Add initializer API for headers of HTTP proxy CONNECT request

servicetalk-grpc-netty/src/test/java/io/servicetalk/grpc/netty/GrpcProxyTunnelTest.java

@@ -22,6 +22,7 @@
 import io.servicetalk.grpc.api.GrpcStatusCode;
 import io.servicetalk.grpc.api.GrpcStatusException;
 import io.servicetalk.http.api.HttpResponseStatus;
+import io.servicetalk.http.api.ProxyConfig;
 import io.servicetalk.http.api.ProxyConnectResponseException;
 import io.servicetalk.http.api.StreamingHttpConnectionFilter;
 import io.servicetalk.http.api.StreamingHttpRequest;
@@ -89,7 +90,7 @@ class GrpcProxyTunnelTest {
                 .listenAndAwait((Greeter.BlockingGreeterService) (ctx, request) ->
                         HelloReply.newBuilder().setMessage(GREETING_PREFIX + request.getName()).build());
         client = GrpcClients.forAddress(serverHostAndPort(serverContext))
-                .initializeHttp(httpBuilder -> httpBuilder.proxyAddress(proxyAddress)
+                .initializeHttp(httpBuilder -> httpBuilder.proxyConfig(ProxyConfig.of(proxyAddress))
                         .sslConfig(new ClientSslConfigBuilder(DefaultTestCerts::loadServerCAPem)
                                 .peerHost(serverPemHostname()).build())
                         .appendConnectionFilter(connection -> new StreamingHttpConnectionFilter(connection) {

servicetalk-http-api/src/main/java/io/servicetalk/http/api/DelegatingSingleAddressHttpClientBuilder.java

@@ -68,11 +68,18 @@ public String toString() {
     }
 
     @Override
+    @SuppressWarnings("deprecation")
     public SingleAddressHttpClientBuilder<U, R> proxyAddress(final U proxyAddress) {
         delegate = delegate.proxyAddress(proxyAddress);
         return this;
     }
 
+    @Override
+    public SingleAddressHttpClientBuilder<U, R> proxyConfig(final ProxyConfig<U> proxyConfig) {
+        delegate = delegate.proxyConfig(proxyConfig);
+        return this;
+    }
+
     @Override
     public <T> SingleAddressHttpClientBuilder<U, R> socketOption(final SocketOption<T> option, final T value) {
         delegate = delegate.socketOption(option, value);

servicetalk-http-api/src/main/java/io/servicetalk/http/api/HttpContextKeys.java

@@ -45,7 +45,7 @@ public final class HttpContextKeys {
      * <a href="https://developer.mozilla.org/en-US/docs/Web/HTTP/Proxy_servers_and_tunneling#http_tunneling">secure
      * HTTP proxy tunneling</a> and a clear text HTTP proxy, check presence of {@link ConnectionInfo#sslConfig()}.
      *
-     * @see SingleAddressHttpClientBuilder#proxyAddress(Object)
+     * @see SingleAddressHttpClientBuilder#proxyConfig(ProxyConfig)
      * @deprecated Use {@link TransportObserverConnectionFactoryFilter} to configure {@link TransportObserver} and then
      * listen {@link ConnectionObserver#onProxyConnect(Object)} callback to distinguish between a regular connection and
      * a connection to the secure HTTP proxy tunnel. For clear text HTTP proxies, consider installing a custom client

