From 2bc5767fbf5f3ce53db54d02b8e3376043a528e5 Mon Sep 17 00:00:00 2001
From: Bilal Al-Shahwany <bilal.al-shahwany@harness.io>
Date: Tue, 24 Jun 2025 13:06:12 -0700
Subject: [PATCH 01/18] Updated SplitClientConfig

---
 .../io/split/client/SplitClientConfig.java    | 73 +++++++++++++++-
 .../io/split/client/dtos/ProxyMTLSAuth.java   | 41 +++++++++
 .../split/client/SplitClientConfigTest.java   | 83 +++++++++++++++++++
 3 files changed, 196 insertions(+), 1 deletion(-)
 create mode 100644 client/src/main/java/io/split/client/dtos/ProxyMTLSAuth.java

diff --git a/client/src/main/java/io/split/client/SplitClientConfig.java b/client/src/main/java/io/split/client/SplitClientConfig.java
index fd312c3b..f521cd33 100644
--- a/client/src/main/java/io/split/client/SplitClientConfig.java
+++ b/client/src/main/java/io/split/client/SplitClientConfig.java
@@ -1,5 +1,6 @@
 package io.split.client;
 
+import io.split.client.dtos.ProxyMTLSAuth;
 import io.split.client.impressions.ImpressionListener;
 import io.split.client.impressions.ImpressionsManager;
 import io.split.client.utils.FileTypeEnum;
@@ -85,6 +86,8 @@ public class SplitClientConfig {
     private final HttpHost _proxy;
     private final String _proxyUsername;
     private final String _proxyPassword;
+    private final String _proxyToken;
+    private final ProxyMTLSAuth _proxyMtlsAuth;
 
     // To be set during startup
     public static String splitSdkVersion;
@@ -118,6 +121,8 @@ private SplitClientConfig(String endpoint,
                               HttpHost proxy,
                               String proxyUsername,
                               String proxyPassword,
+                              String proxyToken,
+                              ProxyMTLSAuth proxyMtlsAuth,
                               int eventsQueueSize,
                               long eventSendIntervalInMillis,
                               int maxStringLength,
@@ -171,6 +176,8 @@ private SplitClientConfig(String endpoint,
         _proxy = proxy;
         _proxyUsername = proxyUsername;
         _proxyPassword = proxyPassword;
+        _proxyToken = proxyToken;
+        _proxyMtlsAuth = proxyMtlsAuth;
         _eventsQueueSize = eventsQueueSize;
         _eventSendIntervalInMillis = eventSendIntervalInMillis;
         _maxStringLength = maxStringLength;
@@ -302,6 +309,14 @@ public String proxyPassword() {
         return _proxyPassword;
     }
 
+    public String proxyToken() {
+        return _proxyToken;
+    }
+
+    public ProxyMTLSAuth proxyMTLSAuth() {
+        return _proxyMtlsAuth;
+    }
+
     public long eventSendIntervalInMillis() {
         return _eventSendIntervalInMillis;
     }
@@ -417,8 +432,8 @@ public boolean isSdkEndpointOverridden() {
     }
 
     public CustomHttpModule alternativeHTTPModule() { return _alternativeHTTPModule; }
-    public static final class Builder {
 
+    public static final class Builder {
         private String _endpoint = SDK_ENDPOINT;
         private boolean _endpointSet = false;
         private String _eventsEndpoint = EVENTS_ENDPOINT;
@@ -442,6 +457,8 @@ public static final class Builder {
         private int _proxyPort = -1;
         private String _proxyUsername;
         private String _proxyPassword;
+        private String _proxyToken;
+        private ProxyMTLSAuth _proxyMtlsAuth;
         private int _eventsQueueSize = 500;
         private long _eventSendIntervalInMillis = 30 * (long)1000;
         private int _maxStringLength = 250;
@@ -776,6 +793,28 @@ public Builder proxyPassword(String proxyPassword) {
             return this;
         }
 
+        /**
+         * Set the token for authentication against the proxy (if proxy settings are enabled). (Optional).
+         *
+         * @param proxyToken
+         * @return this builder
+         */
+        public Builder proxyToken(String proxyToken) {
+            _proxyToken = proxyToken;
+            return this;
+        }
+
+        /**
+         * Set the mtls authentication against the proxy (if proxy settings are enabled). (Optional).
+         *
+         * @param proxyMtlsAuth
+         * @return this builder
+         */
+        public Builder proxyMtlsAuth(ProxyMTLSAuth proxyMtlsAuth) {
+            _proxyMtlsAuth = proxyMtlsAuth;
+            return this;
+        }
+
         /**
          * Disables running destroy() on shutdown by default.
          *
@@ -1096,6 +1135,34 @@ private void verifyAlternativeClient() {
             }
         }
 
+        private void verifyProxy() {
+            if (_proxyPort == -1) {
+                return;
+            }
+
+            if (_proxyUsername == null && _proxyToken == null && _proxyMtlsAuth == null) {
+                return;
+            }
+
+            if (_proxyUsername != null && _proxyToken != null) {
+                throw new IllegalArgumentException("Proxy user and Proxy token params are updated, set only one param.");
+            }
+
+            if (_proxyUsername != null && _proxyMtlsAuth != null) {
+                throw new IllegalArgumentException("Proxy user and Proxy mTLS params are updated, set only one param.");
+            }
+
+            if (_proxyToken != null && _proxyMtlsAuth != null) {
+                throw new IllegalArgumentException("Proxy token and Proxy mTLS params are updated, set only one param.");
+            }
+
+            if (_proxyMtlsAuth != null) {
+                if (_proxyMtlsAuth.getP12File() == null || _proxyMtlsAuth.getP12FilePassKey() == null) {
+                    throw new IllegalArgumentException("Proxy mTLS must have p12 file path and name, and pass phrase.");
+                }
+            }
+        }
+
         public SplitClientConfig build() {
 
             verifyRates();
@@ -1108,6 +1175,8 @@ public SplitClientConfig build() {
 
             verifyAlternativeClient();
 
+            verifyProxy();
+
             if (_numThreadsForSegmentFetch <= 0) {
                 throw new IllegalArgumentException("Number of threads for fetching segments MUST be greater than zero");
             }
@@ -1133,6 +1202,8 @@ public SplitClientConfig build() {
                     proxy(),
                     _proxyUsername,
                     _proxyPassword,
+                    _proxyToken,
+                    _proxyMtlsAuth,
                     _eventsQueueSize,
                     _eventSendIntervalInMillis,
                     _maxStringLength,
diff --git a/client/src/main/java/io/split/client/dtos/ProxyMTLSAuth.java b/client/src/main/java/io/split/client/dtos/ProxyMTLSAuth.java
new file mode 100644
index 00000000..ddd59696
--- /dev/null
+++ b/client/src/main/java/io/split/client/dtos/ProxyMTLSAuth.java
@@ -0,0 +1,41 @@
+package io.split.client.dtos;
+
+public class ProxyMTLSAuth {
+    private final String _proxyP12File;
+    private final String _proxyP12FilePassKey;
+
+    private ProxyMTLSAuth(String proxyP12File, String proxyP12FilePassKey) {
+        _proxyP12File = proxyP12File;
+        _proxyP12FilePassKey = proxyP12FilePassKey;
+    }
+
+    public String getP12File() { return _proxyP12File; }
+
+    public String getP12FilePassKey() { return _proxyP12FilePassKey; }
+
+    public static ProxyMTLSAuth.Builder builder() {
+        return new ProxyMTLSAuth.Builder();
+    }
+
+    public static class Builder {
+        private String _p12File;
+        private String _p12FilePassKey;
+
+        public Builder() {
+        }
+
+        public ProxyMTLSAuth.Builder proxyP12File(String p12File) {
+            _p12File = p12File;
+            return this;
+        }
+
+        public ProxyMTLSAuth.Builder proxyP12FilePassKey(String p12FilePassKey) {
+            _p12FilePassKey = p12FilePassKey;
+            return this;
+        }
+
+        public ProxyMTLSAuth build() {
+            return new ProxyMTLSAuth(_p12File, _p12FilePassKey);
+        }
+    }
+}
\ No newline at end of file
diff --git a/client/src/test/java/io/split/client/SplitClientConfigTest.java b/client/src/test/java/io/split/client/SplitClientConfigTest.java
index 1b640071..9e9688e1 100644
--- a/client/src/test/java/io/split/client/SplitClientConfigTest.java
+++ b/client/src/test/java/io/split/client/SplitClientConfigTest.java
@@ -1,6 +1,7 @@
 package io.split.client;
 
 import com.google.common.util.concurrent.ThreadFactoryBuilder;
+import io.split.client.dtos.ProxyMTLSAuth;
 import io.split.client.impressions.Impression;
 import io.split.client.impressions.ImpressionListener;
 import io.split.client.impressions.ImpressionsManager;
@@ -252,6 +253,88 @@ public Map<String, List<String>> getHeaderOverrides(RequestContext context) {
 
         SplitClientConfig config2 = SplitClientConfig.builder().build();
         Assert.assertNull(config2.customHeaderDecorator());
+    }
+
+    @Test
+    public void checkProxyParams() {
+        SplitClientConfig config = SplitClientConfig.builder()
+                .proxyHost("proxy-host")
+                .proxyPort(8888).build();
+        Assert.assertEquals("proxy-host", config.proxy().getHostName());
+        Assert.assertEquals(8888, config.proxy().getPort());
+
+        config = SplitClientConfig.builder()
+                .proxyHost("proxy-host")
+                .proxyPort(8888)
+                .proxyUsername("user")
+                .proxyPassword("pass")
+                .build();
+        Assert.assertEquals("user", config.proxyUsername());
+        Assert.assertEquals("pass", config.proxyPassword());
 
+        config = SplitClientConfig.builder()
+                .proxyHost("proxy-host")
+                .proxyPort(8888)
+                .proxyToken("my-token")
+                .build();
+        Assert.assertEquals("my-token", config.proxyToken());
+
+        config = SplitClientConfig.builder()
+                .proxyHost("proxy-host")
+                .proxyPort(8888)
+                .proxyMtlsAuth(new ProxyMTLSAuth.Builder().proxyP12File("path/to/file").proxyP12FilePassKey("pass-key").build())
+                .build();
+        Assert.assertEquals("path/to/file", config.proxyMTLSAuth().getP12File());
+        Assert.assertEquals("pass-key", config.proxyMTLSAuth().getP12FilePassKey());
+    }
+
+    @Test(expected = IllegalArgumentException.class)
+    public void cannotUseProxyTokenAndProxyUsername() {
+        SplitClientConfig.builder()
+                .proxyHost("proxy-host")
+                .proxyPort(8888)
+                .proxyUsername("user")
+                .proxyPassword("pass")
+                .proxyToken("my-token")
+                .build();
+    }
+
+    @Test(expected = IllegalArgumentException.class)
+    public void cannotUseProxyUserAndProxyMtls() {
+        SplitClientConfig.builder()
+                .proxyHost("proxy-host")
+                .proxyPort(8888)
+                .proxyUsername("user")
+                .proxyPassword("pass")
+                .proxyMtlsAuth(new ProxyMTLSAuth.Builder().proxyP12File("path/to/file").proxyP12FilePassKey("pass-key").build())
+                .build();
+    }
+
+    @Test(expected = IllegalArgumentException.class)
+    public void cannotUseProxyTokenAndProxyMtls() {
+        SplitClientConfig.builder()
+                .proxyHost("proxy-host")
+                .proxyPort(8888)
+                .proxyToken("my-token")
+                .proxyMtlsAuth(new ProxyMTLSAuth.Builder().proxyP12File("path/to/file").proxyP12FilePassKey("pass-key").build())
+                .build();
+    }
+
+    @Test(expected = IllegalArgumentException.class)
+    public void mustUseP12FileWithProxyMtls() {
+        SplitClientConfig.builder()
+                .proxyHost("proxy-host")
+                .proxyPort(8888)
+                .proxyMtlsAuth(new ProxyMTLSAuth.Builder().proxyP12FilePassKey("pass-key").build())
+                .build();
+    }
+
+    @Test(expected = IllegalArgumentException.class)
+    public void mustUseP12PassKeyWithProxyMtls() {
+        SplitClientConfig.builder()
+                .proxyHost("proxy-host")
+                .proxyPort(8888)
+                .proxyMtlsAuth(new ProxyMTLSAuth.Builder().proxyP12File("path/to/file").build())
+                .build();
     }
 }
\ No newline at end of file

From 3cca5ea15dbb7185128a54091a72e9cb614b92d3 Mon Sep 17 00:00:00 2001
From: Bilal Al-Shahwany <bilal.al-shahwany@harness.io>
Date: Tue, 24 Jun 2025 21:37:37 -0700
Subject: [PATCH 02/18] Added proxy scheme

---
 .../io/split/client/SplitClientConfig.java    | 23 ++++++++++++++++++-
 .../split/client/SplitClientConfigTest.java   | 10 ++++++++
 2 files changed, 32 insertions(+), 1 deletion(-)

diff --git a/client/src/main/java/io/split/client/SplitClientConfig.java b/client/src/main/java/io/split/client/SplitClientConfig.java
index f521cd33..6c388b2d 100644
--- a/client/src/main/java/io/split/client/SplitClientConfig.java
+++ b/client/src/main/java/io/split/client/SplitClientConfig.java
@@ -35,6 +35,11 @@ public class SplitClientConfig {
     public static final String STREAMING_ENDPOINT = "https://streaming.split.io/sse";
     public static final String TELEMETRY_ENDPOINT = "https://telemetry.split.io/api/v1";
 
+    public static class HttpScheme {
+        public static final String HTTP = "http";
+        public static final String HTTPS = "https";
+    }
+
     private final String _endpoint;
     private final String _eventsEndpoint;
 
@@ -455,6 +460,7 @@ public static final class Builder {
         private int _waitBeforeShutdown = 5000;
         private String _proxyHost = "localhost";
         private int _proxyPort = -1;
+        private String _proxyScheme = HttpScheme.HTTP;
         private String _proxyUsername;
         private String _proxyPassword;
         private String _proxyToken;
@@ -771,6 +777,17 @@ public Builder proxyPort(int proxyPort) {
             return this;
         }
 
+        /**
+         * The http scheme of the proxy. Default is http.
+         *
+         * @param proxyScheme protocol for the proxy
+         * @return this builder
+         */
+        public Builder proxyScheme(String proxyScheme) {
+            _proxyScheme = proxyScheme;
+            return this;
+        }
+
         /**
          * Set the username for authentication against the proxy (if proxy settings are enabled). (Optional).
          *
@@ -827,7 +844,7 @@ public Builder disableDestroyOnShutDown() {
 
         HttpHost proxy() {
             if (_proxyPort != -1) {
-                return new HttpHost(_proxyHost, _proxyPort);
+                return new HttpHost(_proxyScheme, _proxyHost, _proxyPort);
             }
             // Default is no proxy.
             return null;
@@ -1140,6 +1157,10 @@ private void verifyProxy() {
                 return;
             }
 
+            if (!(_proxyScheme.equals(HttpScheme.HTTP) || _proxyScheme.equals(HttpScheme.HTTPS))) {
+                throw new IllegalArgumentException("Proxy scheme must be either http or https.");
+            }
+
             if (_proxyUsername == null && _proxyToken == null && _proxyMtlsAuth == null) {
                 return;
             }
diff --git a/client/src/test/java/io/split/client/SplitClientConfigTest.java b/client/src/test/java/io/split/client/SplitClientConfigTest.java
index 9e9688e1..ebb4803b 100644
--- a/client/src/test/java/io/split/client/SplitClientConfigTest.java
+++ b/client/src/test/java/io/split/client/SplitClientConfigTest.java
@@ -266,6 +266,7 @@ public void checkProxyParams() {
         config = SplitClientConfig.builder()
                 .proxyHost("proxy-host")
                 .proxyPort(8888)
+                .proxyScheme(SplitClientConfig.HttpScheme.HTTPS)
                 .proxyUsername("user")
                 .proxyPassword("pass")
                 .build();
@@ -288,6 +289,15 @@ public void checkProxyParams() {
         Assert.assertEquals("pass-key", config.proxyMTLSAuth().getP12FilePassKey());
     }
 
+    @Test(expected = IllegalArgumentException.class)
+    public void cannotUseInvalidHttpScheme() {
+        SplitClientConfig.builder()
+                .proxyHost("proxy-host")
+                .proxyPort(8888)
+                .proxyScheme("ftp")
+                .build();
+    }
+
     @Test(expected = IllegalArgumentException.class)
     public void cannotUseProxyTokenAndProxyUsername() {
         SplitClientConfig.builder()

From 0267513dcada5a743cacf2d78814bae7a3dce8cb Mon Sep 17 00:00:00 2001
From: Bilal Al-Shahwany <bilal.al-shahwany@harness.io>
Date: Wed, 25 Jun 2025 10:40:06 -0700
Subject: [PATCH 03/18] Update factory

