl) throws IOException, ConfigNotFoundException;
 
+  String getSourceConsentUrl(UUID workspaceId,
+                             UUID sourceDefinitionId,
+                             String redirectUrl,
+                             JsonNode inputOAuthConfiguration,
+                             OAuthConfigSpecification oauthConfigSpecification)
+      throws IOException, ConfigNotFoundException, JsonValidationException;
+
+  @Deprecated
   String getDestinationConsentUrl(UUID workspaceId, UUID destinationDefinitionId, String redirectUrl) throws IOException, ConfigNotFoundException;
 
+  String getDestinationConsentUrl(UUID workspaceId,
+                                  UUID destinationDefinitionId,
+                                  String redirectUrl,
+                                  JsonNode inputOAuthConfiguration,
+                                  OAuthConfigSpecification oauthConfigSpecification)
+      throws IOException, ConfigNotFoundException, JsonValidationException;
+
   @Deprecated
   Map<String, Object> completeSourceOAuth(UUID workspaceId, UUID sourceDefinitionId, Map<String, Object> queryParams, String redirectUrl)
       throws IOException, ConfigNotFoundException;
@@ -27,7 +44,7 @@ Map<String, Object> completeSourceOAuth(UUID workspaceId,
                                           String redirectUrl,
                                           JsonNode inputOAuthConfiguration,
                                           OAuthConfigSpecification oauthConfigSpecification)
-      throws IOException, ConfigNotFoundException;
+      throws IOException, ConfigNotFoundException, JsonValidationException;
 
   @Deprecated
   Map<String, Object> completeDestinationOAuth(UUID workspaceId, UUID destinationDefinitionId, Map<String, Object> queryParams, String redirectUrl)
@@ -39,6 +56,6 @@ Map<String, Object> completeDestinationOAuth(UUID workspaceId,
                                                String redirectUrl,
                                                JsonNode inputOAuthConfiguration,
                                                OAuthConfigSpecification oAuthConfigSpecification)
-      throws IOException, ConfigNotFoundException;
+      throws IOException, ConfigNotFoundException, JsonValidationException;
 
 }

airbyte-oauth/src/main/java/io/airbyte/oauth/flows/AsanaOAuthFlow.java

@@ -4,6 +4,7 @@
 
 package io.airbyte.oauth.flows;
 
+import com.fasterxml.jackson.databind.JsonNode;
 import com.google.common.annotations.VisibleForTesting;
 import com.google.common.collect.ImmutableMap;
 import io.airbyte.config.persistence.ConfigRepository;
@@ -34,7 +35,11 @@ public AsanaOAuthFlow(final ConfigRepository configRepository, final HttpClient
   }
 
   @Override
-  protected String formatConsentUrl(final UUID definitionId, final String clientId, final String redirectUrl) throws IOException {
+  protected String formatConsentUrl(final UUID definitionId,
+                                    final String clientId,
+                                    final String redirectUrl,
+                                    final JsonNode inputOAuthConfiguration)
+      throws IOException {
     try {
       return new URIBuilder(AUTHORIZE_URL)
           .addParameter("client_id", clientId)

airbyte-oauth/src/main/java/io/airbyte/oauth/flows/GithubOAuthFlow.java

@@ -35,7 +35,11 @@ public GithubOAuthFlow(final ConfigRepository configRepository, final HttpClient
   }
 
   @Override
-  protected String formatConsentUrl(final UUID definitionId, final String clientId, final String redirectUrl) throws IOException {
+  protected String formatConsentUrl(final UUID definitionId,
+                                    final String clientId,
+                                    final String redirectUrl,
+                                    final JsonNode inputOAuthConfiguration)
+      throws IOException {
     try {
       // No scope means read-only access to public information
       // https://docs.github.com/en/developers/apps/building-oauth-apps/scopes-for-oauth-apps#available-scopes

airbyte-oauth/src/main/java/io/airbyte/oauth/flows/HubspotOAuthFlow.java

@@ -4,6 +4,7 @@
 
 package io.airbyte.oauth.flows;
 
+import com.fasterxml.jackson.databind.JsonNode;
 import com.google.common.collect.ImmutableMap;
 import io.airbyte.config.persistence.ConfigRepository;
 import io.airbyte.oauth.BaseOAuth2Flow;
@@ -27,17 +28,12 @@ public HubspotOAuthFlow(final ConfigRepository configRepository, final HttpClien
     super(configRepository, httpClient, stateSupplier, TOKEN_REQUEST_CONTENT_TYPE.JSON);
   }
 
