[Core HTTP] Bug Fix - TokenRefresher shouldn't be recreated for each request #10728
Conversation
| 'Tue, 18 Aug 2020 23:52:08 GMT' | ||
| ]); | ||
|
|
||
| nock('https://login.microsoftonline.com:443', {"encodedQueryParams":true}) |
There was a problem hiding this comment.
This deletion is an example of the request that was saved because the token refresher wasn't shared.
HarshaNalluru
requested review from
bterlson,
chradek,
daviwil,
jeremymeng,
willmtemple and
xirzec
as code owners
| // @public | ||
| export class AccessTokenRefresher { | ||
| constructor(credential: TokenCredential, scopes: string | string[], requiredMillisecondsBeforeNewRefresh?: number); | ||
| // (undocumented) |
There was a problem hiding this comment.
Thanks! Fixed!
I see more
I'll log an issue for this.
| @@ -100,7 +108,7 @@ export class BasicAuthenticationCredentials implements ServiceClientCredentials | |||
|
|
|||
| // @public | |||
| export class BearerTokenAuthenticationPolicy extends BaseRequestPolicy { | |||
| constructor(nextPolicy: RequestPolicy, options: RequestPolicyOptions, credential: TokenCredential, scopes: string | string[], tokenCache: AccessTokenCache); | |||
| constructor(nextPolicy: RequestPolicy, options: RequestPolicyOptions, tokenCache: AccessTokenCache, tokenRefresher: AccessTokenRefresher); | |||
There was a problem hiding this comment.
Would this be a breaking change?
There was a problem hiding this comment.
This might be fine because the libraries depend on BearerTokenAuthenticationPolicy indirectly through bearerTokenAuthenticationPolicy which is not being changed.
There was a problem hiding this comment.
Looks fine, might be worth mentioning this change in the CHANGELOG before the next release just in case anyone happens to be using it directly (which they shouldn't). @xirzec feel free to say otherwise, I don't feel strongly about it
…hub.com/HarshaNalluru/azure-sdk-for-js into harshan/recorder/issue/delayed-requests
sdk/core/core-http/CHANGELOG.md
Outdated
| - `BearerTokenAuthenticationPolicy` constructor signature has been updated to accommodate the token refresher appropriately. The signature for `bearerTokenAuthenticationPolicy` method doesn't change. | ||
| [PR 10728](https://github.com/Azure/azure-sdk-for-js/pull/10728) | ||
| Note: It is expected that the users depending on `BearerTokenAuthenticationPolicy` do so indirectly through `bearerTokenAuthenticationPolicy` method that is exported. |
There was a problem hiding this comment.
Sounds reasonable to me, thanks!
sdk/core/core-http/CHANGELOG.md
Outdated
| - `BearerTokenAuthenticationPolicy` constructor signature has been updated to accommodate the token refresher appropriately. The signature for `bearerTokenAuthenticationPolicy` method doesn't change. | ||
| [PR 10728](https://github.com/Azure/azure-sdk-for-js/pull/10728) | ||
| Note: It is expected that the users depending on `BearerTokenAuthenticationPolicy` do so indirectly through `bearerTokenAuthenticationPolicy` method that is exported. |
There was a problem hiding this comment.
This feels like a lot of context/details for a change to what is effectively an internal type.
| - `BearerTokenAuthenticationPolicy` constructor signature has been updated to accommodate the token refresher appropriately. The signature for `bearerTokenAuthenticationPolicy` method doesn't change. | |
| [PR 10728](https://github.com/Azure/azure-sdk-for-js/pull/10728) | |
| Note: It is expected that the users depending on `BearerTokenAuthenticationPolicy` do so indirectly through `bearerTokenAuthenticationPolicy` method that is exported. | |
| - Fixed a bug in `BearerTokenAuthenticationPolicy` where a helper class was being instantiated on each request. [PR 10728](https://github.com/Azure/azure-sdk-for-js/pull/10728) |
I think this is enough honestly. Nobody should have a reason to grab the per-instance class and mess with it. Alternatively we could call this out as 'BREAKING' but honestly BearerTokenAuthenticationPolicy should be private.
I don't really understand why we exported that type, since it's not used as the return type of bearerTokenAuthenticationPolicy -- other policy classes aren't exported e.g.
export { LogPolicyOptions, logPolicy } from "./policies/logPolicy";But some recent ones like DisableResponseDecompressionPolicy are, which just feels like a bug. Maybe this was done to make tests easier to write?
There was a problem hiding this comment.
I don't really understand why we exported that type, since it's not used as the return type of bearerTokenAuthenticationPolicy -- other policy classes aren't exported
Hmmm, they shouldn't have been exported.
But some recent ones like DisableResponseDecompressionPolicy are, which just feels like a bug.
Looks like KeepAlivePolicy is being exported too.
export { keepAlivePolicy, KeepAlivePolicy, KeepAliveOptions } from "./policies/keepAlivePolicy";
Maybe this was done to make tests easier to write?
We import the src code directly inside the tests, no need to export it through index.ts(or coreHttp.ts) just for the sake of tests.
There was a problem hiding this comment.
Opened a PR #10738 to un-export these classes.
Co-authored-by: Jeff Fisher <xirzec@xirzec.com>
|
This solves the problem and it's neatly done. Ship it! |
|
Summary of the investigation
History
I was trying to fix the CI for the schema-registry PR(#10602) which was failing because the recordings were not generated using the latest master. Upon digging deeper #10683, the failure was caused because the tests weren't recorded using the latest core-http(on master) which had a new change #10085 related to the token refreshing logic that made more requests to refresh the tokens that weren't saved in the older recordings.
Bug 1 (Core HTTP)
New requests mentioned above led to a discussion with @sadasant and upon investigating further, we realized that the tokens weren't cached which caused more requests. Daniel made a PR #10692 to fix the issue to update core-http with caching the tokens that would remove the unnecessary additional requests.
Bug 2 (Core HTTP)
After fixing Bug 1, we generated the recordings, played them back, and have observed one more issue where there was a refresh request that was happening after the test ends. #10694
Another question at this point is that the refresh request is supposed to ping after or at about 30s, why does it ping again after the test when it had just elapsed a couple of seconds(milliseconds if in playback)?
Upon investigating with Daniel to answer the above, the issue turned out to be that a new token refresher was being created for each of the requests that are made to the service.
This PR attempts to fix that by reusing the token refresher.
Many thanks to @sadasant for his help with investigating the issues.
Resolves #10694