---
 .../io/split/client/SplitFactoryImpl.java     | 35 +++++++++++++++-
 .../io/split/client/SplitFactoryImplTest.java | 40 ++++++++++++++++++-
 2 files changed, 72 insertions(+), 3 deletions(-)

diff --git a/client/src/main/java/io/split/client/SplitFactoryImpl.java b/client/src/main/java/io/split/client/SplitFactoryImpl.java
index 9932cbf8..978f1603 100644
--- a/client/src/main/java/io/split/client/SplitFactoryImpl.java
+++ b/client/src/main/java/io/split/client/SplitFactoryImpl.java
@@ -92,6 +92,7 @@
 import io.split.telemetry.synchronizer.TelemetrySynchronizer;
 
 import org.apache.hc.client5.http.auth.AuthScope;
+import org.apache.hc.client5.http.auth.BearerToken;
 import org.apache.hc.client5.http.auth.Credentials;
 import org.apache.hc.client5.http.auth.UsernamePasswordCredentials;
 import org.apache.hc.client5.http.config.RequestConfig;
@@ -113,11 +114,14 @@
 import org.slf4j.LoggerFactory;
 import pluggable.CustomStorageWrapper;
 
+import javax.net.ssl.SSLContext;
 import java.io.IOException;
 import java.io.InputStream;
 import java.net.InetAddress;
 import java.net.URI;
 import java.net.URISyntaxException;
+import java.nio.file.Paths;
+import java.security.KeyStore;
 import java.util.concurrent.ExecutorService;
 import java.util.stream.Collectors;
 import java.util.HashSet;
@@ -518,8 +522,28 @@ public boolean isDestroyed() {
     protected static SplitHttpClient buildSplitHttpClient(String apiToken, SplitClientConfig config,
             SDKMetadata sdkMetadata, RequestDecorator requestDecorator)
             throws URISyntaxException {
+
+        SSLContext sslContext;
+        if (config.proxyMTLSAuth() != null) {
+            _log.debug("Proxy setup using mTLS");
+            try {
+                KeyStore keyStore = KeyStore.getInstance("PKCS12");
+                InputStream keystoreStream = java.nio.file.Files.newInputStream(Paths.get(config.proxyMTLSAuth().getP12File()));
+                keyStore.load(keystoreStream, config.proxyMTLSAuth().getP12FilePassKey().toCharArray());
+                sslContext = SSLContexts.custom()
+                        .loadKeyMaterial(keyStore, config.proxyMTLSAuth().getP12FilePassKey().toCharArray())
+                        .build();
+            } catch (Exception e) {
+                _log.error("Exception caught while processing p12 file for Proxy mTLS auth: ", e);
+                _log.warn("Ignoring p12 mTLS config and switching to default context");
+                sslContext = SSLContexts.createSystemDefault();
+            }
+        } else {
+            sslContext = SSLContexts.createSystemDefault();
+        }
+
         SSLConnectionSocketFactory sslSocketFactory = SSLConnectionSocketFactoryBuilder.create()
-                .setSslContext(SSLContexts.createSystemDefault())
+                .setSslContext(sslContext)
                 .setTlsVersions(TLS.V_1_1, TLS.V_1_2)
                 .build();
 
@@ -604,6 +628,15 @@ private static HttpClientBuilder setupProxy(HttpClientBuilder httpClientbuilder,
             httpClientbuilder.setDefaultCredentialsProvider(credsProvider);
         }
 
+        if (config.proxyToken() != null) {
+            _log.debug("Proxy setup using token");
+            BasicCredentialsProvider credsProvider = new BasicCredentialsProvider();
+            AuthScope siteScope = new AuthScope(config.proxy().getHostName(), config.proxy().getPort());
+            Credentials siteCreds = new BearerToken(config.proxyToken());
+            credsProvider.setCredentials(siteScope, siteCreds);
+            httpClientbuilder.setDefaultCredentialsProvider(credsProvider);
+        }
+
         return httpClientbuilder;
     }
 
diff --git a/client/src/test/java/io/split/client/SplitFactoryImplTest.java b/client/src/test/java/io/split/client/SplitFactoryImplTest.java
index a6da1069..2a691a4f 100644
--- a/client/src/test/java/io/split/client/SplitFactoryImplTest.java
+++ b/client/src/test/java/io/split/client/SplitFactoryImplTest.java
@@ -1,5 +1,6 @@
 package io.split.client;
 
+import io.split.client.dtos.ProxyMTLSAuth;
 import io.split.client.impressions.ImpressionsManager;
 import io.split.client.utils.FileTypeEnum;
 import io.split.integrations.IntegrationsConfig;
@@ -10,7 +11,6 @@
 import junit.framework.TestCase;
 import org.awaitility.Awaitility;
 import org.junit.Assert;
-import org.junit.Ignore;
 import org.junit.Test;
 import org.mockito.Mockito;
 import static org.mockito.Mockito.when;
@@ -102,9 +102,45 @@ public void testFactoryInstantiationWithProxy() throws Exception {
                 .proxyHost(ENDPOINT)
                 .build();
         SplitFactoryImpl splitFactory = new SplitFactoryImpl(API_KEY, splitClientConfig);
-
         assertNotNull(splitFactory.client());
         assertNotNull(splitFactory.manager());
+
+        splitClientConfig = SplitClientConfig.builder()
+                .enableDebug()
+                .impressionsMode(ImpressionsManager.Mode.DEBUG)
+                .impressionsRefreshRate(1)
+                .endpoint(ENDPOINT,EVENTS_ENDPOINT)
+                .telemetryURL(SplitClientConfig.TELEMETRY_ENDPOINT)
+                .authServiceURL(AUTH_SERVICE)
+                .setBlockUntilReadyTimeout(1000)
+                .proxyPort(6060)
+                .proxyToken("12345")
+                .proxyHost(ENDPOINT)
+                .build();
+        SplitFactoryImpl splitFactory2 = new SplitFactoryImpl(API_KEY, splitClientConfig);
+        assertNotNull(splitFactory2.client());
+        assertNotNull(splitFactory2.manager());
+
+        splitClientConfig = SplitClientConfig.builder()
+                .enableDebug()
+                .impressionsMode(ImpressionsManager.Mode.DEBUG)
+                .impressionsRefreshRate(1)
+                .endpoint(ENDPOINT,EVENTS_ENDPOINT)
+                .telemetryURL(SplitClientConfig.TELEMETRY_ENDPOINT)
+                .authServiceURL(AUTH_SERVICE)
+                .setBlockUntilReadyTimeout(1000)
+                .proxyPort(6060)
+                .proxyScheme("https")
+                .proxyMtlsAuth(new ProxyMTLSAuth.Builder().proxyP12File("file").proxyP12FilePassKey("pass").build())
+                .proxyHost(ENDPOINT)
+                .build();
+        SplitFactoryImpl splitFactory3 = new SplitFactoryImpl(API_KEY, splitClientConfig);
+        assertNotNull(splitFactory3.client());
+        assertNotNull(splitFactory3.manager());
+
+        splitFactory.destroy();
+        splitFactory2.destroy();
+        splitFactory3.destroy();
     }
 
     @Test

From 436dc2aec2a6cae6a2fe488c3b00d36410d93f08 Mon Sep 17 00:00:00 2001
From: Bilal Al-Shahwany <bilal.al-shahwany@harness.io>
Date: Wed, 25 Jun 2025 16:01:51 -0700
Subject: [PATCH 04/18] Added proxy tests

---
 .../io/split/client/SplitFactoryImplTest.java | 62 ++++++++++++++++++-
 1 file changed, 61 insertions(+), 1 deletion(-)

diff --git a/client/src/test/java/io/split/client/SplitFactoryImplTest.java b/client/src/test/java/io/split/client/SplitFactoryImplTest.java
index 2a691a4f..c99c2ff0 100644
--- a/client/src/test/java/io/split/client/SplitFactoryImplTest.java
+++ b/client/src/test/java/io/split/client/SplitFactoryImplTest.java
@@ -4,11 +4,21 @@
 import io.split.client.impressions.ImpressionsManager;
 import io.split.client.utils.FileTypeEnum;
 import io.split.integrations.IntegrationsConfig;
+import io.split.service.SplitHttpClientImpl;
 import io.split.storages.enums.OperationMode;
 import io.split.storages.pluggable.domain.UserStorageWrapper;
 import io.split.telemetry.storage.TelemetryStorage;
 import io.split.telemetry.synchronizer.TelemetrySynchronizer;
 import junit.framework.TestCase;
+import org.apache.hc.client5.http.auth.AuthScope;
+import org.apache.hc.client5.http.auth.BearerToken;
+import org.apache.hc.client5.http.auth.UsernamePasswordCredentials;
+import org.apache.hc.client5.http.impl.auth.BasicCredentialsProvider;
+import org.apache.hc.client5.http.impl.classic.CloseableHttpClient;
+import org.apache.hc.client5.http.impl.classic.CloseableHttpResponse;
+import org.apache.hc.client5.http.impl.classic.MinimalHttpClient;
+import org.apache.hc.client5.http.impl.routing.DefaultProxyRoutePlanner;
+import org.apache.hc.core5.http.HttpHost;
 import org.awaitility.Awaitility;
 import org.junit.Assert;
 import org.junit.Test;
@@ -24,6 +34,7 @@
 import java.lang.reflect.Method;
 import java.lang.reflect.Modifier;
 import java.net.URISyntaxException;
+import java.util.concurrent.ConcurrentHashMap;
 import java.util.concurrent.TimeUnit;
 
 
@@ -105,6 +116,37 @@ public void testFactoryInstantiationWithProxy() throws Exception {
         assertNotNull(splitFactory.client());
         assertNotNull(splitFactory.manager());
 
+        Field splitHttpClientField = SplitFactoryImpl.class.getDeclaredField("_splitHttpClient");
+        splitHttpClientField.setAccessible(true);
+        SplitHttpClientImpl client = (SplitHttpClientImpl) splitHttpClientField.get(splitFactory);
+
+        Field httpClientField = SplitHttpClientImpl.class.getDeclaredField("_client");
+        httpClientField.setAccessible(true);
+        Class<?> InternalHttp = Class.forName("org.apache.hc.client5.http.impl.classic.InternalHttpClient");
+
+        Field routePlannerField = InternalHttp.getDeclaredField("routePlanner");
+        routePlannerField.setAccessible(true);
+        DefaultProxyRoutePlanner routePlanner = (DefaultProxyRoutePlanner) routePlannerField.get(InternalHttp.cast(httpClientField.get(client)));
+
+        Field proxyField = DefaultProxyRoutePlanner.class.getDeclaredField("proxy");
+        proxyField.setAccessible(true);
+        HttpHost proxy = (HttpHost) proxyField.get(routePlanner);
+
+        Assert.assertEquals("http", proxy.getSchemeName());
+        Assert.assertEquals(ENDPOINT, proxy.getHostName());
+        Assert.assertEquals(6060, proxy.getPort());
+
+        Field credentialsProviderField = InternalHttp.getDeclaredField("credentialsProvider");
+        credentialsProviderField.setAccessible(true);
+        BasicCredentialsProvider credentialsProvider = (BasicCredentialsProvider) credentialsProviderField.get(InternalHttp.cast(httpClientField.get(client)));
+
+        Field credMapField = BasicCredentialsProvider.class.getDeclaredField("credMap");
+        credMapField.setAccessible(true);
+        ConcurrentHashMap<AuthScope, UsernamePasswordCredentials> credMap = (ConcurrentHashMap) credMapField.get(credentialsProvider);
+
+        Assert.assertEquals("test", credMap.entrySet().stream().iterator().next().getValue().getUserName());
+        assertNotNull(credMap.entrySet().stream().iterator().next().getValue().getUserPassword());
+
         splitClientConfig = SplitClientConfig.builder()
                 .enableDebug()
                 .impressionsMode(ImpressionsManager.Mode.DEBUG)
@@ -114,13 +156,31 @@ public void testFactoryInstantiationWithProxy() throws Exception {
                 .authServiceURL(AUTH_SERVICE)
                 .setBlockUntilReadyTimeout(1000)
                 .proxyPort(6060)
-                .proxyToken("12345")
+                .proxyToken("123456789")
                 .proxyHost(ENDPOINT)
                 .build();
         SplitFactoryImpl splitFactory2 = new SplitFactoryImpl(API_KEY, splitClientConfig);
         assertNotNull(splitFactory2.client());
         assertNotNull(splitFactory2.manager());
 
+        Field splitHttpClientField2 = SplitFactoryImpl.class.getDeclaredField("_splitHttpClient");
+        splitHttpClientField2.setAccessible(true);
+        SplitHttpClientImpl client2 = (SplitHttpClientImpl) splitHttpClientField2.get(splitFactory2);
+
+        Field httpClientField2 = SplitHttpClientImpl.class.getDeclaredField("_client");
+        httpClientField2.setAccessible(true);
+        Class<?> InternalHttp2 = Class.forName("org.apache.hc.client5.http.impl.classic.InternalHttpClient");
+
+        Field credentialsProviderField2 = InternalHttp.getDeclaredField("credentialsProvider");
+        credentialsProviderField2.setAccessible(true);
+        BasicCredentialsProvider credentialsProvider2 = (BasicCredentialsProvider) credentialsProviderField2.get(InternalHttp2.cast(httpClientField2.get(client2)));
+
+        Field credMapField2 = BasicCredentialsProvider.class.getDeclaredField("credMap");
+        credMapField2.setAccessible(true);
+        ConcurrentHashMap<AuthScope, BearerToken> credMap2 = (ConcurrentHashMap) credMapField2.get(credentialsProvider2);
+
+        Assert.assertEquals("123456789", credMap2.entrySet().stream().iterator().next().getValue().getToken());
+
         splitClientConfig = SplitClientConfig.builder()
                 .enableDebug()
                 .impressionsMode(ImpressionsManager.Mode.DEBUG)

From b42fddc0e37fe47a50f2c4dbb2cc84fbe836f63b Mon Sep 17 00:00:00 2001
From: Bilal Al-Shahwany <bilal.al-shahwany@harness.io>
Date: Thu, 26 Jun 2025 12:48:39 -0700
Subject: [PATCH 05/18] updated test

---
 .../io/split/client/SplitFactoryImplTest.java |  81 +++++++++++++++---
 client/src/test/resources/keyStore.p12        | Bin 0 -> 3011 bytes
 2 files changed, 69 insertions(+), 12 deletions(-)
 create mode 100644 client/src/test/resources/keyStore.p12

diff --git a/client/src/test/java/io/split/client/SplitFactoryImplTest.java b/client/src/test/java/io/split/client/SplitFactoryImplTest.java
index c99c2ff0..4597b615 100644
--- a/client/src/test/java/io/split/client/SplitFactoryImplTest.java
+++ b/client/src/test/java/io/split/client/SplitFactoryImplTest.java
@@ -14,11 +14,11 @@
 import org.apache.hc.client5.http.auth.BearerToken;
 import org.apache.hc.client5.http.auth.UsernamePasswordCredentials;
 import org.apache.hc.client5.http.impl.auth.BasicCredentialsProvider;
-import org.apache.hc.client5.http.impl.classic.CloseableHttpClient;
-import org.apache.hc.client5.http.impl.classic.CloseableHttpResponse;
-import org.apache.hc.client5.http.impl.classic.MinimalHttpClient;
+import org.apache.hc.client5.http.impl.io.DefaultHttpClientConnectionOperator;
+import org.apache.hc.client5.http.impl.io.PoolingHttpClientConnectionManager;
 import org.apache.hc.client5.http.impl.routing.DefaultProxyRoutePlanner;
 import org.apache.hc.core5.http.HttpHost;
+import org.apache.hc.core5.http.config.Registry;
 import org.awaitility.Awaitility;
 import org.junit.Assert;
 import org.junit.Test;
@@ -34,6 +34,7 @@
 import java.lang.reflect.Method;
 import java.lang.reflect.Modifier;
 import java.net.URISyntaxException;
+import java.util.HashMap;
 import java.util.concurrent.ConcurrentHashMap;
 import java.util.concurrent.TimeUnit;
 
@@ -98,12 +99,12 @@ public void testFactoryInstantiationIntegrationsConfig() throws Exception {
     }
 
     @Test
-    public void testFactoryInstantiationWithProxy() throws Exception {
+    public void testFactoryInstantiationWithProxyCredentials() throws Exception {
         SplitClientConfig splitClientConfig = SplitClientConfig.builder()
                 .enableDebug()
                 .impressionsMode(ImpressionsManager.Mode.DEBUG)
                 .impressionsRefreshRate(1)
-                .endpoint(ENDPOINT,EVENTS_ENDPOINT)
+                .endpoint(ENDPOINT, EVENTS_ENDPOINT)
                 .telemetryURL(SplitClientConfig.TELEMETRY_ENDPOINT)
                 .authServiceURL(AUTH_SERVICE)
                 .setBlockUntilReadyTimeout(1000)
@@ -147,11 +148,16 @@ public void testFactoryInstantiationWithProxy() throws Exception {
         Assert.assertEquals("test", credMap.entrySet().stream().iterator().next().getValue().getUserName());
         assertNotNull(credMap.entrySet().stream().iterator().next().getValue().getUserPassword());
 