-  /**
-   * Depending on the OAuth flow implementation, the URL to grant user's consent may differ,
-   * especially in the query parameters to be provided. This function should generate such consent URL
-   * accordingly.
-   *
-   * @param definitionId The configured definition ID of this client
-   * @param clientId The configured client ID
-   * @param redirectUrl the redirect URL
-   */
   @Override
-  protected String formatConsentUrl(final UUID definitionId, final String clientId, final String redirectUrl) throws IOException {
+  protected String formatConsentUrl(final UUID definitionId,
+                                    final String clientId,
+                                    final String redirectUrl,
+                                    final JsonNode inputOAuthConfiguration)
+      throws IOException {
     try {
       return new URIBuilder(AUTHORIZE_URL)
           .addParameter("client_id", clientId)

airbyte-oauth/src/main/java/io/airbyte/oauth/flows/IntercomOAuthFlow.java

@@ -33,7 +33,11 @@ public IntercomOAuthFlow(final ConfigRepository configRepository, final HttpClie
   }
 
   @Override
-  protected String formatConsentUrl(final UUID definitionId, final String clientId, final String redirectUrl) throws IOException {
+  protected String formatConsentUrl(final UUID definitionId,
+                                    final String clientId,
+                                    final String redirectUrl,
+                                    final JsonNode inputOAuthConfiguration)
+      throws IOException {
     try {
       return new URIBuilder(AUTHORIZE_URL)
           .addParameter("client_id", clientId)

airbyte-oauth/src/main/java/io/airbyte/oauth/flows/QuickbooksOAuthFlow.java

@@ -4,6 +4,7 @@
 
 package io.airbyte.oauth.flows;
 
+import com.fasterxml.jackson.databind.JsonNode;
 import com.google.common.annotations.VisibleForTesting;
 import com.google.common.collect.ImmutableMap;
 import io.airbyte.config.persistence.ConfigRepository;
@@ -36,7 +37,11 @@ public String getScopes() {
   }
 
   @Override
-  protected String formatConsentUrl(final UUID definitionId, final String clientId, final String redirectUrl) throws IOException {
+  protected String formatConsentUrl(final UUID definitionId,
+                                    final String clientId,
+                                    final String redirectUrl,
+                                    final JsonNode inputOAuthConfiguration)
+      throws IOException {
     try {
 
       return (new URIBuilder(CONSENT_URL)

airbyte-oauth/src/main/java/io/airbyte/oauth/flows/SalesforceOAuthFlow.java

@@ -4,6 +4,7 @@
 
 package io.airbyte.oauth.flows;
 
+import com.fasterxml.jackson.databind.JsonNode;
 import com.google.common.annotations.VisibleForTesting;
 import com.google.common.collect.ImmutableMap;
 import io.airbyte.config.persistence.ConfigRepository;
@@ -38,7 +39,11 @@ public SalesforceOAuthFlow(final ConfigRepository configRepository, final HttpCl
   }
 
   @Override
-  protected String formatConsentUrl(final UUID definitionId, final String clientId, final String redirectUrl) throws IOException {
+  protected String formatConsentUrl(final UUID definitionId,
+                                    final String clientId,
+                                    final String redirectUrl,
+                                    final JsonNode inputOAuthConfiguration)
+      throws IOException {
     try {
       return new URIBuilder(AUTHORIZE_URL)
           .addParameter("client_id", clientId)

airbyte-oauth/src/main/java/io/airbyte/oauth/flows/SlackOAuthFlow.java

@@ -4,6 +4,7 @@
 
 package io.airbyte.oauth.flows;
 
+import com.fasterxml.jackson.databind.JsonNode;
 import com.google.common.annotations.VisibleForTesting;
 import io.airbyte.config.persistence.ConfigRepository;
 import io.airbyte.oauth.BaseOAuth2Flow;
@@ -34,7 +35,11 @@ public SlackOAuthFlow(final ConfigRepository configRepository, final HttpClient
    * accordingly.
    */
   @Override
-  protected String formatConsentUrl(final UUID definitionId, final String clientId, final String redirectUrl) throws IOException {
+  protected String formatConsentUrl(final UUID definitionId,
+                                    final String clientId,
+                                    final String redirectUrl,
+                                    final JsonNode inputOAuthConfiguration)
+      throws IOException {
     try {
       return new URIBuilder(SLACK_CONSENT_URL_BASE)
           .addParameter("client_id", clientId)