servicetalk-http-api/src/main/java/io/servicetalk/http/api/ProxyConfig.java

@@ -0,0 +1,68 @@
+/*
+ * Copyright © 2023 Apple Inc. and the ServiceTalk project authors
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *   http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+package io.servicetalk.http.api;
+
+import io.servicetalk.transport.api.ClientSslConfig;
+
+import java.util.function.Consumer;
+
+/**
+ * Configuration for a proxy.
+ *
+ * @param <A> the type of address
+ */
+public interface ProxyConfig<A> {
+
+    /**
+     * Address of the proxy.
+     * <p>
+     * Usually, this is an unresolved proxy address and its type must match the type of address before resolution used
+     * by {@link SingleAddressHttpClientBuilder}. However, if the client builder was created for a resolved address,
+     * this address must also be already resolved. Otherwise, a runtime exceptions will occur.
+     *
+     * @return address of the proxy
+     */
+    A address();
+
+    /**
+     * An initializer for {@link HttpHeaders} related to
+     * <a href="https://datatracker.ietf.org/doc/html/rfc9110#section-9.3.6">HTTP/1.1 CONNECT</a> request.
+     * <p>
+     * When this {@link ProxyConfig} is used for secure proxy tunnels (when
+     * {@link SingleAddressHttpClientBuilder#sslConfig(ClientSslConfig) ClientSslConfig} is configured) the tunnel is
+     * always initialized using {@code HTTP/1.1 CONNECT} request. This {@link Consumer} can be used to set custom
+     * {@link HttpHeaders} for that request, like {@link HttpHeaderNames#PROXY_AUTHORIZATION proxy-authorization},
+     * tracing, or any other header.
+     *
+     * @return An initializer for {@link HttpHeaders} related to
+     * <a href="https://datatracker.ietf.org/doc/html/rfc9110#section-9.3.6">HTTP/1.1 CONNECT</a> request
+     */
+    Consumer<HttpHeaders> connectRequestHeadersInitializer();
+
+    /**
+     * Returns a {@link ProxyConfig} for the specified {@code address}.
+     * <p>
+     * All other {@link ProxyConfig} options will use their default values applied by {@link ProxyConfigBuilder}.
+     *
+     * @param address Address of the proxy
+     * @param <A> the type of address
+     * @return a {@link ProxyConfig} for the specified {@code address}
+     * @see ProxyConfigBuilder
+     */
+    static <A> ProxyConfig<A> of(A address) {
+        return new ProxyConfigBuilder<>(address).build();
+    }
+}

servicetalk-http-api/src/main/java/io/servicetalk/http/api/ProxyConfigBuilder.java

@@ -0,0 +1,128 @@
+/*
+ * Copyright © 2023 Apple Inc. and the ServiceTalk project authors
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *   http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+package io.servicetalk.http.api;
+
+import java.util.function.Consumer;
+
+import static java.util.Objects.requireNonNull;
+
+/**
+ * Builder for {@link ProxyConfig}.
+ *
+ * @param <A> the type of address
+ */
+public final class ProxyConfigBuilder<A> {
+
+    private static final Consumer<HttpHeaders> NOOP_HEADERS_CONSUMER = new Consumer<HttpHeaders>() {
+        @Override
+        public void accept(final HttpHeaders headers) {
+        }
+
+        @Override
+        public String toString() {
+            return "NOOP";
+        }
+    };
+
+    private final A address;
+    private Consumer<HttpHeaders> connectRequestHeadersInitializer = NOOP_HEADERS_CONSUMER;
+
+    /**
+     * Creates a new instance.
+     *
+     * @param address Proxy address
+     * @see ProxyConfig#address()
+     */
+    public ProxyConfigBuilder(final A address) {
+        this.address = requireNonNull(address);
+    }
+
+    /**
+     * Sets an initializer for {@link HttpHeaders} related to
+     * <a href="https://datatracker.ietf.org/doc/html/rfc9110#section-9.3.6">HTTP/1.1 CONNECT</a> request.
+     *
+     * @param connectRequestHeadersInitializer {@link Consumer} that can be used to set custom {@link HttpHeaders} for
+     * {@code HTTP/1.1 CONNECT} request (auth, tracing, etc.)
+     * @return {@code this}
+     * @see ProxyConfig#connectRequestHeadersInitializer()
+     */
+    public ProxyConfigBuilder<A> connectRequestHeadersInitializer(
+            final Consumer<HttpHeaders> connectRequestHeadersInitializer) {
+        this.connectRequestHeadersInitializer = requireNonNull(connectRequestHeadersInitializer);
+        return this;
+    }
+
+    /**
+     * Builds a new {@link ProxyConfig}.
+     *
+     * @return a new {@link ProxyConfig}.
+     */
+    public ProxyConfig<A> build() {
+        return new DefaultProxyConfig<>(address, connectRequestHeadersInitializer);
+    }
+
+    private static final class DefaultProxyConfig<A> implements ProxyConfig<A> {
+
+        private final A address;
+        private final Consumer<HttpHeaders> connectRequestHeadersInitializer;
+
+        private DefaultProxyConfig(final A address, final Consumer<HttpHeaders> connectRequestHeadersInitializer) {
+            this.address = address;
+            this.connectRequestHeadersInitializer = connectRequestHeadersInitializer;
+        }
+
+        @Override
+        public A address() {
+            return address;
+        }
+
+        @Override
+        public Consumer<HttpHeaders> connectRequestHeadersInitializer() {
+            return connectRequestHeadersInitializer;
+        }
+
+        @Override
+        public boolean equals(final Object o) {
+            if (this == o) {
+                return true;
+            }
+            if (!(o instanceof DefaultProxyConfig)) {
+                return false;
+            }
+
+            final DefaultProxyConfig<?> that = (DefaultProxyConfig<?>) o;
+            if (!address.equals(that.address)) {
+                return false;
+            }
+            return connectRequestHeadersInitializer.equals(that.connectRequestHeadersInitializer);
+        }
+
+        @Override
+        public int hashCode() {
+            int result = address.hashCode();
+            result = 31 * result + connectRequestHeadersInitializer.hashCode();
+            return result;
+        }
+
+        @Override
+        public String toString() {
+            return getClass().getSimpleName() +
+                    "{address=" + address +
+                    ", connectRequestHeadersInitializer=" + connectRequestHeadersInitializer +
+                    '}';
+        }
+    }
+}

