AWS: Make AuthSession cache static (#7289)

nastra · danielcweeks · commit 4e2cdccd7453 · 2023-04-06T11:21:00.000-07:00
Signer instances can be fairly short-lived, meaning that the
`AuthSession` cache doesn't get a chance to remove an `AuthSession` from
the cache and thus call `AuthSession#stopRefreshing()`.
diff --git a/aws/src/main/java/org/apache/iceberg/aws/s3/signer/S3V4RestSignerClient.java b/aws/src/main/java/org/apache/iceberg/aws/s3/signer/S3V4RestSignerClient.java
@@ -80,6 +80,9 @@ public abstract class S3V4RestSignerClient
   @SuppressWarnings("immutables:incompat")
   private static volatile RESTClient httpClient;
 
+  @SuppressWarnings("immutables:incompat")
+  private static volatile Cache<String, AuthSession> authSessionCache;
+
   public abstract Map<String, String> properties();
 
   @Value.Default
@@ -135,24 +138,33 @@ ScheduledExecutorService tokenRefreshExecutor() {
     return tokenRefreshExecutor;
   }
 
-  @Value.Lazy
-  Cache<String, AuthSession> authSessionCache() {
-    long expirationIntervalMs =
-        PropertyUtil.propertyAsLong(
-            properties(),
-            CatalogProperties.AUTH_SESSION_TIMEOUT_MS,
-            CatalogProperties.AUTH_SESSION_TIMEOUT_MS_DEFAULT);
-
-    return Caffeine.newBuilder()
-        .expireAfterAccess(Duration.ofMillis(expirationIntervalMs))
-        .removalListener(
-            (RemovalListener<String, AuthSession>)
-                (id, auth, cause) -> {
-                  if (null != auth) {
-                    auth.stopRefreshing();
-                  }
-                })
-        .build();
+  private Cache<String, AuthSession> authSessionCache() {
+    if (null == authSessionCache) {
+      synchronized (S3V4RestSignerClient.class) {
+        if (null == authSessionCache) {
+          long expirationIntervalMs =
+              PropertyUtil.propertyAsLong(
+                  properties(),
+                  CatalogProperties.AUTH_SESSION_TIMEOUT_MS,
+                  CatalogProperties.AUTH_SESSION_TIMEOUT_MS_DEFAULT);
+
+          authSessionCache =
+              Caffeine.newBuilder()
+                  .expireAfterAccess(Duration.ofMillis(expirationIntervalMs))
+                  .removalListener(
+                      (RemovalListener<String, AuthSession>)
+                          (id, auth, cause) -> {
+                            if (null != auth) {
+                              LOG.trace("Stopping refresh for AuthSession");
+                              auth.stopRefreshing();
+                            }
+                          })
+                  .build();
+        }
+      }
+    }
+
+    return authSessionCache;
   }
 
   private RESTClient httpClient() {