-        splitClientConfig = SplitClientConfig.builder()
+        splitFactory.destroy();
+    }
+
+    @Test
+    public void testFactoryInstantiationWithProxyToken() throws Exception {
+        SplitClientConfig splitClientConfig = SplitClientConfig.builder()
                 .enableDebug()
                 .impressionsMode(ImpressionsManager.Mode.DEBUG)
                 .impressionsRefreshRate(1)
-                .endpoint(ENDPOINT,EVENTS_ENDPOINT)
+                .endpoint(ENDPOINT, EVENTS_ENDPOINT)
                 .telemetryURL(SplitClientConfig.TELEMETRY_ENDPOINT)
                 .authServiceURL(AUTH_SERVICE)
                 .setBlockUntilReadyTimeout(1000)
@@ -171,7 +177,7 @@ public void testFactoryInstantiationWithProxy() throws Exception {
         httpClientField2.setAccessible(true);
         Class<?> InternalHttp2 = Class.forName("org.apache.hc.client5.http.impl.classic.InternalHttpClient");
 
-        Field credentialsProviderField2 = InternalHttp.getDeclaredField("credentialsProvider");
+        Field credentialsProviderField2 = InternalHttp2.getDeclaredField("credentialsProvider");
         credentialsProviderField2.setAccessible(true);
         BasicCredentialsProvider credentialsProvider2 = (BasicCredentialsProvider) credentialsProviderField2.get(InternalHttp2.cast(httpClientField2.get(client2)));
 
@@ -181,7 +187,12 @@ public void testFactoryInstantiationWithProxy() throws Exception {
 
         Assert.assertEquals("123456789", credMap2.entrySet().stream().iterator().next().getValue().getToken());
 
-        splitClientConfig = SplitClientConfig.builder()
+        splitFactory2.destroy();
+    }
+
+    @Test
+    public void testFactoryInstantiationWithProxyMtls() throws Exception {
+        SplitClientConfig splitClientConfig = SplitClientConfig.builder()
                 .enableDebug()
                 .impressionsMode(ImpressionsManager.Mode.DEBUG)
                 .impressionsRefreshRate(1)
@@ -191,15 +202,61 @@ public void testFactoryInstantiationWithProxy() throws Exception {
                 .setBlockUntilReadyTimeout(1000)
                 .proxyPort(6060)
                 .proxyScheme("https")
-                .proxyMtlsAuth(new ProxyMTLSAuth.Builder().proxyP12File("file").proxyP12FilePassKey("pass").build())
+                .proxyMtlsAuth(new ProxyMTLSAuth.Builder().proxyP12File("src/test/resources/keyStore.p12").proxyP12FilePassKey("split").build())
                 .proxyHost(ENDPOINT)
                 .build();
         SplitFactoryImpl splitFactory3 = new SplitFactoryImpl(API_KEY, splitClientConfig);
         assertNotNull(splitFactory3.client());
         assertNotNull(splitFactory3.manager());
 
-        splitFactory.destroy();
-        splitFactory2.destroy();
+        Field splitHttpClientField3 = SplitFactoryImpl.class.getDeclaredField("_splitHttpClient");
+        splitHttpClientField3.setAccessible(true);
+        SplitHttpClientImpl client3 = (SplitHttpClientImpl) splitHttpClientField3.get(splitFactory3);
+
+        Field httpClientField3 = SplitHttpClientImpl.class.getDeclaredField("_client");
+        httpClientField3.setAccessible(true);
+        Class<?> InternalHttp3 = Class.forName("org.apache.hc.client5.http.impl.classic.InternalHttpClient");
+
+        Field connManagerField = InternalHttp3.getDeclaredField("connManager");
+        connManagerField.setAccessible(true);
+        PoolingHttpClientConnectionManager connManager = (PoolingHttpClientConnectionManager) connManagerField.get(InternalHttp3.cast(httpClientField3.get(client3)));
+
+        Field connectionOperatorField = PoolingHttpClientConnectionManager.class.getDeclaredField("connectionOperator");
+        connectionOperatorField.setAccessible(true);
+        DefaultHttpClientConnectionOperator connectionOperator = (DefaultHttpClientConnectionOperator) connectionOperatorField.get(connManager);
+
+        Field tlsSocketStrategyLookupField = DefaultHttpClientConnectionOperator.class.getDeclaredField("tlsSocketStrategyLookup");
+        tlsSocketStrategyLookupField.setAccessible(true);
+        Registry tlsSocketStrategyLookup = (Registry) tlsSocketStrategyLookupField.get(connectionOperator);
+
+        Field mapField = Registry.class.getDeclaredField("map");
+        mapField.setAccessible(true);
+        Class<?> map =  mapField.get(tlsSocketStrategyLookup).getClass();
+
+        Class<?> value = ((ConcurrentHashMap) map.cast(mapField.get(tlsSocketStrategyLookup))).get("https").getClass();
+
+        Field arg1Field = value.getDeclaredField("arg$1");
+        arg1Field.setAccessible(true);
+        Class<?> sslConnectionSocketFactory = arg1Field.get(((ConcurrentHashMap) map.cast(mapField.get(tlsSocketStrategyLookup))).get("https")).getClass();
+
+        Field socketFactoryField = sslConnectionSocketFactory.getDeclaredField("socketFactory");
+        socketFactoryField.setAccessible(true);
+        Class<?> socketFactory = socketFactoryField.get(arg1Field.get(((ConcurrentHashMap) map.cast(mapField.get(tlsSocketStrategyLookup))).get("https"))).getClass();
+
+        Field contextField = socketFactory.getDeclaredField("context");
+        contextField.setAccessible(true);
+        Class<?> context = Class.forName("sun.security.ssl.SSLContextImpl");
+
+        Field keyManagerField = context.getDeclaredField("keyManager");
+        keyManagerField.setAccessible(true);
+        Class<?> keyManager = keyManagerField.get(contextField.get(socketFactoryField.get(arg1Field.get(((ConcurrentHashMap) map.cast(mapField.get(tlsSocketStrategyLookup))).get("https"))))).getClass();
+
+        Field credentialsMapField = keyManager.getDeclaredField("credentialsMap");
+        credentialsMapField.setAccessible(true);
+        HashMap<String,Object> credentialsMap = (HashMap) credentialsMapField.get(keyManagerField.get(contextField.get(socketFactoryField.get(arg1Field.get(((ConcurrentHashMap) map.cast(mapField.get(tlsSocketStrategyLookup))).get("https"))))));
+
+        assertNotNull(credentialsMap.get("1"));
+
         splitFactory3.destroy();
     }
 
diff --git a/client/src/test/resources/keyStore.p12 b/client/src/test/resources/keyStore.p12
new file mode 100644
index 0000000000000000000000000000000000000000..ce2b34171195aa55cb4640301caff60021c29543
GIT binary patch
literal 3011
zcmai$XE+-Q7srLfiV<p$nlVdb6T5awY_%zk1T{<1T8&Y(Ra7H3H;US7T(fA+*rj%@
zi>kefQoQc-zR$fM-w)?G&-wj7oNvE#U|4V)DS!-y1qYH-iN)&2p3nj)0C`xj8xRY2
zxyFt#ENJH6h&&Gq>c2)kqyUoZ*8Xn-fI0m$fM{W6FsXk>8kisuLdY$m_vbJ2>$zO|
zl_j<UB_*XKfzgmt{&y=W6^I1JO-|(;s}Det0Rdt_NGov~pctI(bipFg+ZM;89*G5+
zxc%IHdBtJaD=by{7;<^xo2pJG5OlDBWPTkns9SLXfW;-q59_f*tD8GeNd4eSiVWtH
zt4YwUk#OVCjHy)Dm;=bt0Eh>;C@WK|fr!>V*E6Tg-pV4aCI<p;v>T>Xf8RIG|MAKc
zq7<ZhlB+ZQYj5T)3;VGC%I9fQj0YD{!OY4HL*TH9JYNmr9cnD@K`t?uBu3#FKxYX1
z>JM#CtS`-CKsFIE4~mg2x>y@v{hXPJdkJIa=^x#4b*T!B?MVcHRClaQBId^JVP$8-
zb;<gnw?*-u(iE>}*$A_<a@sf{kr^KJ_>nmkGCevGVq5>|v*)E}vO||q<wvF;9+DRw
zi56rBALb&U?k9%6Er*(+x5B1^3Ji%!Yyz`+!#l>(p5M;_!Cu_i`Ji)kyD`=;!FI7>
z-0VSnOwAVPWt+%ve%2BT98->zPm-fcb6kfTetjK(xyrjq^kuoRtEln}qI+5;4puY7
zUT&H-JhO6T3z;0x591ST9X2pD;sV~7KX}zRV}t>~tW|r+yte~em24=KL{snEDYrhn
z3c&a6Q{KbQDOe^&sDyoPrZyG*tsF-F&T)J_L{W2B>RHm%)2#wx-D;Y}CR!`#F@b5K
zC?MAKFJ>^jhC%;cL2@tm6$Zdde;aF3;dCa2m-+hLB?VQnss~DhPfSsG4t4RTK4n2M
zV1vLEZ{9aQ>KSIRAeNLSpeIzdh96e8q0$9J#NH8PHE4)wnB&-)Tyo|`bad5oK93X@
zhZP4lwN<Y6>>vFjeMO8b^P>ELdJjzQ<(vL&fiR}(UHxvrEp}!T-wb(AA4Wvn3AVzo
zBKWrXUNC1niMLIuNkI!RBcsu8b&F*l&E<$07M4+nc4Tef{(6O;mM(`p)wtnF3lC9%
ztB}j<T~X>i4KI|Sq+Gj*#AZy}GZzWb=pX}$rP&ycd{v<_;!(GaR@ibDpp2RlQQNs+
z8P7&2ahiSFw0o|W6}IszL~<7O&==%fW0M(5sxEQ6wroWD5&GCFfOEk1cTqdNYm#@;
z+PN0y@m(FjH@{Mme1^cC15RQL$FJ!PUTm9h+BuBhIlgpq#>!_1pK3)PQC61xlC<V2
zPg%Q@fFMUhFO*lUKdMBCAbY-c8NaPBa&b(S|NJW8kTERl>XL0B+S=Bqa6EdkzvrNh
z%9j&J56|&u{Bf!wC>@$w_I@U#F{!a#h+1<~>1$KZt*@8vg<~P_eJrE9jgEIpnBB=Z
zyM;aZxT!|nid;$;(Jrn`{+h|QL`0lQL@r*8;goeFv4!E!nV)e4lv#*x!-Pd8TcuCx
z&lWl^jz_<N+Rvnm3lWX}n=8wtpKcr(GYJm_tLA-a5`A9FWL$U9Hfx3IGOkP#MNFDT
zVGb|R;S$Y_;%g(^;>Mf!!BXFj_PGYemjYf)%J%~j-0+Gycm#i}@Lu2|y}Y$xipYe<
zJ&1uiL$7Lu925NY#<sOs@r!BlRJ(Fh@bOtq&n0K)qTSrvv_rLuMoLTAOy-ow8&_z#
zh{?P7lui>PaUW_q3o42EdgytI!NChR12k3LcRIB8VA?A6nn<ONZ?Jf>4JTm5$v7nb
zYg=8-RcX`6m`BmvoR=yoGJ|KUFxX&FABCr*=D|f$gfU}SWh~2}c7zZu&1qX?{1Flz
zJH<SCk>QnTPnxnerGu32{h+>IFs^pKZ8{JVcdT~s?#Xhk?7JK>T>)>7(b7qZSb%0v
z@fd#qq-tto;*e(l>!6Dn;WR?e*S}N~H?^_K&LyM8xDXx(R}s_^@lxEhG_y5ohJKe(
z$Zw-m)46td=s%wRTl^p|AQt3)jZxQipB((Zn?OSiAiWMnuOamRi5_QqI&Fy9a!`)a
zr>bzy*89Jr|HKUTwt7IxpCXkSvA&y30Ahjd1Gj?t96YU9F(X4}adYvVLMPt+lcsF+
zD|KTD+Jcss;c+v#t-_>9an!+yr&FMUj@HNivb&?z=`rqeqRT_<tW21F#Jptq3cGYh
zumQN*XTzf5roOxYcR0f)I5EMt<r6)-@2%0*HNY2HDC=lwVq8FRXNbaq720T<^<XEm
zd@)Yc*$S_C{==LwGq;ef2Up_Mt1jVm>W5lOvKr20N5>tYVow!p^NZ3ML<ZtVjuS63
zI9oJ)bjoW?XTqE~I7{Y^KMXT;`4AY_Taz4eJ8pu(%3%I6MTfaPw$N{Y=Zp8FbQq~I
z@Q{^1nR`!p@70-RRw@5(f3MXi2x+P;K3GV#fDlE^QVoJOB!@Jc?n{?*@KO%%Xw?_V
zPl&7+D0d9(*QyNr8zuQaJTu-iV=Y`~bE^+l8*Y*8=V$UcGg(;Yn~B61BX19%u+_sX
z^Qt*g8&78BlcH!U3A|l+0h!*rt%uT=v-i_CeY#fs?gUZC0tQ8AlFaD(Z$4PhT|w@9
zWcN~OQ%o|pFrrH(q~Khe+zE=71{)7{*6s??gLZN~YOGuTs-N1IP>7w%)0{jkgCa?A
zMRDDrQiQ^&;)k*n8rr6GYMxGiYBaM_>%6XuQ;4uk=eUMlB0TWv1W3g_*vZT4jKbbs
z4Ib*ad(8H$tM4uS6p7js<B)o~^w#LPiQVF1Epb-INBbvb`6goLx3Nac){brgyrJ>v
zBN62Z&NcGBiBP{UZ0xb`Z3<W%Jw2fc4b^L^g1FU*$0wZ1^rUUVyyBA&HBV{^GbD8%
zFFp8d=Q1U`;&nmUfgx-p^tFnM(>d*Q7bgZR?plA6<1aus=#Mi|s9YTNM2#%Qr!B0d
zb$IsB>oE(GRx}+OG1P*&a>nuU7uznfb!fSA$wSxA8r@lgJo5GQ&%f`p-pwQS^((4P
z3jch8dE8HBOGf^zFvDNUUZ8P{F8NOUG_hPAya(ld4M!#*33%EG0gjziPv}JcJkxh!
zHQ`E8I$eW(zdOUDc)%(gT&9j9xydhg#_;n|?k2{Y+;~eRzY4d4GmztR+X15qE}r^<
zQ6%Xmtxd$6_g)4}2##}wFvK(pgWiOjS~p6xOno`hEu;d{42lrxZJi^>ethfjhRI@Z
z9b~a<hi3@L$J<MNfA~B`ROCHrd2!RcTET){X4a$L9JkksKPHJ$b#3`W4P@30r)vRg
z6#fqGt3|H`q?x~u@q(I8TXV!&Y5EVeY+arcwzc2ywiQ3$1XPs`R&9M|2Hs#-eiLB-
zNF__;=Mzq0(1Rn35pQt^R+2t)-1M#waEY+n!+=ZN{F;(;@+z}=(I&&#`x7nFk84&N
z5jnJLD-#2vUDmBBHy^z68;SnZ(R1dyEgu~W{fNv?Cf{sZ-qWtO*59mZ593GiFc~c?
z2Z(&EnoYhmujwLY+7^e0iD~ZpRE3$zGVJ;ZqrFIksGQ;UQVvC-%}RWYuZxkGnAcJr
z=|>I0eL*JQ)Rqtn1r|@d7;z$L0__ULxAi6qJZ4FP!DE#n00=(LyQ;m>av7PT3A<B1
zixLpP<ha=Lb(E+q2<0W!96LTkmH@s`N49>*SB{QaTHYokV&5hjvM>0h7fL~40{@7W
zidl*U$YkAs6?2MNDbMJD7NPR;hTQ0F(qWn~DH!cPZ!akTL;~df?BtVavp$<JuQT5T
lc}X3&vY>^q`+Z`glu93|cY==qQo6o2hs&b=H2zzy{{fimcNqWx

literal 0
HcmV?d00001


From d2bdc022fb9386149ccdedd8d5a1778674607d3e Mon Sep 17 00:00:00 2001
From: Bilal Al-Shahwany <bilal.al-shahwany@harness.io>
Date: Mon, 30 Jun 2025 10:01:31 -0700
Subject: [PATCH 06/18] Added sslcontext to SSE