servicetalk-http-api/src/main/java/io/servicetalk/http/api/ProxyConnectException.java

@@ -21,7 +21,7 @@
  * An exception while processing
  * <a href="https://datatracker.ietf.org/doc/html/rfc9110#section-9.3.6">HTTP/1.1 CONNECT</a> request.
  *
- * @see SingleAddressHttpClientBuilder#proxyAddress(Object)
+ * @see SingleAddressHttpClientBuilder#proxyConfig(ProxyConfig)
  */
 public class ProxyConnectException extends IOException {
 

servicetalk-http-api/src/main/java/io/servicetalk/http/api/ProxyConnectResponseException.java

@@ -19,7 +19,7 @@
  * A subclass of {@link ProxyConnectException} that indicates an unexpected response status from a proxy received for
  * <a href="https://datatracker.ietf.org/doc/html/rfc9110#section-9.3.6">HTTP/1.1 CONNECT</a> request.
  *
- * @see SingleAddressHttpClientBuilder#proxyAddress(Object)
+ * @see SingleAddressHttpClientBuilder#proxyConfig(ProxyConfig)
  */
 public class ProxyConnectResponseException extends ProxyConnectException {
 

servicetalk-http-api/src/main/java/io/servicetalk/http/api/RedirectConfigBuilder.java

@@ -295,6 +295,11 @@ public RedirectConfigBuilder redirectRequestTransformer(final RedirectRequestTra
         return this;
     }
 
+    /**
+     * Builds a new {@link RedirectConfig}.
+     *
+     * @return a new {@link RedirectConfig}
+     */
     public RedirectConfig build() {
         return new DefaultRedirectConfig(maxRedirects,
                 allowedStatuses == null ? DEFAULT_ALLOWED_STATUSES : toSet(allowedStatuses),

servicetalk-http-api/src/main/java/io/servicetalk/http/api/SingleAddressHttpClientBuilder.java

