/* * Copyright (c) Contributors to the Open 3D Engine Project. * For complete copyright and license terms please see the LICENSE at the root of this distribution. * * SPDX-License-Identifier: Apache-2.0 OR MIT * */ #pragma once #include <AzCore/EBus/EBus.h> #include <Authentication/AuthenticationTokens.h> namespace AWSClientAuth { //! Abstract class for authentication provider requests. class IAuthenticationProviderRequests { public: AZ_TYPE_INFO(IAuthenticationProviderRequests, "{4A8017C4-2742-48C4-AF07-1177CBF5E6E9}"); //! Parse the settings file for required settings for authentication providers. Instantiate and initialize authentication providers //! @param providerNames List of provider names to instantiate and initialize for Authentication. //! @return bool True: if all providers initialized successfully. False: If any provider fails initialization. virtual bool Initialize(const AZStd::vector<ProviderNameEnum>& providerNames) = 0; //! Checks if user is signed in. //! If access tokens are available and not expired. //! @param providerName Provider to check signed in for //! @return bool True if valid access token available, else False virtual bool IsSignedIn(const ProviderNameEnum& providerName) = 0; //! [Deprecated] Get cached tokens from last successful sign-in for the provider. //! To enhance security, only the refresh token is cached and will be returned by this function. //! If you need the access or ID tokens, all authentication tokens (access token, ID token and refresh token) //! can be retrieved by implementing custom handlers for AuthenticationProviderNotifications in your project code. //! @param providerName Provider to get authentication tokens. //! @return AuthenticationTokens tokens from successful authentication. virtual AuthenticationTokens GetAuthenticationTokens(const ProviderNameEnum& providerName) = 0; // Below methods have corresponding notifications for success and failures. //! Call sign in endpoint for provider password grant flow. //! @param providerName Provider to call sign in. //! @param username Username to use to for sign in. //! @param password Password to use to for sign in. virtual void PasswordGrantSingleFactorSignInAsync(const ProviderNameEnum& providerName, const AZStd::string& username, const AZStd::string& password) = 0; //! Call sign in endpoint for provider password grant multi factor authentication flow. //! @param providerName Provider to call MFA sign in. //! @param username Username to use for MFA sign in. //! @param password Password to use for MFA sign in. virtual void PasswordGrantMultiFactorSignInAsync(const ProviderNameEnum& providerName, const AZStd::string& username, const AZStd::string& password) = 0; //! Call confirm endpoint for provider password grant multi factor authentication flow . //! @param providerName Provider to call MFA confirm sign in. //! @param username Username to use for MFA confirm. //! @param confirmationCode Confirmation code (sent to email/text) to use for MFA confirm. virtual void PasswordGrantMultiFactorConfirmSignInAsync(const ProviderNameEnum& providerName, const AZStd::string& username, const AZStd::string& confirmationCode) = 0; //! Call code-pair endpoint for provider device grant flow. //! @param providerName Provider to call device sign in. virtual void DeviceCodeGrantSignInAsync(const ProviderNameEnum& providerName) = 0; //! Call tokens endpoint for provider device grant flow. //! @param providerName Provider to call device confirm sign in. virtual void DeviceCodeGrantConfirmSignInAsync(const ProviderNameEnum& providerName) = 0; //! Call refresh endpoint for provider refresh grant flow. //! @param providerName Provider to call refresh tokens. virtual void RefreshTokensAsync(const ProviderNameEnum& providerName) = 0; //! Call refresh token if token not valid. If token valid, fires corresponding event. //! @param providerName Provider to get access token for. //! events: OnRefreshTokensSuccess, OnRefreshTokensFail virtual void GetTokensWithRefreshAsync(const ProviderNameEnum& providerName) = 0; //! Signs user out. //! Clears all cached tokens. //! @param providerName Provider to sign out. //! @return bool True: Successfully sign out. virtual bool SignOut(const ProviderNameEnum& providerName) = 0; ////////////////////////////////////////////////////////////////////////// }; //! Authentication