---
 client/pom.xml                                |  4 +-
 .../io/split/client/SplitFactoryImpl.java     | 45 +++++++++++--------
 okhttp-modules/pom.xml                        |  4 +-
 pluggable-storage/pom.xml                     |  2 +-
 pom.xml                                       |  2 +-
 redis-wrapper/pom.xml                         |  2 +-
 testing/pom.xml                               |  2 +-
 7 files changed, 34 insertions(+), 27 deletions(-)

diff --git a/client/pom.xml b/client/pom.xml
index d0ae4a78..12441eb9 100644
--- a/client/pom.xml
+++ b/client/pom.xml
@@ -5,9 +5,9 @@
     <parent>
         <groupId>io.split.client</groupId>
         <artifactId>java-client-parent</artifactId>
-        <version>4.16.0</version>
+        <version>4.17.0-rc1</version>
     </parent>
-    <version>4.16.0</version>
+    <version>4.17.0-rc1</version>
     <artifactId>java-client</artifactId>
     <packaging>jar</packaging>
     <name>Java Client</name>
diff --git a/client/src/main/java/io/split/client/SplitFactoryImpl.java b/client/src/main/java/io/split/client/SplitFactoryImpl.java
index 978f1603..2e1ffe78 100644
--- a/client/src/main/java/io/split/client/SplitFactoryImpl.java
+++ b/client/src/main/java/io/split/client/SplitFactoryImpl.java
@@ -523,24 +523,7 @@ protected static SplitHttpClient buildSplitHttpClient(String apiToken, SplitClie
             SDKMetadata sdkMetadata, RequestDecorator requestDecorator)
             throws URISyntaxException {
 
-        SSLContext sslContext;
-        if (config.proxyMTLSAuth() != null) {
-            _log.debug("Proxy setup using mTLS");
-            try {
-                KeyStore keyStore = KeyStore.getInstance("PKCS12");
-                InputStream keystoreStream = java.nio.file.Files.newInputStream(Paths.get(config.proxyMTLSAuth().getP12File()));
-                keyStore.load(keystoreStream, config.proxyMTLSAuth().getP12FilePassKey().toCharArray());
-                sslContext = SSLContexts.custom()
-                        .loadKeyMaterial(keyStore, config.proxyMTLSAuth().getP12FilePassKey().toCharArray())
-                        .build();
-            } catch (Exception e) {
-                _log.error("Exception caught while processing p12 file for Proxy mTLS auth: ", e);
-                _log.warn("Ignoring p12 mTLS config and switching to default context");
-                sslContext = SSLContexts.createSystemDefault();
-            }
-        } else {
-            sslContext = SSLContexts.createSystemDefault();
-        }
+        SSLContext sslContext = buildSSLContext(config);
 
         SSLConnectionSocketFactory sslSocketFactory = SSLConnectionSocketFactoryBuilder.create()
                 .setSslContext(sslContext)
@@ -585,8 +568,10 @@ private static CloseableHttpClient buildSSEdHttpClient(String apiToken, SplitCli
                 .setConnectTimeout(Timeout.ofMilliseconds(SSE_CONNECT_TIMEOUT))
                 .build();
 
+        SSLContext sslContext = buildSSLContext(config);
+
         SSLConnectionSocketFactory sslSocketFactory = SSLConnectionSocketFactoryBuilder.create()
-                .setSslContext(SSLContexts.createSystemDefault())
+                .setSslContext(sslContext)
                 .setTlsVersions(TLS.V_1_1, TLS.V_1_2)
                 .build();
 
@@ -613,6 +598,28 @@ private static CloseableHttpClient buildSSEdHttpClient(String apiToken, SplitCli
         return httpClientbuilder.build();
     }
 
+    private static SSLContext buildSSLContext(SplitClientConfig config) {
+        SSLContext sslContext;
+        if (config.proxyMTLSAuth() != null) {
+            _log.debug("Proxy setup using mTLS");
+            try {
+                KeyStore keyStore = KeyStore.getInstance("PKCS12");
+                InputStream keystoreStream = java.nio.file.Files.newInputStream(Paths.get(config.proxyMTLSAuth().getP12File()));
+                keyStore.load(keystoreStream, config.proxyMTLSAuth().getP12FilePassKey().toCharArray());
+                sslContext = SSLContexts.custom()
+                        .loadKeyMaterial(keyStore, config.proxyMTLSAuth().getP12FilePassKey().toCharArray())
+                        .build();
+            } catch (Exception e) {
+                _log.error("Exception caught while processing p12 file for Proxy mTLS auth: ", e);
+                _log.warn("Ignoring p12 mTLS config and switching to default context");
+                sslContext = SSLContexts.createSystemDefault();
+            }
+        } else {
+            sslContext = SSLContexts.createSystemDefault();
+        }
+        return sslContext;
+    }
+
     private static HttpClientBuilder setupProxy(HttpClientBuilder httpClientbuilder, SplitClientConfig config) {
         _log.info("Initializing Split SDK with proxy settings");
         DefaultProxyRoutePlanner routePlanner = new DefaultProxyRoutePlanner(config.proxy());
diff --git a/okhttp-modules/pom.xml b/okhttp-modules/pom.xml
index a8645f9c..a474be3a 100644
--- a/okhttp-modules/pom.xml
+++ b/okhttp-modules/pom.xml
@@ -5,10 +5,10 @@
     <parent>
         <artifactId>java-client-parent</artifactId>
         <groupId>io.split.client</groupId>
-        <version>4.16.0</version>
+        <version>4.17.0-rc1</version>
     </parent>
     <modelVersion>4.0.0</modelVersion>
-    <version>4.16.0</version>
+    <version>4.17.0-rc1</version>
     <artifactId>okhttp-modules</artifactId>
     <packaging>jar</packaging>
     <name>http-modules</name>
diff --git a/pluggable-storage/pom.xml b/pluggable-storage/pom.xml
index 21b0bdac..b67933fe 100644
--- a/pluggable-storage/pom.xml
+++ b/pluggable-storage/pom.xml
@@ -6,7 +6,7 @@
     <parent>
         <artifactId>java-client-parent</artifactId>
         <groupId>io.split.client</groupId>
-        <version>4.16.0</version>
+        <version>4.17.0-rc1</version>
     </parent>
 
     <version>2.1.0</version>
diff --git a/pom.xml b/pom.xml
index 7b21f1ec..5650bbc4 100644
--- a/pom.xml
+++ b/pom.xml
@@ -4,7 +4,7 @@
     <modelVersion>4.0.0</modelVersion>
     <groupId>io.split.client</groupId>
     <artifactId>java-client-parent</artifactId>
-    <version>4.16.0</version>
+    <version>4.17.0-rc1</version>
     <dependencyManagement>
         <dependencies>
             <dependency>
diff --git a/redis-wrapper/pom.xml b/redis-wrapper/pom.xml
index 301739ce..679f5502 100644
--- a/redis-wrapper/pom.xml
+++ b/redis-wrapper/pom.xml
@@ -6,7 +6,7 @@
     <parent>
         <artifactId>java-client-parent</artifactId>
         <groupId>io.split.client</groupId>
-        <version>4.16.0</version>
+        <version>4.17.0-rc1</version>
     </parent>
     <artifactId>redis-wrapper</artifactId>
     <version>3.1.1</version>
diff --git a/testing/pom.xml b/testing/pom.xml
index 0fae6cdf..9c01ba09 100644
--- a/testing/pom.xml
+++ b/testing/pom.xml
@@ -9,7 +9,7 @@
     </parent>
     <artifactId>java-client-testing</artifactId>
     <packaging>jar</packaging>
-    <version>4.16.0</version>
+    <version>4.17.0-rc1</version>
     <name>Java Client For Testing</name>
     <description>Testing suite for Java SDK for Split</description>
     <dependencies>

From 0489c0d14f040970f17f3ac36f35b2134cbb470f Mon Sep 17 00:00:00 2001
From: Bilal Al-Shahwany <bilal.al-shahwany@harness.io>
Date: Mon, 30 Jun 2025 13:49:04 -0700
Subject: [PATCH 07/18] Added auto refresh proxy token

---
 .../client/HttpClientDynamicCredentials.java  | 25 ++++++++++++++++
 .../io/split/client/ProxyRuntimeStorage.java  | 10 +++++++
 .../io/split/client/SplitClientConfig.java    | 26 ++++++++---------
 .../io/split/client/SplitFactoryImpl.java     |  9 ++----
 .../split/client/SplitClientConfigTest.java   | 29 ++++++++++++++++---
 .../io/split/client/SplitFactoryImplTest.java |  4 ++-
 6 files changed, 78 insertions(+), 25 deletions(-)
 create mode 100644 client/src/main/java/io/split/client/HttpClientDynamicCredentials.java
 create mode 100644 client/src/main/java/io/split/client/ProxyRuntimeStorage.java

diff --git a/client/src/main/java/io/split/client/HttpClientDynamicCredentials.java b/client/src/main/java/io/split/client/HttpClientDynamicCredentials.java
new file mode 100644
index 00000000..f7c84f6b
--- /dev/null
+++ b/client/src/main/java/io/split/client/HttpClientDynamicCredentials.java
@@ -0,0 +1,25 @@
+package io.split.client;
+
+import org.apache.hc.client5.http.auth.AuthScope;
+import org.apache.hc.client5.http.auth.BearerToken;
+import org.apache.hc.client5.http.auth.Credentials;
+import org.apache.hc.core5.http.protocol.HttpContext;
+
+class HttpClientDynamicCredentials implements  org.apache.hc.client5.http.auth.CredentialsProvider {
+
+    private final ProxyRuntimeStorage _proxyRuntimeStorage;
+
+    public HttpClientDynamicCredentials (ProxyRuntimeStorage proxyRuntimeStorage) {
+        _proxyRuntimeStorage = proxyRuntimeStorage;
+    }
+
+    @Override
+    public Credentials getCredentials(AuthScope authScope, HttpContext context) {
+
+        // This Provider is invoked every time a request is made.
+        // This should invoke a user-custom provider responsible for:
+        return new BearerToken(_proxyRuntimeStorage.getJwtToken());
+    }
+
+}
+
diff --git a/client/src/main/java/io/split/client/ProxyRuntimeStorage.java b/client/src/main/java/io/split/client/ProxyRuntimeStorage.java
new file mode 100644
index 00000000..e640be64
--- /dev/null
+++ b/client/src/main/java/io/split/client/ProxyRuntimeStorage.java
@@ -0,0 +1,10 @@
+package io.split.client;
+
+public interface ProxyRuntimeStorage
+{
+    /**
+     * Get the additional headers needed for all http operations
+     * @return HashMap of addition headers
+     */
+    String getJwtToken();
+}
diff --git a/client/src/main/java/io/split/client/SplitClientConfig.java b/client/src/main/java/io/split/client/SplitClientConfig.java
index 6c388b2d..668eb7c3 100644
--- a/client/src/main/java/io/split/client/SplitClientConfig.java
+++ b/client/src/main/java/io/split/client/SplitClientConfig.java
@@ -91,7 +91,7 @@ public static class HttpScheme {
     private final HttpHost _proxy;
     private final String _proxyUsername;
     private final String _proxyPassword;
-    private final String _proxyToken;
+    private final ProxyRuntimeStorage _proxyRuntimeStorage;
     private final ProxyMTLSAuth _proxyMtlsAuth;
 
     // To be set during startup
@@ -126,7 +126,7 @@ private SplitClientConfig(String endpoint,
                               HttpHost proxy,
                               String proxyUsername,
                               String proxyPassword,
-                              String proxyToken,
+                              ProxyRuntimeStorage proxyRuntimeStorage,
                               ProxyMTLSAuth proxyMtlsAuth,
                               int eventsQueueSize,
                               long eventSendIntervalInMillis,
@@ -181,7 +181,7 @@ private SplitClientConfig(String endpoint,
         _proxy = proxy;
         _proxyUsername = proxyUsername;
         _proxyPassword = proxyPassword;
-        _proxyToken = proxyToken;
+        _proxyRuntimeStorage = proxyRuntimeStorage;
         _proxyMtlsAuth = proxyMtlsAuth;
         _eventsQueueSize = eventsQueueSize;
         _eventSendIntervalInMillis = eventSendIntervalInMillis;
@@ -314,8 +314,8 @@ public String proxyPassword() {
         return _proxyPassword;
     }
 
-    public String proxyToken() {
-        return _proxyToken;
+    public ProxyRuntimeStorage proxyRuntimeStorage() {
+        return _proxyRuntimeStorage;
     }
 
     public ProxyMTLSAuth proxyMTLSAuth() {
@@ -463,7 +463,7 @@ public static final class Builder {
         private String _proxyScheme = HttpScheme.HTTP;
         private String _proxyUsername;
         private String _proxyPassword;
-        private String _proxyToken;
+        private ProxyRuntimeStorage _proxyRuntimeStorage;
         private ProxyMTLSAuth _proxyMtlsAuth;
         private int _eventsQueueSize = 500;
         private long _eventSendIntervalInMillis = 30 * (long)1000;
@@ -813,11 +813,11 @@ public Builder proxyPassword(String proxyPassword) {
         /**
          * Set the token for authentication against the proxy (if proxy settings are enabled). (Optional).
          *
-         * @param proxyToken
+         * @param proxyRuntimeStorage
          * @return this builder
          */
-        public Builder proxyToken(String proxyToken) {
-            _proxyToken = proxyToken;
+        public Builder proxyRuntimeStorage(ProxyRuntimeStorage proxyRuntimeStorage) {
+            _proxyRuntimeStorage = proxyRuntimeStorage;
             return this;
         }
 
@@ -1161,11 +1161,11 @@ private void verifyProxy() {
                 throw new IllegalArgumentException("Proxy scheme must be either http or https.");
             }
 
-            if (_proxyUsername == null && _proxyToken == null && _proxyMtlsAuth == null) {
+            if (_proxyUsername == null && _proxyRuntimeStorage == null && _proxyMtlsAuth == null) {
                 return;
             }
 
-            if (_proxyUsername != null && _proxyToken != null) {
+            if (_proxyUsername != null && _proxyRuntimeStorage != null) {
                 throw new IllegalArgumentException("Proxy user and Proxy token params are updated, set only one param.");
             }
 
@@ -1173,7 +1173,7 @@ private void verifyProxy() {
                 throw new IllegalArgumentException("Proxy user and Proxy mTLS params are updated, set only one param.");
             }
 
-            if (_proxyToken != null && _proxyMtlsAuth != null) {
+            if (_proxyRuntimeStorage != null && _proxyMtlsAuth != null) {
                 throw new IllegalArgumentException("Proxy token and Proxy mTLS params are updated, set only one param.");
             }
 
@@ -1223,7 +1223,7 @@ public SplitClientConfig build() {
                     proxy(),
                     _proxyUsername,
                     _proxyPassword,
-                    _proxyToken,
+                    _proxyRuntimeStorage,
                     _proxyMtlsAuth,
                     _eventsQueueSize,
                     _eventSendIntervalInMillis,
diff --git a/client/src/main/java/io/split/client/SplitFactoryImpl.java b/client/src/main/java/io/split/client/SplitFactoryImpl.java
index 2e1ffe78..b5b3dc80 100644
--- a/client/src/main/java/io/split/client/SplitFactoryImpl.java
+++ b/client/src/main/java/io/split/client/SplitFactoryImpl.java
@@ -92,7 +92,6 @@
 import io.split.telemetry.synchronizer.TelemetrySynchronizer;
 
 import org.apache.hc.client5.http.auth.AuthScope;
-import org.apache.hc.client5.http.auth.BearerToken;
 import org.apache.hc.client5.http.auth.Credentials;
 import org.apache.hc.client5.http.auth.UsernamePasswordCredentials;
 import org.apache.hc.client5.http.config.RequestConfig;
@@ -635,13 +634,9 @@ private static HttpClientBuilder setupProxy(HttpClientBuilder httpClientbuilder,
             httpClientbuilder.setDefaultCredentialsProvider(credsProvider);
         }
 
-        if (config.proxyToken() != null) {
+        if (config.proxyRuntimeStorage().getJwtToken() != null) {
             _log.debug("Proxy setup using token");
-            BasicCredentialsProvider credsProvider = new BasicCredentialsProvider();
-            AuthScope siteScope = new AuthScope(config.proxy().getHostName(), config.proxy().getPort());
-            Credentials siteCreds = new BearerToken(config.proxyToken());
-            credsProvider.setCredentials(siteScope, siteCreds);
-            httpClientbuilder.setDefaultCredentialsProvider(credsProvider);
+            httpClientbuilder.setDefaultCredentialsProvider(new HttpClientDynamicCredentials(config.proxyRuntimeStorage()));
         }
 
         return httpClientbuilder;
diff --git a/client/src/test/java/io/split/client/SplitClientConfigTest.java b/client/src/test/java/io/split/client/SplitClientConfigTest.java
index ebb4803b..131d8330 100644
--- a/client/src/test/java/io/split/client/SplitClientConfigTest.java
+++ b/client/src/test/java/io/split/client/SplitClientConfigTest.java
@@ -273,12 +273,19 @@ public void checkProxyParams() {
         Assert.assertEquals("user", config.proxyUsername());
         Assert.assertEquals("pass", config.proxyPassword());
 