@@ -48,7 +48,7 @@
  */
 public interface SingleAddressHttpClientBuilder<U, R> extends HttpClientBuilder<U, R, ServiceDiscovererEvent<R>> {
     /**
-     * Configure proxy to serve as an intermediary for requests.
+     * Configures a proxy to serve as an intermediary for requests.
      * <p>
      * If the client talks to a proxy over http (not https, {@link #sslConfig(ClientSslConfig) ClientSslConfig} is NOT
      * configured), it will rewrite the request-target to
@@ -65,10 +65,40 @@ public interface SingleAddressHttpClientBuilder<U, R> extends HttpClientBuilder<
      * @param proxyAddress Unresolved address of the proxy. When used with a builder created for a resolved address,
      * {@code proxyAddress} should also be already resolved – otherwise runtime exceptions may occur.
      * @return {@code this}.
+     * @deprecated Use {@link #proxyConfig(ProxyConfig)} with {@link ProxyConfig#of(Object)}.
      */
-    default SingleAddressHttpClientBuilder<U, R> proxyAddress(U proxyAddress) { // FIXME: 0.43 - remove default impl
-        throw new UnsupportedOperationException("Setting proxy address is not yet supported by "
-                + getClass().getName());
+    // FIXME: 0.43 - remove deprecated method
+    @Deprecated
+    @SuppressWarnings("DeprecatedIsStillUsed")
+    default SingleAddressHttpClientBuilder<U, R> proxyAddress(U proxyAddress) {
+        proxyConfig(new ProxyConfigBuilder<>(proxyAddress).build());
+        return this;
+    }
+
+    /**
+     * Configures a proxy to serve as an intermediary for requests.
+     * <p>
+     * If the client talks to a proxy over http (not https, {@link #sslConfig(ClientSslConfig) ClientSslConfig} is NOT
+     * configured), it will rewrite the request-target to
+     * <a href="https://tools.ietf.org/html/rfc7230#section-5.3.2">absolute-form</a>, as specified by the RFC.
+     * <p>
+     * For secure proxy tunnels (when {@link #sslConfig(ClientSslConfig) ClientSslConfig} is configured) the tunnel is
+     * always initialized using
+     * <a href="https://datatracker.ietf.org/doc/html/rfc9110#section-9.3.6">HTTP/1.1 CONNECT</a> request. The actual
+     * protocol will be negotiated via <a href="https://tools.ietf.org/html/rfc7301">ALPN extension</a> of TLS protocol,
+     * taking into account HTTP protocols configured via {@link #protocols(HttpProtocolConfig...)} method. In case of
+     * any error during {@code CONNECT} process, {@link ProxyConnectException} or {@link ProxyConnectResponseException}
+     * will be thrown when a request attempt is made through the constructed client instance.
+     *
+     * @param proxyConfig Configuration for a proxy. When used with a builder created for a resolved address,
+     * {@link ProxyConfig#address()} must also be already resolved – otherwise runtime exceptions will occur.
+     * @return {@code this}.
+     * @see ProxyConfig#of(Object)
+     * @see ProxyConfigBuilder
+     */
+    // FIXME: 0.43 - consider removing default impl
+    default SingleAddressHttpClientBuilder<U, R> proxyConfig(ProxyConfig<U> proxyConfig) {
+        throw new UnsupportedOperationException("Setting proxy config is not yet supported by " + getClass().getName());
     }
 
     /**

servicetalk-http-netty/src/main/java/io/servicetalk/http/netty/DefaultSingleAddressHttpClientBuilder.java

@@ -40,6 +40,7 @@
 import io.servicetalk.http.api.HttpLoadBalancerFactory;
 import io.servicetalk.http.api.HttpProtocolConfig;
 import io.servicetalk.http.api.HttpProtocolVersion;
+import io.servicetalk.http.api.ProxyConfig;
 import io.servicetalk.http.api.SingleAddressHttpClientBuilder;
 import io.servicetalk.http.api.StreamingHttpClient;
 import io.servicetalk.http.api.StreamingHttpClientFilter;
@@ -242,10 +243,10 @@ public HttpExecutionStrategy executionStrategy() {
                     ctx.builder.strategyComputation.buildForConnectionFactory();
 
             if (roConfig.hasProxy() && sslContext != null) {
-                assert roConfig.connectAddress() != null;
+                assert roConfig.proxyConfig() != null;
                 @SuppressWarnings("deprecation")
                 final ConnectionFactoryFilter<R, FilterableStreamingHttpConnection> proxy =
-                        new ProxyConnectConnectionFactoryFilter<>(roConfig.connectAddress(), connectionFactoryStrategy);
+                        new ProxyConnectConnectionFactoryFilter<>(roConfig.proxyConfig().address());
                 assert !proxy.requiredOffloads().hasOffloads();
                 connectionFactoryFilter = appendConnectionFilter(proxy, connectionFactoryFilter);
             }
@@ -446,9 +447,9 @@ private AbsoluteAddressHttpRequesterFilter proxyAbsoluteAddressFilterFactory() {
     }
 
     @Override
-    public DefaultSingleAddressHttpClientBuilder<U, R> proxyAddress(final U proxyAddress) {
-        this.proxyAddress = requireNonNull(proxyAddress);
-        config.connectAddress(hostToCharSequenceFunction.apply(address));
+    public DefaultSingleAddressHttpClientBuilder<U, R> proxyConfig(final ProxyConfig<U> proxyConfig) {
+        this.proxyAddress = requireNonNull(proxyConfig.address());
+        config.proxyConfig(hostToCharSequenceFunction.apply(address), proxyConfig);
         return this;
     }