Request bus for different supported providers. class AuthenticationProviderRequests : public AZ::EBusTraits { public: ////////////////////////////////////////////////////////////////////////// // EBusTraits overrides using MutexType = AZ::NullMutex; static const AZ::EBusHandlerPolicy HandlerPolicy = AZ::EBusHandlerPolicy::Single; static const AZ::EBusAddressPolicy AddressPolicy = AZ::EBusAddressPolicy::Single; ////////////////////////////////////////////////////////////////////////// }; using AuthenticationProviderRequestBus = AZ::EBus<IAuthenticationProviderRequests, AuthenticationProviderRequests>; //! Notification bus for Authentication Request bus. class AuthenticationProviderNotifications : public AZ::EBusTraits { public: ////////////////////////////////////////////////////////////////////////// // EBusTraits overrides static const AZ::EBusHandlerPolicy HandlerPolicy = AZ::EBusHandlerPolicy::Multiple; static const AZ::EBusAddressPolicy AddressPolicy = AZ::EBusAddressPolicy::Single; ////////////////////////////////////////////////////////////////////////// ////////////////////////////ss////////////////////////////////////////////// // Notifications interface //! Event for PasswordGrantSingleFactorSignIn success. //! @param authenticationToken Tokens on successful sign in. virtual void OnPasswordGrantSingleFactorSignInSuccess(const AuthenticationTokens& authenticationToken) { AZ_UNUSED(authenticationToken); } //! Event for PasswordGrantSingleFactorSignIn fail. //! @param error Error message virtual void OnPasswordGrantSingleFactorSignInFail(const AZStd::string& error) { AZ_UNUSED(error); } //! Event for PasswordGrantMultiFactorSignIn success. //! Event use to notify user to take corresponding challenge action. virtual void OnPasswordGrantMultiFactorSignInSuccess() { } //! Event for PasswordGrantMultiFactorSignIn fail. //! @param error Error message virtual void OnPasswordGrantMultiFactorSignInFail(const AZStd::string& error) { AZ_UNUSED(error); } //! Event for PasswordGrantMultiFactorConfirm success. //! @param authenticationToken Tokens on successful sign in. virtual void OnPasswordGrantMultiFactorConfirmSignInSuccess(const AuthenticationTokens& authenticationToken) { AZ_UNUSED(authenticationToken); } //! Event for PasswordGrantMultiFactorConfirm fail. //! @param error Error message virtual void OnPasswordGrantMultiFactorConfirmSignInFail(const AZStd::string& error) { AZ_UNUSED(error); } //! Event for DeviceCodeGrantSignIn success. //! Event use to notify user to take open verification url and enter displayed code. //! @param userCode Unique code generated for user for the session. //! @param verificationUrl Verification URL to enter user code in after signing in for the provider. //! @param codeExpiresInSeconds Code expiry in seconds. virtual void OnDeviceCodeGrantSignInSuccess(const AZStd::string& userCode, const AZStd::string& verificationUrl, int codeExpiresInSeconds) { AZ_UNUSED(userCode); AZ_UNUSED(verificationUrl); AZ_UNUSED(codeExpiresInSeconds); } //! Event for DeviceCodeGrantSignIn fail. //! @param error Error message virtual void OnDeviceCodeGrantSignInFail(const AZStd::string& error) { AZ_UNUSED(error); } //! Event for DeviceCodeGrantConfirmSignIn success. //! @param authenticationToken Tokens on successful sign in.. virtual void OnDeviceCodeGrantConfirmSignInSuccess(const AuthenticationTokens& authenticationToken) { AZ_UNUSED(authenticationToken); } //! Event for DeviceCodeGrantConfirmSignIn fail. //! @param error Error message virtual void OnDeviceCodeGrantConfirmSignInFail(const AZStd::string& error) { AZ_UNUSED(error); } //! Event for RequestAccessTokenWithRefresh success. //! @param authenticationToken Tokens on successful sign in. virtual void OnRefreshTokensSuccess(const AuthenticationTokens& authenticationToken) { AZ_UNUSED(authenticationToken); } //! Event for RequestAccessTokenWithRefresh fail. //! @param error Error message virtual void OnRefreshTokensFail(const AZStd::string& error) { AZ_UNUSED(error); } //! Event for Sing out. //! @param providerName provider that signed out. virtual void OnSignOut(const ProviderNameEnum& provideName) { AZ_UNUSED(provideName); } ////////////////////////////////////////////////////////////////////////// }; using AuthenticationProviderNotificationBus = AZ::EBus<AuthenticationProviderNotifications>; } // namespace AWSClientAuth