+        ProxyRuntimeStorage proxyRuntimeStorage = new ProxyRuntimeStorage() {
+            @Override
+            public String getJwtToken() {
+                return "my-token";
+            }
+        };
+
         config = SplitClientConfig.builder()
                 .proxyHost("proxy-host")
                 .proxyPort(8888)
-                .proxyToken("my-token")
+                .proxyRuntimeStorage(proxyRuntimeStorage)
                 .build();
-        Assert.assertEquals("my-token", config.proxyToken());
+        Assert.assertEquals(proxyRuntimeStorage, config.proxyRuntimeStorage());
 
         config = SplitClientConfig.builder()
                 .proxyHost("proxy-host")
@@ -300,12 +307,19 @@ public void cannotUseInvalidHttpScheme() {
 
     @Test(expected = IllegalArgumentException.class)
     public void cannotUseProxyTokenAndProxyUsername() {
+        ProxyRuntimeStorage proxyRuntimeStorage = new ProxyRuntimeStorage() {
+            @Override
+            public String getJwtToken() {
+                return "my-token";
+            }
+        };
+
         SplitClientConfig.builder()
                 .proxyHost("proxy-host")
                 .proxyPort(8888)
                 .proxyUsername("user")
                 .proxyPassword("pass")
-                .proxyToken("my-token")
+                .proxyRuntimeStorage(proxyRuntimeStorage)
                 .build();
     }
 
@@ -322,10 +336,17 @@ public void cannotUseProxyUserAndProxyMtls() {
 
     @Test(expected = IllegalArgumentException.class)
     public void cannotUseProxyTokenAndProxyMtls() {
+        ProxyRuntimeStorage proxyRuntimeStorage = new ProxyRuntimeStorage() {
+            @Override
+            public String getJwtToken() {
+                return "my-token";
+            }
+        };
+
         SplitClientConfig.builder()
                 .proxyHost("proxy-host")
                 .proxyPort(8888)
-                .proxyToken("my-token")
+                .proxyRuntimeStorage(proxyRuntimeStorage)
                 .proxyMtlsAuth(new ProxyMTLSAuth.Builder().proxyP12File("path/to/file").proxyP12FilePassKey("pass-key").build())
                 .build();
     }
diff --git a/client/src/test/java/io/split/client/SplitFactoryImplTest.java b/client/src/test/java/io/split/client/SplitFactoryImplTest.java
index 4597b615..62018ed7 100644
--- a/client/src/test/java/io/split/client/SplitFactoryImplTest.java
+++ b/client/src/test/java/io/split/client/SplitFactoryImplTest.java
@@ -21,6 +21,7 @@
 import org.apache.hc.core5.http.config.Registry;
 import org.awaitility.Awaitility;
 import org.junit.Assert;
+import org.junit.Ignore;
 import org.junit.Test;
 import org.mockito.Mockito;
 import static org.mockito.Mockito.when;
@@ -151,6 +152,7 @@ public void testFactoryInstantiationWithProxyCredentials() throws Exception {
         splitFactory.destroy();
     }
 
+    @Ignore
     @Test
     public void testFactoryInstantiationWithProxyToken() throws Exception {
         SplitClientConfig splitClientConfig = SplitClientConfig.builder()
@@ -162,7 +164,7 @@ public void testFactoryInstantiationWithProxyToken() throws Exception {
                 .authServiceURL(AUTH_SERVICE)
                 .setBlockUntilReadyTimeout(1000)
                 .proxyPort(6060)
-                .proxyToken("123456789")
+//                .proxyToken("123456789")
                 .proxyHost(ENDPOINT)
                 .build();
         SplitFactoryImpl splitFactory2 = new SplitFactoryImpl(API_KEY, splitClientConfig);

From 4a86a3d556dd368ec6767baeeff0e30bb0b90609 Mon Sep 17 00:00:00 2001
From: Bilal Al-Shahwany <bilal.al-shahwany@harness.io>
Date: Mon, 30 Jun 2025 13:56:53 -0700
Subject: [PATCH 08/18] disable test

---
 client/src/main/java/io/split/client/SplitFactoryImpl.java   | 2 +-
 .../src/test/java/io/split/client/SplitFactoryImplTest.java  | 5 ++---
 2 files changed, 3 insertions(+), 4 deletions(-)

diff --git a/client/src/main/java/io/split/client/SplitFactoryImpl.java b/client/src/main/java/io/split/client/SplitFactoryImpl.java
index b5b3dc80..64874c36 100644
--- a/client/src/main/java/io/split/client/SplitFactoryImpl.java
+++ b/client/src/main/java/io/split/client/SplitFactoryImpl.java
@@ -634,7 +634,7 @@ private static HttpClientBuilder setupProxy(HttpClientBuilder httpClientbuilder,
             httpClientbuilder.setDefaultCredentialsProvider(credsProvider);
         }
 
-        if (config.proxyRuntimeStorage().getJwtToken() != null) {
+        if (config.proxyRuntimeStorage() != null) {
             _log.debug("Proxy setup using token");
             httpClientbuilder.setDefaultCredentialsProvider(new HttpClientDynamicCredentials(config.proxyRuntimeStorage()));
         }
diff --git a/client/src/test/java/io/split/client/SplitFactoryImplTest.java b/client/src/test/java/io/split/client/SplitFactoryImplTest.java
index 62018ed7..5731b856 100644
--- a/client/src/test/java/io/split/client/SplitFactoryImplTest.java
+++ b/client/src/test/java/io/split/client/SplitFactoryImplTest.java
@@ -151,8 +151,7 @@ public void testFactoryInstantiationWithProxyCredentials() throws Exception {
 
         splitFactory.destroy();
     }
-
-    @Ignore
+/*
     @Test
     public void testFactoryInstantiationWithProxyToken() throws Exception {
         SplitClientConfig splitClientConfig = SplitClientConfig.builder()
@@ -191,7 +190,7 @@ public void testFactoryInstantiationWithProxyToken() throws Exception {
 
         splitFactory2.destroy();
     }
-
+*/
     @Test
     public void testFactoryInstantiationWithProxyMtls() throws Exception {
         SplitClientConfig splitClientConfig = SplitClientConfig.builder()

From a5a92f8c705233d18b26d39a863dc115bc694799 Mon Sep 17 00:00:00 2001
From: Bilal Al-Shahwany <bilal.al-shahwany@harness.io>
Date: Mon, 30 Jun 2025 14:07:28 -0700
Subject: [PATCH 09/18] disabled test

---
 .../java/io/split/client/SplitFactoryImplTest.java  | 13 ++++++++++---
 1 file changed, 10 insertions(+), 3 deletions(-)

diff --git a/client/src/test/java/io/split/client/SplitFactoryImplTest.java b/client/src/test/java/io/split/client/SplitFactoryImplTest.java
index 5731b856..2b302bad 100644
--- a/client/src/test/java/io/split/client/SplitFactoryImplTest.java
+++ b/client/src/test/java/io/split/client/SplitFactoryImplTest.java
@@ -151,9 +151,16 @@ public void testFactoryInstantiationWithProxyCredentials() throws Exception {
 
         splitFactory.destroy();
     }
-/*
+
     @Test
     public void testFactoryInstantiationWithProxyToken() throws Exception {
+        class MyProxyRuntimeStorage implements ProxyRuntimeStorage {
+            @Override
+            public String getJwtToken() {
+                return "123456789";
+            }
+        };
+
         SplitClientConfig splitClientConfig = SplitClientConfig.builder()
                 .enableDebug()
                 .impressionsMode(ImpressionsManager.Mode.DEBUG)
@@ -163,7 +170,7 @@ public void testFactoryInstantiationWithProxyToken() throws Exception {
                 .authServiceURL(AUTH_SERVICE)
                 .setBlockUntilReadyTimeout(1000)
                 .proxyPort(6060)
-//                .proxyToken("123456789")
+                .proxyRuntimeStorage(new MyProxyRuntimeStorage())
                 .proxyHost(ENDPOINT)
                 .build();
         SplitFactoryImpl splitFactory2 = new SplitFactoryImpl(API_KEY, splitClientConfig);
@@ -190,7 +197,7 @@ public void testFactoryInstantiationWithProxyToken() throws Exception {
 
         splitFactory2.destroy();
     }
-*/
+
     @Test
     public void testFactoryInstantiationWithProxyMtls() throws Exception {
         SplitClientConfig splitClientConfig = SplitClientConfig.builder()

From 32f5a117d78c580d6f6ec281ba0c1fcd62314756 Mon Sep 17 00:00:00 2001
From: Bilal Al-Shahwany <bilal.al-shahwany@harness.io>
Date: Mon, 30 Jun 2025 14:07:57 -0700
Subject: [PATCH 10/18] disabled test

---
 .../src/test/java/io/split/client/SplitFactoryImplTest.java   | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/client/src/test/java/io/split/client/SplitFactoryImplTest.java b/client/src/test/java/io/split/client/SplitFactoryImplTest.java
index 2b302bad..008df7f4 100644
--- a/client/src/test/java/io/split/client/SplitFactoryImplTest.java
+++ b/client/src/test/java/io/split/client/SplitFactoryImplTest.java
@@ -151,7 +151,7 @@ public void testFactoryInstantiationWithProxyCredentials() throws Exception {
 
         splitFactory.destroy();
     }
-
+/*
     @Test
     public void testFactoryInstantiationWithProxyToken() throws Exception {
         class MyProxyRuntimeStorage implements ProxyRuntimeStorage {
@@ -197,7 +197,7 @@ public String getJwtToken() {
 
         splitFactory2.destroy();
     }
-
+*/
     @Test
     public void testFactoryInstantiationWithProxyMtls() throws Exception {
         SplitClientConfig splitClientConfig = SplitClientConfig.builder()

From ce3aec5cdcb92d47a18df4ae4b87a890b9c650ed Mon Sep 17 00:00:00 2001
From: Bilal Al-Shahwany <bilal.al-shahwany@harness.io>
Date: Mon, 30 Jun 2025 14:30:42 -0700
Subject: [PATCH 11/18] renamed interface

---
 .../client/HttpClientDynamicCredentials.java  |  8 +++---
 ...Storage.java => ProxyRuntimeProvider.java} |  2 +-
 .../io/split/client/SplitClientConfig.java    | 26 +++++++++----------
 .../split/client/SplitClientConfigTest.java   | 14 +++++-----
 4 files changed, 25 insertions(+), 25 deletions(-)
 rename client/src/main/java/io/split/client/{ProxyRuntimeStorage.java => ProxyRuntimeProvider.java} (82%)

diff --git a/client/src/main/java/io/split/client/HttpClientDynamicCredentials.java b/client/src/main/java/io/split/client/HttpClientDynamicCredentials.java
index f7c84f6b..bdf0cff8 100644
--- a/client/src/main/java/io/split/client/HttpClientDynamicCredentials.java
+++ b/client/src/main/java/io/split/client/HttpClientDynamicCredentials.java
@@ -7,10 +7,10 @@
 
 class HttpClientDynamicCredentials implements  org.apache.hc.client5.http.auth.CredentialsProvider {
 
-    private final ProxyRuntimeStorage _proxyRuntimeStorage;
+    private final ProxyRuntimeProvider _proxyRuntimeProvider;
 
-    public HttpClientDynamicCredentials (ProxyRuntimeStorage proxyRuntimeStorage) {
-        _proxyRuntimeStorage = proxyRuntimeStorage;
+    public HttpClientDynamicCredentials (ProxyRuntimeProvider proxyRuntimeProvider) {
+        _proxyRuntimeProvider = proxyRuntimeProvider;
     }
 
     @Override
@@ -18,7 +18,7 @@ public Credentials getCredentials(AuthScope authScope, HttpContext context) {
 
         // This Provider is invoked every time a request is made.
         // This should invoke a user-custom provider responsible for:
-        return new BearerToken(_proxyRuntimeStorage.getJwtToken());
+        return new BearerToken(_proxyRuntimeProvider.getJwtToken());
     }
 
 }
diff --git a/client/src/main/java/io/split/client/ProxyRuntimeStorage.java b/client/src/main/java/io/split/client/ProxyRuntimeProvider.java
similarity index 82%
rename from client/src/main/java/io/split/client/ProxyRuntimeStorage.java
rename to client/src/main/java/io/split/client/ProxyRuntimeProvider.java
index e640be64..ca30c7f2 100644
--- a/client/src/main/java/io/split/client/ProxyRuntimeStorage.java
+++ b/client/src/main/java/io/split/client/ProxyRuntimeProvider.java
@@ -1,6 +1,6 @@
 package io.split.client;
 
-public interface ProxyRuntimeStorage
+public interface ProxyRuntimeProvider
 {
     /**
      * Get the additional headers needed for all http operations
diff --git a/client/src/main/java/io/split/client/SplitClientConfig.java b/client/src/main/java/io/split/client/SplitClientConfig.java
index 668eb7c3..ef798847 100644
--- a/client/src/main/java/io/split/client/SplitClientConfig.java
+++ b/client/src/main/java/io/split/client/SplitClientConfig.java
@@ -91,7 +91,7 @@ public static class HttpScheme {
     private final HttpHost _proxy;
     private final String _proxyUsername;
     private final String _proxyPassword;
-    private final ProxyRuntimeStorage _proxyRuntimeStorage;
+    private final ProxyRuntimeProvider _proxyRuntimeProvider;
     private final ProxyMTLSAuth _proxyMtlsAuth;
 
     // To be set during startup
@@ -126,7 +126,7 @@ private SplitClientConfig(String endpoint,
                               HttpHost proxy,
                               String proxyUsername,
                               String proxyPassword,
-                              ProxyRuntimeStorage proxyRuntimeStorage,
+                              ProxyRuntimeProvider proxyRuntimeProvider,
                               ProxyMTLSAuth proxyMtlsAuth,
                               int eventsQueueSize,
                               long eventSendIntervalInMillis,
@@ -181,7 +181,7 @@ private SplitClientConfig(String endpoint,
         _proxy = proxy;
         _proxyUsername = proxyUsername;
         _proxyPassword = proxyPassword;
-        _proxyRuntimeStorage = proxyRuntimeStorage;
+        _proxyRuntimeProvider = proxyRuntimeProvider;
         _proxyMtlsAuth = proxyMtlsAuth;
         _eventsQueueSize = eventsQueueSize;
         _eventSendIntervalInMillis = eventSendIntervalInMillis;
@@ -314,8 +314,8 @@ public String proxyPassword() {
         return _proxyPassword;
     }
 
-    public ProxyRuntimeStorage proxyRuntimeStorage() {
-        return _proxyRuntimeStorage;
+    public ProxyRuntimeProvider proxyRuntimeStorage() {
+        return _proxyRuntimeProvider;
     }
 
     public ProxyMTLSAuth proxyMTLSAuth() {
@@ -463,7 +463,7 @@ public static final class Builder {
         private String _proxyScheme = HttpScheme.HTTP;
         private String _proxyUsername;
         private String _proxyPassword;
-        private ProxyRuntimeStorage _proxyRuntimeStorage;
+        private ProxyRuntimeProvider _proxyRuntimeProvider;
         private ProxyMTLSAuth _proxyMtlsAuth;
         private int _eventsQueueSize = 500;
         private long _eventSendIntervalInMillis = 30 * (long)1000;
@@ -813,11 +813,11 @@ public Builder proxyPassword(String proxyPassword) {
         /**
          * Set the token for authentication against the proxy (if proxy settings are enabled). (Optional).
          *
-         * @param proxyRuntimeStorage
+         * @param proxyRuntimeProvider
          * @return this builder
          */
-        public Builder proxyRuntimeStorage(ProxyRuntimeStorage proxyRuntimeStorage) {
-            _proxyRuntimeStorage = proxyRuntimeStorage;
+        public Builder proxyRuntimeStorage(ProxyRuntimeProvider proxyRuntimeProvider) {
+            _proxyRuntimeProvider = proxyRuntimeProvider;
             return this;
         }
 
@@ -1161,11 +1161,11 @@ private void verifyProxy() {
                 throw new IllegalArgumentException("Proxy scheme must be either http or https.");
             }
 
-            if (_proxyUsername == null && _proxyRuntimeStorage == null && _proxyMtlsAuth == null) {
+            if (_proxyUsername == null && _proxyRuntimeProvider == null && _proxyMtlsAuth == null) {
                 return;
             }
 
-            if (_proxyUsername != null && _proxyRuntimeStorage != null) {
+            if (_proxyUsername != null && _proxyRuntimeProvider != null) {
                 throw new IllegalArgumentException("Proxy user and Proxy token params are updated, set only one param.");
             }
 
@@ -1173,7 +1173,7 @@ private void verifyProxy() {
                 throw new IllegalArgumentException("Proxy user and Proxy mTLS params are updated, set only one param.");
             }
 
-            if (_proxyRuntimeStorage != null && _proxyMtlsAuth != null) {
+            if (_proxyRuntimeProvider != null && _proxyMtlsAuth != null) {
                 throw new IllegalArgumentException("Proxy token and Proxy mTLS params are updated, set only one param.");
             }
 
@@ -1223,7 +1223,7 @@ public SplitClientConfig build() {
                     proxy(),
                     _proxyUsername,
                     _proxyPassword,
-                    _proxyRuntimeStorage,
+                        _proxyRuntimeProvider,
                     _proxyMtlsAuth,
                     _eventsQueueSize,
                     _eventSendIntervalInMillis,
diff --git a/client/src/test/java/io/split/client/SplitClientConfigTest.java b/client/src/test/java/io/split/client/SplitClientConfigTest.java
index 131d8330..25de5498 100644
--- a/client/src/test/java/io/split/client/SplitClientConfigTest.java
+++ b/client/src/test/java/io/split/client/SplitClientConfigTest.java
@@ -273,7 +273,7 @@ public void checkProxyParams() {
         Assert.assertEquals("user", config.proxyUsername());
         Assert.assertEquals("pass", config.proxyPassword());
 
-        ProxyRuntimeStorage proxyRuntimeStorage = new ProxyRuntimeStorage() {
+        ProxyRuntimeProvider proxyRuntimeProvider = new ProxyRuntimeProvider() {
             @Override
             public String getJwtToken() {
                 return "my-token";
@@ -283,9 +283,9 @@ public String getJwtToken() {
         config = SplitClientConfig.builder()
                 .proxyHost("proxy-host")
                 .proxyPort(8888)
-                .proxyRuntimeStorage(proxyRuntimeStorage)
+                .proxyRuntimeStorage(proxyRuntimeProvider)
                 .build();
-        Assert.assertEquals(proxyRuntimeStorage, config.proxyRuntimeStorage());
+        Assert.assertEquals(proxyRuntimeProvider, config.proxyRuntimeStorage());
 
         config = SplitClientConfig.builder()
                 .proxyHost("proxy-host")
@@ -307,7 +307,7 @@ public void cannotUseInvalidHttpScheme() {
 
     @Test(expected = IllegalArgumentException.class)
     public void cannotUseProxyTokenAndProxyUsername() {
-        ProxyRuntimeStorage proxyRuntimeStorage = new ProxyRuntimeStorage() {
+        ProxyRuntimeProvider proxyRuntimeProvider = new ProxyRuntimeProvider() {
             @Override
             public String getJwtToken() {
                 return "my-token";
@@ -319,7 +319,7 @@ public String getJwtToken() {
                 .proxyPort(8888)
                 .proxyUsername("user")
                 .proxyPassword("pass")
-                .proxyRuntimeStorage(proxyRuntimeStorage)
+                .proxyRuntimeStorage(proxyRuntimeProvider)
                 .build();
     }
 
@@ -336,7 +336,7 @@ public void cannotUseProxyUserAndProxyMtls() {
 
     @Test(expected = IllegalArgumentException.class)
     public void cannotUseProxyTokenAndProxyMtls() {
-        ProxyRuntimeStorage proxyRuntimeStorage = new ProxyRuntimeStorage() {
+        ProxyRuntimeProvider proxyRuntimeProvider = new ProxyRuntimeProvider() {
             @Override
             public String getJwtToken() {
                 return "my-token";
@@ -346,7 +346,7 @@ public String getJwtToken() {
         SplitClientConfig.builder()
                 .proxyHost("proxy-host")
                 .proxyPort(8888)
-                .proxyRuntimeStorage(proxyRuntimeStorage)
+                .proxyRuntimeStorage(proxyRuntimeProvider)
                 .proxyMtlsAuth(new ProxyMTLSAuth.Builder().proxyP12File("path/to/file").proxyP12FilePassKey("pass-key").build())
                 .build();
     }

From 4662ee7fe1296c80d248583488116e24b2345e9c Mon Sep 17 00:00:00 2001
From: Bilal Al-Shahwany <bilal.al-shahwany@harness.io>
Date: Tue, 1 Jul 2025 08:22:48 -0700
Subject: [PATCH 12/18] Fixed config property and test

---
 .../io/split/client/SplitClientConfig.java     |  4 ++--
 .../java/io/split/client/SplitFactoryImpl.java |  4 ++--
 .../io/split/client/SplitClientConfigTest.java |  8 ++++----
 .../io/split/client/SplitFactoryImplTest.java  | 18 +++++++++---------
 4 files changed, 17 insertions(+), 17 deletions(-)

diff --git a/client/src/main/java/io/split/client/SplitClientConfig.java b/client/src/main/java/io/split/client/SplitClientConfig.java
index ef798847..ef75b2cc 100644
--- a/client/src/main/java/io/split/client/SplitClientConfig.java
+++ b/client/src/main/java/io/split/client/SplitClientConfig.java
@@ -314,7 +314,7 @@ public String proxyPassword() {
         return _proxyPassword;
     }
 
-    public ProxyRuntimeProvider proxyRuntimeStorage() {
+    public ProxyRuntimeProvider proxyRuntimeProvider() {
         return _proxyRuntimeProvider;
     }
 
@@ -816,7 +816,7 @@ public Builder proxyPassword(String proxyPassword) {
          * @param proxyRuntimeProvider
          * @return this builder
          */
-        public Builder proxyRuntimeStorage(ProxyRuntimeProvider proxyRuntimeProvider) {
+        public Builder proxyRuntimeProvider(ProxyRuntimeProvider proxyRuntimeProvider) {
             _proxyRuntimeProvider = proxyRuntimeProvider;
             return this;
         }
diff --git a/client/src/main/java/io/split/client/SplitFactoryImpl.java b/client/src/main/java/io/split/client/SplitFactoryImpl.java
index 64874c36..13d925ad 100644
--- a/client/src/main/java/io/split/client/SplitFactoryImpl.java
+++ b/client/src/main/java/io/split/client/SplitFactoryImpl.java
@@ -634,9 +634,9 @@ private static HttpClientBuilder setupProxy(HttpClientBuilder httpClientbuilder,
             httpClientbuilder.setDefaultCredentialsProvider(credsProvider);
         }
 
-        if (config.proxyRuntimeStorage() != null) {
+        if (config.proxyRuntimeProvider() != null) {
             _log.debug("Proxy setup using token");
-            httpClientbuilder.setDefaultCredentialsProvider(new HttpClientDynamicCredentials(config.proxyRuntimeStorage()));
+            httpClientbuilder.setDefaultCredentialsProvider(new HttpClientDynamicCredentials(config.proxyRuntimeProvider()));
         }
 
         return httpClientbuilder;
diff --git a/client/src/test/java/io/split/client/SplitClientConfigTest.java b/client/src/test/java/io/split/client/SplitClientConfigTest.java
index 25de5498..f72fb84f 100644
--- a/client/src/test/java/io/split/client/SplitClientConfigTest.java
+++ b/client/src/test/java/io/split/client/SplitClientConfigTest.java
@@ -283,9 +283,9 @@ public String getJwtToken() {
         config = SplitClientConfig.builder()
                 .proxyHost("proxy-host")
                 .proxyPort(8888)
-                .proxyRuntimeStorage(proxyRuntimeProvider)
+                .proxyRuntimeProvider(proxyRuntimeProvider)
                 .build();
-        Assert.assertEquals(proxyRuntimeProvider, config.proxyRuntimeStorage());
+        Assert.assertEquals(proxyRuntimeProvider, config.proxyRuntimeProvider());
 
         config = SplitClientConfig.builder()
                 .proxyHost("proxy-host")
@@ -319,7 +319,7 @@ public String getJwtToken() {
                 .proxyPort(8888)
                 .proxyUsername("user")
                 .proxyPassword("pass")
-                .proxyRuntimeStorage(proxyRuntimeProvider)
+                .proxyRuntimeProvider(proxyRuntimeProvider)
                 .build();
     }
 
@@ -346,7 +346,7 @@ public String getJwtToken() {
         SplitClientConfig.builder()
                 .proxyHost("proxy-host")
                 .proxyPort(8888)
-                .proxyRuntimeStorage(proxyRuntimeProvider)
+                .proxyRuntimeProvider(proxyRuntimeProvider)
                 .proxyMtlsAuth(new ProxyMTLSAuth.Builder().proxyP12File("path/to/file").proxyP12FilePassKey("pass-key").build())
                 .build();
     }
diff --git a/client/src/test/java/io/split/client/SplitFactoryImplTest.java b/client/src/test/java/io/split/client/SplitFactoryImplTest.java
index 008df7f4..072eed25 100644
--- a/client/src/test/java/io/split/client/SplitFactoryImplTest.java
+++ b/client/src/test/java/io/split/client/SplitFactoryImplTest.java
@@ -151,10 +151,10 @@ public void testFactoryInstantiationWithProxyCredentials() throws Exception {
 
         splitFactory.destroy();
     }
-/*
+
     @Test
     public void testFactoryInstantiationWithProxyToken() throws Exception {
-        class MyProxyRuntimeStorage implements ProxyRuntimeStorage {
+        class MyProxyRuntimeProvider implements ProxyRuntimeProvider {
             @Override
             public String getJwtToken() {
                 return "123456789";
@@ -170,7 +170,7 @@ public String getJwtToken() {
                 .authServiceURL(AUTH_SERVICE)
                 .setBlockUntilReadyTimeout(1000)
                 .proxyPort(6060)
-                .proxyRuntimeStorage(new MyProxyRuntimeStorage())
+                .proxyRuntimeProvider(new MyProxyRuntimeProvider())
                 .proxyHost(ENDPOINT)
                 .build();
         SplitFactoryImpl splitFactory2 = new SplitFactoryImpl(API_KEY, splitClientConfig);
@@ -187,17 +187,17 @@ public String getJwtToken() {
 
         Field credentialsProviderField2 = InternalHttp2.getDeclaredField("credentialsProvider");
         credentialsProviderField2.setAccessible(true);
-        BasicCredentialsProvider credentialsProvider2 = (BasicCredentialsProvider) credentialsProviderField2.get(InternalHttp2.cast(httpClientField2.get(client2)));
+        HttpClientDynamicCredentials credentialsProvider2 = (HttpClientDynamicCredentials) credentialsProviderField2.get(InternalHttp2.cast(httpClientField2.get(client2)));
 
-        Field credMapField2 = BasicCredentialsProvider.class.getDeclaredField("credMap");
-        credMapField2.setAccessible(true);
-        ConcurrentHashMap<AuthScope, BearerToken> credMap2 = (ConcurrentHashMap) credMapField2.get(credentialsProvider2);
+        Field proxyRuntimeField = HttpClientDynamicCredentials.class.getDeclaredField("_proxyRuntimeProvider");
+        proxyRuntimeField.setAccessible(true);
+        MyProxyRuntimeProvider proxyRuntime = (MyProxyRuntimeProvider) proxyRuntimeField.get(credentialsProvider2);
 
-        Assert.assertEquals("123456789", credMap2.entrySet().stream().iterator().next().getValue().getToken());
+        assertNotNull("123456789", proxyRuntime.getJwtToken());
 
         splitFactory2.destroy();
     }
-*/
+
     @Test
     public void testFactoryInstantiationWithProxyMtls() throws Exception {
         SplitClientConfig splitClientConfig = SplitClientConfig.builder()

From 61fe715491fb14ef91aa55aabc16fa82192c188f Mon Sep 17 00:00:00 2001
From: Bilal Al-Shahwany <bilal.al-shahwany@harness.io>
Date: Tue, 1 Jul 2025 08:54:01 -0700
Subject: [PATCH 13/18] Rename config field

---
 .../client/HttpClientDynamicCredentials.java  |   8 +-
 ...der.java => ProxyCredentialsProvider.java} |   2 +-
 .../io/split/client/SplitClientConfig.java    |  26 +-
 .../io/split/client/SplitFactoryImpl.java     |   4 +-
 .../split/client/SplitClientConfigTest.java   |  14 +-
 .../io/split/client/SplitFactoryImplTest.java |  10 +-
 testing/.github/CODEOWNERS                    |   1 +
 .../linter/checkstyle-suppressions.xml        |   9 +
 testing/.github/linter/google-java-style.xml  | 380 ++++++++++++++++++
 9 files changed, 421 insertions(+), 33 deletions(-)
 rename client/src/main/java/io/split/client/{ProxyRuntimeProvider.java => ProxyCredentialsProvider.java} (81%)
 create mode 100644 testing/.github/CODEOWNERS
 create mode 100644 testing/.github/linter/checkstyle-suppressions.xml
 create mode 100644 testing/.github/linter/google-java-style.xml

diff --git a/client/src/main/java/io/split/client/HttpClientDynamicCredentials.java b/client/src/main/java/io/split/client/HttpClientDynamicCredentials.java
index bdf0cff8..01a32362 100644
--- a/client/src/main/java/io/split/client/HttpClientDynamicCredentials.java
+++ b/client/src/main/java/io/split/client/HttpClientDynamicCredentials.java
@@ -7,10 +7,10 @@
 
 class HttpClientDynamicCredentials implements  org.apache.hc.client5.http.auth.CredentialsProvider {
 
-    private final ProxyRuntimeProvider _proxyRuntimeProvider;
+    private final ProxyCredentialsProvider _proxyCredentialsProvider;
 
-    public HttpClientDynamicCredentials (ProxyRuntimeProvider proxyRuntimeProvider) {
-        _proxyRuntimeProvider = proxyRuntimeProvider;
+    public HttpClientDynamicCredentials (ProxyCredentialsProvider proxyCredentialsProvider) {
+        _proxyCredentialsProvider = proxyCredentialsProvider;
     }
 
     @Override
@@ -18,7 +18,7 @@ public Credentials getCredentials(AuthScope authScope, HttpContext context) {
 
         // This Provider is invoked every time a request is made.
         // This should invoke a user-custom provider responsible for:
-        return new BearerToken(_proxyRuntimeProvider.getJwtToken());
+        return new BearerToken(_proxyCredentialsProvider.getJwtToken());
     }
 
 }
diff --git a/client/src/main/java/io/split/client/ProxyRuntimeProvider.java b/client/src/main/java/io/split/client/ProxyCredentialsProvider.java
similarity index 81%
rename from client/src/main/java/io/split/client/ProxyRuntimeProvider.java
rename to client/src/main/java/io/split/client/ProxyCredentialsProvider.java
index ca30c7f2..6fb595bc 100644
--- a/client/src/main/java/io/split/client/ProxyRuntimeProvider.java
+++ b/client/src/main/java/io/split/client/ProxyCredentialsProvider.java
@@ -1,6 +1,6 @@
 package io.split.client;
 
-public interface ProxyRuntimeProvider
+public interface ProxyCredentialsProvider
 {
     /**
      * Get the additional headers needed for all http operations
diff --git a/client/src/main/java/io/split/client/SplitClientConfig.java b/client/src/main/java/io/split/client/SplitClientConfig.java
index ef75b2cc..603d5ef1 100644
--- a/client/src/main/java/io/split/client/SplitClientConfig.java
+++ b/client/src/main/java/io/split/client/SplitClientConfig.java
@@ -91,7 +91,7 @@ public static class HttpScheme {
     private final HttpHost _proxy;
     private final String _proxyUsername;
     private final String _proxyPassword;
-    private final ProxyRuntimeProvider _proxyRuntimeProvider;
+    private final ProxyCredentialsProvider _proxyCredentialsProvider;
     private final ProxyMTLSAuth _proxyMtlsAuth;
 
     // To be set during startup
@@ -126,7 +126,7 @@ private SplitClientConfig(String endpoint,
                               HttpHost proxy,
                               String proxyUsername,
                               String proxyPassword,
-                              ProxyRuntimeProvider proxyRuntimeProvider,
+                              ProxyCredentialsProvider proxyCredentialsProvider,
                               ProxyMTLSAuth proxyMtlsAuth,
                               int eventsQueueSize,
                               long eventSendIntervalInMillis,
@@ -181,7 +181,7 @@ private SplitClientConfig(String endpoint,
         _proxy = proxy;
         _proxyUsername = proxyUsername;
         _proxyPassword = proxyPassword;
-        _proxyRuntimeProvider = proxyRuntimeProvider;
+        _proxyCredentialsProvider = proxyCredentialsProvider;
         _proxyMtlsAuth = proxyMtlsAuth;
         _eventsQueueSize = eventsQueueSize;
         _eventSendIntervalInMillis = eventSendIntervalInMillis;
@@ -314,8 +314,8 @@ public String proxyPassword() {
         return _proxyPassword;
     }
 
-    public ProxyRuntimeProvider proxyRuntimeProvider() {
-        return _proxyRuntimeProvider;
+    public ProxyCredentialsProvider proxyCredentialsProvider() {
+        return _proxyCredentialsProvider;
     }
 
     public ProxyMTLSAuth proxyMTLSAuth() {
@@ -463,7 +463,7 @@ public static final class Builder {
         private String _proxyScheme = HttpScheme.HTTP;
         private String _proxyUsername;
         private String _proxyPassword;
-        private ProxyRuntimeProvider _proxyRuntimeProvider;
+        private ProxyCredentialsProvider _proxyCredentialsProvider;
         private ProxyMTLSAuth _proxyMtlsAuth;
         private int _eventsQueueSize = 500;
         private long _eventSendIntervalInMillis = 30 * (long)1000;
@@ -813,11 +813,11 @@ public Builder proxyPassword(String proxyPassword) {
         /**
          * Set the token for authentication against the proxy (if proxy settings are enabled). (Optional).
          *
-         * @param proxyRuntimeProvider
+         * @param proxyCredentialsProvider
          * @return this builder
          */
-        public Builder proxyRuntimeProvider(ProxyRuntimeProvider proxyRuntimeProvider) {
-            _proxyRuntimeProvider = proxyRuntimeProvider;
+        public Builder proxyCredentialsProvider(ProxyCredentialsProvider proxyCredentialsProvider) {
+            _proxyCredentialsProvider = proxyCredentialsProvider;
             return this;
         }
 
@@ -1161,11 +1161,11 @@ private void verifyProxy() {
                 throw new IllegalArgumentException("Proxy scheme must be either http or https.");
             }
 
-            if (_proxyUsername == null && _proxyRuntimeProvider == null && _proxyMtlsAuth == null) {
+            if (_proxyUsername == null && _proxyCredentialsProvider == null && _proxyMtlsAuth == null) {
                 return;
             }
 
-            if (_proxyUsername != null && _proxyRuntimeProvider != null) {
+            if (_proxyUsername != null && _proxyCredentialsProvider != null) {
                 throw new IllegalArgumentException("Proxy user and Proxy token params are updated, set only one param.");
             }
 
@@ -1173,7 +1173,7 @@ private void verifyProxy() {
                 throw new IllegalArgumentException("Proxy user and Proxy mTLS params are updated, set only one param.");
             }
 
-            if (_proxyRuntimeProvider != null && _proxyMtlsAuth != null) {
+            if (_proxyCredentialsProvider != null && _proxyMtlsAuth != null) {
                 throw new IllegalArgumentException("Proxy token and Proxy mTLS params are updated, set only one param.");
             }
 
@@ -1223,7 +1223,7 @@ public SplitClientConfig build() {
                     proxy(),
                     _proxyUsername,
                     _proxyPassword,
-                        _proxyRuntimeProvider,
+                        _proxyCredentialsProvider,
                     _proxyMtlsAuth,
                     _eventsQueueSize,
                     _eventSendIntervalInMillis,
diff --git a/client/src/main/java/io/split/client/SplitFactoryImpl.java b/client/src/main/java/io/split/client/SplitFactoryImpl.java
index 13d925ad..4da2f503 100644
--- a/client/src/main/java/io/split/client/SplitFactoryImpl.java
+++ b/client/src/main/java/io/split/client/SplitFactoryImpl.java
@@ -634,9 +634,9 @@ private static HttpClientBuilder setupProxy(HttpClientBuilder httpClientbuilder,
             httpClientbuilder.setDefaultCredentialsProvider(credsProvider);
         }
 
-        if (config.proxyRuntimeProvider() != null) {
+        if (config.proxyCredentialsProvider() != null) {
             _log.debug("Proxy setup using token");
-            httpClientbuilder.setDefaultCredentialsProvider(new HttpClientDynamicCredentials(config.proxyRuntimeProvider()));
+            httpClientbuilder.setDefaultCredentialsProvider(new HttpClientDynamicCredentials(config.proxyCredentialsProvider()));
         }
 
         return httpClientbuilder;
diff --git a/client/src/test/java/io/split/client/SplitClientConfigTest.java b/client/src/test/java/io/split/client/SplitClientConfigTest.java
index f72fb84f..81ad9913 100644
--- a/client/src/test/java/io/split/client/SplitClientConfigTest.java
+++ b/client/src/test/java/io/split/client/SplitClientConfigTest.java
@@ -273,7 +273,7 @@ public void checkProxyParams() {
         Assert.assertEquals("user", config.proxyUsername());
         Assert.assertEquals("pass", config.proxyPassword());
 
-        ProxyRuntimeProvider proxyRuntimeProvider = new ProxyRuntimeProvider() {
+        ProxyCredentialsProvider proxyCredentialsProvider = new ProxyCredentialsProvider() {
             @Override
             public String getJwtToken() {
                 return "my-token";
@@ -283,9 +283,9 @@ public String getJwtToken() {
         config = SplitClientConfig.builder()
                 .proxyHost("proxy-host")
                 .proxyPort(8888)
-                .proxyRuntimeProvider(proxyRuntimeProvider)
+                .proxyCredentialsProvider(proxyCredentialsProvider)
                 .build();
-        Assert.assertEquals(proxyRuntimeProvider, config.proxyRuntimeProvider());
+        Assert.assertEquals(proxyCredentialsProvider, config.proxyCredentialsProvider());
 
         config = SplitClientConfig.builder()
                 .proxyHost("proxy-host")
@@ -307,7 +307,7 @@ public void cannotUseInvalidHttpScheme() {
 
     @Test(expected = IllegalArgumentException.class)
     public void cannotUseProxyTokenAndProxyUsername() {
-        ProxyRuntimeProvider proxyRuntimeProvider = new ProxyRuntimeProvider() {
+        ProxyCredentialsProvider proxyCredentialsProvider = new ProxyCredentialsProvider() {
             @Override
             public String getJwtToken() {
                 return "my-token";
@@ -319,7 +319,7 @@ public String getJwtToken() {
                 .proxyPort(8888)
                 .proxyUsername("user")
                 .proxyPassword("pass")
-                .proxyRuntimeProvider(proxyRuntimeProvider)
+                .proxyCredentialsProvider(proxyCredentialsProvider)
                 .build();
     }
 
@@ -336,7 +336,7 @@ public void cannotUseProxyUserAndProxyMtls() {
 
     @Test(expected = IllegalArgumentException.class)
     public void cannotUseProxyTokenAndProxyMtls() {
-        ProxyRuntimeProvider proxyRuntimeProvider = new ProxyRuntimeProvider() {
+        ProxyCredentialsProvider proxyCredentialsProvider = new ProxyCredentialsProvider() {
             @Override
             public String getJwtToken() {
                 return "my-token";
@@ -346,7 +346,7 @@ public String getJwtToken() {
         SplitClientConfig.builder()
                 .proxyHost("proxy-host")
                 .proxyPort(8888)
-                .proxyRuntimeProvider(proxyRuntimeProvider)
+                .proxyCredentialsProvider(proxyCredentialsProvider)
                 .proxyMtlsAuth(new ProxyMTLSAuth.Builder().proxyP12File("path/to/file").proxyP12FilePassKey("pass-key").build())
                 .build();
     }
diff --git a/client/src/test/java/io/split/client/SplitFactoryImplTest.java b/client/src/test/java/io/split/client/SplitFactoryImplTest.java
index 072eed25..1214b246 100644
--- a/client/src/test/java/io/split/client/SplitFactoryImplTest.java
+++ b/client/src/test/java/io/split/client/SplitFactoryImplTest.java
@@ -11,7 +11,6 @@
 import io.split.telemetry.synchronizer.TelemetrySynchronizer;
 import junit.framework.TestCase;
 import org.apache.hc.client5.http.auth.AuthScope;
-import org.apache.hc.client5.http.auth.BearerToken;
 import org.apache.hc.client5.http.auth.UsernamePasswordCredentials;
 import org.apache.hc.client5.http.impl.auth.BasicCredentialsProvider;
 import org.apache.hc.client5.http.impl.io.DefaultHttpClientConnectionOperator;
@@ -21,7 +20,6 @@
 import org.apache.hc.core5.http.config.Registry;
 import org.awaitility.Awaitility;
 import org.junit.Assert;
-import org.junit.Ignore;
 import org.junit.Test;
 import org.mockito.Mockito;
 import static org.mockito.Mockito.when;
@@ -154,7 +152,7 @@ public void testFactoryInstantiationWithProxyCredentials() throws Exception {
 
     @Test
     public void testFactoryInstantiationWithProxyToken() throws Exception {
-        class MyProxyRuntimeProvider implements ProxyRuntimeProvider {
+        class MyProxyCredentialsProvider implements ProxyCredentialsProvider {
             @Override
             public String getJwtToken() {
                 return "123456789";
@@ -170,7 +168,7 @@ public String getJwtToken() {
                 .authServiceURL(AUTH_SERVICE)
                 .setBlockUntilReadyTimeout(1000)
                 .proxyPort(6060)
-                .proxyRuntimeProvider(new MyProxyRuntimeProvider())
+                .proxyCredentialsProvider(new MyProxyCredentialsProvider())
                 .proxyHost(ENDPOINT)
                 .build();
         SplitFactoryImpl splitFactory2 = new SplitFactoryImpl(API_KEY, splitClientConfig);
@@ -189,9 +187,9 @@ public String getJwtToken() {
         credentialsProviderField2.setAccessible(true);
         HttpClientDynamicCredentials credentialsProvider2 = (HttpClientDynamicCredentials) credentialsProviderField2.get(InternalHttp2.cast(httpClientField2.get(client2)));
 
-        Field proxyRuntimeField = HttpClientDynamicCredentials.class.getDeclaredField("_proxyRuntimeProvider");
+        Field proxyRuntimeField = HttpClientDynamicCredentials.class.getDeclaredField("_proxyCredentialsProvider");
         proxyRuntimeField.setAccessible(true);
-        MyProxyRuntimeProvider proxyRuntime = (MyProxyRuntimeProvider) proxyRuntimeField.get(credentialsProvider2);
+        MyProxyCredentialsProvider proxyRuntime = (MyProxyCredentialsProvider) proxyRuntimeField.get(credentialsProvider2);
 
         assertNotNull("123456789", proxyRuntime.getJwtToken());
 
diff --git a/testing/.github/CODEOWNERS b/testing/.github/CODEOWNERS
new file mode 100644
index 00000000..9e319810
--- /dev/null
+++ b/testing/.github/CODEOWNERS
@@ -0,0 +1 @@
+* @splitio/sdk
diff --git a/testing/.github/linter/checkstyle-suppressions.xml b/testing/.github/linter/checkstyle-suppressions.xml
new file mode 100644
index 00000000..81d23539
--- /dev/null
+++ b/testing/.github/linter/checkstyle-suppressions.xml
@@ -0,0 +1,9 @@
+<?xml version="1.0"?>
+
+<!DOCTYPE suppressions PUBLIC
+        "-//Checkstyle//DTD SuppressionFilter Configuration 1.2//EN"
+        "https://checkstyle.org/dtds/suppressions_1_2.dtd">
+
+<suppressions>
+    <suppress checks="LineLength" files=".*(test|it)[\\/]"/>
+</suppressions>
\ No newline at end of file
diff --git a/testing/.github/linter/google-java-style.xml b/testing/.github/linter/google-java-style.xml
new file mode 100644
index 00000000..e885305e
--- /dev/null
+++ b/testing/.github/linter/google-java-style.xml
@@ -0,0 +1,380 @@
+<?xml version="1.0"?>
+<!DOCTYPE module PUBLIC
+        "-//Checkstyle//DTD Checkstyle Configuration 1.3//EN"
+        "https://checkstyle.org/dtds/configuration_1_3.dtd">
+
+<!--
+    Checkstyle configuration that checks the Google coding conventions from Google Java Style
+    that can be found at https://google.github.io/styleguide/javaguide.html
+
+    Checkstyle is very configurable. Be sure to read the documentation at
+    http://checkstyle.org (or in your downloaded distribution).
+
+    To completely disable a check, just comment it out or delete it from the file.
+    To suppress certain violations please review suppression filters.
+
+    Authors: Max Vetrenko, Ruslan Diachenko, Roman Ivanov.
+ -->
+
+<module name="Checker">
+    <property name="charset" value="UTF-8"/>
+
+    <property name="severity" value="warning"/>
+
+    <property name="fileExtensions" value="java, properties, xml"/>
+    <!-- Excludes all 'module-info.java' files              -->
+    <!-- See https://checkstyle.org/filefilters/index.html -->
+    <module name="BeforeExecutionExclusionFileFilter">
+        <property name="fileNamePattern" value="module\-info\.java$"/>
+    </module>
+    <!-- https://checkstyle.org/filters/suppressionfilter.html -->
+    <module name="SuppressionFilter">
+        <property name="file" value="${org.checkstyle.google.suppressionfilter.config}"
+                  default="checkstyle-suppressions.xml" />
+        <property name="optional" value="true"/>
+    </module>
+
+    <!-- Checks for whitespace                               -->
+    <!-- See http://checkstyle.org/checks/whitespace/index.html -->
+    <module name="FileTabCharacter">
+        <property name="eachLine" value="true"/>
+    </module>
+
+    <module name="LineLength">
+        <property name="fileExtensions" value="java"/>
+        <property name="max" value="150"/>
+        <property name="ignorePattern" value="^package.*|^import.*|a href|href|http://|https://|ftp://"/>
+    </module>
+
+    <module name="TreeWalker">
+        <!--<module name="OuterTypeFilename"/>
+        <module name="IllegalTokenText">
+            <property name="tokens" value="STRING_LITERAL, CHAR_LITERAL"/>
+            <property name="format"
+                      value="\\u00(09|0(a|A)|0(c|C)|0(d|D)|22|27|5(C|c))|\\(0(10|11|12|14|15|42|47)|134)"/>
+            <property name="message"
+                      value="Consider using special escape sequence instead of octal value or Unicode escaped value."/>
+        </module>-->
+        <!--<module name="AvoidEscapedUnicodeCharacters">
+            <property name="allowEscapesForControlCharacters" value="true"/>
+            <property name="allowByTailComment" value="true"/>
+            <property name="allowNonPrintableEscapes" value="true"/>
+        </module>-->
+        <!--<module name="AvoidStarImport"/>
+        <module name="OneTopLevelClass"/>-->
+        <!--<module name="NoLineWrap">
+            <property name="tokens" value="PACKAGE_DEF, IMPORT, STATIC_IMPORT"/>
+        </module>-->
+        <!--<module name="EmptyBlock">
+            <property name="option" value="TEXT"/>
+            <property name="tokens"
+                      value="LITERAL_TRY, LITERAL_FINALLY, LITERAL_IF, LITERAL_ELSE"/>
+        </module>-->
+        <!--<module name="NeedBraces">
+            <property name="tokens"
+                      value="LITERAL_DO, LITERAL_ELSE, LITERAL_FOR, LITERAL_IF, LITERAL_WHILE"/>
+        </module>-->
+        <!--<module name="LeftCurly">
+            <property name="tokens"
+                      value="ANNOTATION_DEF, CLASS_DEF, CTOR_DEF, ENUM_CONSTANT_DEF, ENUM_DEF,
+                    INTERFACE_DEF, LAMBDA, LITERAL_CASE, LITERAL_CATCH, LITERAL_DEFAULT,
+                    LITERAL_DO, LITERAL_ELSE, LITERAL_FINALLY, LITERAL_FOR, LITERAL_IF,
+                    LITERAL_SYNCHRONIZED, LITERAL_TRY, LITERAL_WHILE, METHOD_DEF,
+                    OBJBLOCK, STATIC_INIT, RECORD_DEF, COMPACT_CTOR_DEF"/>
+        </module>-->
+        <!--<module name="RightCurly">
+            <property name="id" value="RightCurlySame"/>
+            <property name="tokens"
+                      value="LITERAL_TRY, LITERAL_CATCH, LITERAL_FINALLY, LITERAL_IF, LITERAL_ELSE,
+                    LITERAL_DO"/>
+        </module>-->
+        <!--<module name="RightCurly">
+            <property name="id" value="RightCurlyAlone"/>
+            <property name="option" value="alone"/>
+            <property name="tokens"
+                      value="CLASS_DEF, METHOD_DEF, CTOR_DEF, LITERAL_FOR, LITERAL_WHILE, STATIC_INIT,
+                    INSTANCE_INIT, ANNOTATION_DEF, ENUM_DEF, INTERFACE_DEF, RECORD_DEF,
+                    COMPACT_CTOR_DEF"/>
+        </module>-->
+        <!--<module name="SuppressionXpathSingleFilter">
+            &lt;!&ndash; suppresion is required till https://github.com/checkstyle/checkstyle/issues/7541 &ndash;&gt;
+            <property name="id" value="RightCurlyAlone"/>
+            <property name="query" value="//RCURLY[parent::SLIST[count(./*)=1]
+                                     or preceding-sibling::*[last()][self::LCURLY]]"/>
+        </module>-->
+        <!--<module name="WhitespaceAfter">
+            <property name="tokens"
+                      value="COMMA, SEMI, TYPECAST, LITERAL_IF, LITERAL_ELSE, LITERAL_RETURN,
+                    LITERAL_WHILE, LITERAL_DO, LITERAL_FOR, LITERAL_FINALLY, DO_WHILE, ELLIPSIS,
+                    LITERAL_SYNCHRONIZED, LITERAL_TRY, LITERAL_CATCH, LAMBDA,
+                    LITERAL_YIELD, LITERAL_CASE"/>
+        </module>-->
+        <!--<module name="WhitespaceAround">
+            <property name="allowEmptyConstructors" value="true"/>
+            <property name="allowEmptyLambdas" value="true"/>
+            <property name="allowEmptyMethods" value="true"/>
+            <property name="allowEmptyTypes" value="true"/>
+            <property name="allowEmptyLoops" value="true"/>
+            <property name="ignoreEnhancedForColon" value="false"/>
+            <property name="tokens"
+                      value="ASSIGN, BAND, BAND_ASSIGN, BOR, BOR_ASSIGN, BSR, BSR_ASSIGN, BXOR,
+                    BXOR_ASSIGN, COLON, DIV, DIV_ASSIGN, DO_WHILE, EQUAL, GE, GT, LAMBDA, LAND,
+                    LCURLY, LE, LITERAL_CATCH, LITERAL_DO, LITERAL_ELSE, LITERAL_FINALLY,
+                    LITERAL_FOR, LITERAL_IF, LITERAL_RETURN, LITERAL_SYNCHRONIZED,
+                    LITERAL_TRY, LITERAL_WHILE, LOR, LT, MINUS, MINUS_ASSIGN, MOD, MOD_ASSIGN,
+                    NOT_EQUAL, PLUS, PLUS_ASSIGN, QUESTION, RCURLY, SL, SLIST, SL_ASSIGN, SR,
+                    SR_ASSIGN, STAR, STAR_ASSIGN, LITERAL_ASSERT, TYPE_EXTENSION_AND"/>
+            <message key="ws.notFollowed"
+                     value="WhitespaceAround: ''{0}'' is not followed by whitespace. Empty blocks
+               may only be represented as '{}' when not part of a multi-block statement (4.1.3)"/>
+            <message key="ws.notPreceded"
+                     value="WhitespaceAround: ''{0}'' is not preceded with whitespace."/>
+        </module>-->
+        <!--<module name="OneStatementPerLine"/>
+        <module name="MultipleVariableDeclarations"/>
+        <module name="ArrayTypeStyle"/>
+        <module name="MissingSwitchDefault"/>
+        <module name="FallThrough"/>
+        <module name="UpperEll"/>
+        <module name="ModifierOrder"/>-->
+        <!--<module name="EmptyLineSeparator">
+            <property name="tokens"
+                      value="PACKAGE_DEF, IMPORT, STATIC_IMPORT, CLASS_DEF, INTERFACE_DEF, ENUM_DEF,
+                    STATIC_INIT, INSTANCE_INIT, METHOD_DEF, CTOR_DEF, VARIABLE_DEF, RECORD_DEF,
+                    COMPACT_CTOR_DEF"/>
+            <property name="allowNoEmptyLineBetweenFields" value="true"/>
+        </module>-->
+        <!--<module name="SeparatorWrap">
+            <property name="id" value="SeparatorWrapDot"/>
+            <property name="tokens" value="DOT"/>
+            <property name="option" value="nl"/>
+        </module>-->
+        <!--<module name="SeparatorWrap">
+            <property name="id" value="SeparatorWrapComma"/>
+            <property name="tokens" value="COMMA"/>
+            <property name="option" value="EOL"/>
+        </module>-->
+        <!--<module name="SeparatorWrap">
+            &lt;!&ndash; ELLIPSIS is EOL until https://github.com/google/styleguide/issues/259 &ndash;&gt;
+            <property name="id" value="SeparatorWrapEllipsis"/>
+            <property name="tokens" value="ELLIPSIS"/>
+            <property name="option" value="EOL"/>
+        </module>-->
+        <!--<module name="SeparatorWrap">
+            &lt;!&ndash; ARRAY_DECLARATOR is EOL until https://github.com/google/styleguide/issues/258 &ndash;&gt;
+            <property name="id" value="SeparatorWrapArrayDeclarator"/>
+            <property name="tokens" value="ARRAY_DECLARATOR"/>
+            <property name="option" value="EOL"/>
+        </module>-->
+        <!--<module name="SeparatorWrap">
+            <property name="id" value="SeparatorWrapMethodRef"/>
+            <property name="tokens" value="METHOD_REF"/>
+            <property name="option" value="nl"/>
+        </module>-->
+        <!--<module name="PackageName">
+            <property name="format" value="^[a-z]+(\.[a-z][a-z0-9]*)*$"/>
+            <message key="name.invalidPattern"
+                     value="Package name ''{0}'' must match pattern ''{1}''."/>
+        </module>-->
+        <!--<module name="TypeName">
+            <property name="tokens" value="CLASS_DEF, INTERFACE_DEF, ENUM_DEF,
+                    ANNOTATION_DEF, RECORD_DEF"/>
+            <message key="name.invalidPattern"
+                     value="Type name ''{0}'' must match pattern ''{1}''."/>
+        </module>-->
+        <!--<module name="MemberName">
+            <property name="format" value="^[a-z][a-z0-9][a-zA-Z0-9]*$"/>
+            <message key="name.invalidPattern"
+                     value="Member name ''{0}'' must match pattern ''{1}''."/>
+        </module>-->
+        <!--<module name="ParameterName">
+            <property name="format" value="^[a-z]([a-z0-9][a-zA-Z0-9]*)?$"/>
+            <message key="name.invalidPattern"
+                     value="Parameter name ''{0}'' must match pattern ''{1}''."/>
+        </module>-->
+        <!--<module name="LambdaParameterName">
+            <property name="format" value="^[a-z]([a-z0-9][a-zA-Z0-9]*)?$"/>
+            <message key="name.invalidPattern"
+                     value="Lambda parameter name ''{0}'' must match pattern ''{1}''."/>
+        </module>-->
+        <!--<module name="CatchParameterName">
+            <property name="format" value="^[a-z]([a-z0-9][a-zA-Z0-9]*)?$"/>
+            <message key="name.invalidPattern"
+                     value="Catch parameter name ''{0}'' must match pattern ''{1}''."/>
+        </module>-->
+        <!--<module name="LocalVariableName">
+            <property name="format" value="^[a-z]([a-z0-9][a-zA-Z0-9]*)?$"/>
+            <message key="name.invalidPattern"
+                     value="Local variable name ''{0}'' must match pattern ''{1}''."/>
+        </module>-->
+        <!--<module name="PatternVariableName">
+            <property name="format" value="^[a-z]([a-z0-9][a-zA-Z0-9]*)?$"/>
+            <message key="name.invalidPattern"
+                     value="Pattern variable name ''{0}'' must match pattern ''{1}''."/>
+        </module>-->
+        <!--<module name="ClassTypeParameterName">
+            <property name="format" value="(^[A-Z][0-9]?)$|([A-Z][a-zA-Z0-9]*[T]$)"/>
+            <message key="name.invalidPattern"
+                     value="Class type name ''{0}'' must match pattern ''{1}''."/>
+        </module>-->
+        <!--<module name="RecordComponentName">
+            <property name="format" value="^[a-z]([a-z0-9][a-zA-Z0-9]*)?$"/>
+            <message key="name.invalidPattern"
+                     value="Record component name ''{0}'' must match pattern ''{1}''."/>
+        </module>-->
+        <!--<module name="RecordTypeParameterName">
+            <property name="format" value="(^[A-Z][0-9]?)$|([A-Z][a-zA-Z0-9]*[T]$)"/>
+            <message key="name.invalidPattern"
+                     value="Record type name ''{0}'' must match pattern ''{1}''."/>
+        </module>-->
+        <!--<module name="MethodTypeParameterName">
+            <property name="format" value="(^[A-Z][0-9]?)$|([A-Z][a-zA-Z0-9]*[T]$)"/>
+            <message key="name.invalidPattern"
+                     value="Method type name ''{0}'' must match pattern ''{1}''."/>
+        </module>-->
+        <!--<module name="InterfaceTypeParameterName">
+            <property name="format" value="(^[A-Z][0-9]?)$|([A-Z][a-zA-Z0-9]*[T]$)"/>
+            <message key="name.invalidPattern"
+                     value="Interface type name ''{0}'' must match pattern ''{1}''."/>
+        </module>-->
+        <!--<module name="NoFinalizer"/>-->
+        <!--<module name="GenericWhitespace">
+            <message key="ws.followed"
+                     value="GenericWhitespace ''{0}'' is followed by whitespace."/>
+            <message key="ws.preceded"
+                     value="GenericWhitespace ''{0}'' is preceded with whitespace."/>
+            <message key="ws.illegalFollow"
+                     value="GenericWhitespace ''{0}'' should followed by whitespace."/>
+            <message key="ws.notPreceded"
+                     value="GenericWhitespace ''{0}'' is not preceded with whitespace."/>
+        </module>-->
+        <!--<module name="Indentation">
+            <property name="basicOffset" value="2"/>
+            <property name="braceAdjustment" value="2"/>
+            <property name="caseIndent" value="2"/>
+            <property name="throwsIndent" value="4"/>
+            <property name="lineWrappingIndentation" value="4"/>
+            <property name="arrayInitIndent" value="2"/>
+        </module>-->
+        <!--<module name="AbbreviationAsWordInName">
+            <property name="ignoreFinal" value="false"/>
+            <property name="allowedAbbreviationLength" value="0"/>
+            <property name="tokens"
+                      value="CLASS_DEF, INTERFACE_DEF, ENUM_DEF, ANNOTATION_DEF, ANNOTATION_FIELD_DEF,
+                    PARAMETER_DEF, VARIABLE_DEF, METHOD_DEF, PATTERN_VARIABLE_DEF, RECORD_DEF,
+                    RECORD_COMPONENT_DEF"/>
+        </module>-->
+        <!--<module name="NoWhitespaceBeforeCaseDefaultColon"/>
+        <module name="OverloadMethodsDeclarationOrder"/>
+        <module name="VariableDeclarationUsageDistance"/>-->
+        <!--<module name="CustomImportOrder">
+            <property name="sortImportsInGroupAlphabetically" value="true"/>
+            <property name="separateLineBetweenGroups" value="true"/>
+            <property name="customImportOrderRules" value="STATIC###THIRD_PARTY_PACKAGE"/>
+            <property name="tokens" value="IMPORT, STATIC_IMPORT, PACKAGE_DEF"/>
+        </module>-->
+        <!--<module name="MethodParamPad">
+            <property name="tokens"
+                      value="CTOR_DEF, LITERAL_NEW, METHOD_CALL, METHOD_DEF,
+                    SUPER_CTOR_CALL, ENUM_CONSTANT_DEF, RECORD_DEF"/>
+        </module>-->
+        <!--<module name="NoWhitespaceBefore">
+            <property name="tokens"
+                      value="COMMA, SEMI, POST_INC, POST_DEC, DOT,
+                    LABELED_STAT, METHOD_REF"/>
+            <property name="allowLineBreaks" value="true"/>
+        </module>-->
+        <!--<module name="ParenPad">
+            <property name="tokens"
+                      value="ANNOTATION, ANNOTATION_FIELD_DEF, CTOR_CALL, CTOR_DEF, DOT, ENUM_CONSTANT_DEF,
+                    EXPR, LITERAL_CATCH, LITERAL_DO, LITERAL_FOR, LITERAL_IF, LITERAL_NEW,
+                    LITERAL_SYNCHRONIZED, LITERAL_WHILE, METHOD_CALL,
+                    METHOD_DEF, QUESTION, RESOURCE_SPECIFICATION, SUPER_CTOR_CALL, LAMBDA,
+                    RECORD_DEF"/>
+        </module>-->
+        <!--<module name="OperatorWrap">
+            <property name="option" value="NL"/>
+            <property name="tokens"
+                      value="BAND, BOR, BSR, BXOR, DIV, EQUAL, GE, GT, LAND, LE, LITERAL_INSTANCEOF, LOR,
+                    LT, MINUS, MOD, NOT_EQUAL, PLUS, QUESTION, SL, SR, STAR, METHOD_REF,
+                    TYPE_EXTENSION_AND "/>
+        </module>-->
+        <!--<module name="AnnotationLocation">
+            <property name="id" value="AnnotationLocationMostCases"/>
+            <property name="tokens"
+                      value="CLASS_DEF, INTERFACE_DEF, ENUM_DEF, METHOD_DEF, CTOR_DEF,
+                      RECORD_DEF, COMPACT_CTOR_DEF"/>
+        </module>-->
+        <!--<module name="AnnotationLocation">
+            <property name="id" value="AnnotationLocationVariables"/>
+            <property name="tokens" value="VARIABLE_DEF"/>
+            <property name="allowSamelineMultipleAnnotations" value="true"/>
+        </module>-->
+        <!--<module name="NonEmptyAtclauseDescription"/>
+        <module name="InvalidJavadocPosition"/>
+        <module name="JavadocTagContinuationIndentation"/>-->
+        <!--<module name="SummaryJavadoc">
+            <property name="forbiddenSummaryFragments"
+                      value="^@return the *|^This method returns |^A [{]@code [a-zA-Z0-9]+[}]( is a )"/>
+        </module>-->
+        <!--<module name="JavadocParagraph"/>
+        <module name="RequireEmptyLineBeforeBlockTagGroup"/>-->
+        <!--<module name="AtclauseOrder">
+            <property name="tagOrder" value="@param, @return, @throws, @deprecated"/>
+            <property name="target"
+                      value="CLASS_DEF, INTERFACE_DEF, ENUM_DEF, METHOD_DEF, CTOR_DEF, VARIABLE_DEF"/>
+        </module>-->
+        <!--<module name="JavadocMethod">
+            <property name="accessModifiers" value="public"/>
+            <property name="allowMissingParamTags" value="true"/>
+            <property name="allowMissingReturnTag" value="true"/>
+            <property name="allowedAnnotations" value="Override, Test"/>
+            <property name="tokens" value="METHOD_DEF, CTOR_DEF, ANNOTATION_FIELD_DEF, COMPACT_CTOR_DEF"/>
+        </module>-->
+        <!--<module name="MissingJavadocMethod">
+            <property name="scope" value="public"/>
+            <property name="minLineCount" value="2"/>
+            <property name="allowedAnnotations" value="Override, Test"/>
+            <property name="tokens" value="METHOD_DEF, CTOR_DEF, ANNOTATION_FIELD_DEF,
+                                   COMPACT_CTOR_DEF"/>
+        </module>-->
+        <!--<module name="MissingJavadocType">
+            <property name="scope" value="protected"/>
+            <property name="tokens"
+                      value="CLASS_DEF, INTERFACE_DEF, ENUM_DEF,
+                      RECORD_DEF, ANNOTATION_DEF"/>
+            <property name="excludeScope" value="nothing"/>
+        </module>-->
+        <!--<module name="MethodName">
+            <property name="format" value="^[a-z][a-z0-9]\w*$"/>
+            <message key="name.invalidPattern"
+                     value="Method name ''{0}'' must match pattern ''{1}''."/>
+        </module>-->
+        <!--<module name="SingleLineJavadoc"/>-->
+        <!--<module name="EmptyCatchBlock">
+            <property name="exceptionVariableName" value="expected"/>
+        </module>-->
+        <!--<module name="CommentsIndentation">
+            <property name="tokens" value="SINGLE_LINE_COMMENT, BLOCK_COMMENT_BEGIN"/>
+        </module>-->
+        <!-- https://checkstyle.org/filters/suppressionxpathfilter.html -->
+        <!--<module name="SuppressionXpathFilter">
+            <property name="file" value="${org.checkstyle.google.suppressionxpathfilter.config}"
+                      default="checkstyle-xpath-suppressions.xml" />
+            <property name="optional" value="true"/>
+        </module>-->
+        <!--<module name="SuppressWarningsHolder" />-->
+        <!--<module name="SuppressionCommentFilter">
+            <property name="offCommentFormat" value="CHECKSTYLE.OFF\: ([\w\|]+)" />
+            <property name="onCommentFormat" value="CHECKSTYLE.ON\: ([\w\|]+)" />
+            <property name="checkFormat" value="$1" />
+        </module>-->
+        <!--<module name="SuppressWithNearbyCommentFilter">
+            <property name="commentFormat" value="CHECKSTYLE.SUPPRESS\: ([\w\|]+)"/>
+            &lt;!&ndash; $1 refers to the first match group in the regex defined in commentFormat &ndash;&gt;
+            <property name="checkFormat" value="$1"/>
+            &lt;!&ndash; The check is suppressed in the next line of code after the comment &ndash;&gt;
+            <property name="influenceFormat" value="1"/>
+        </module>-->
+    </module>
+</module>
\ No newline at end of file

From e53c5d060aaea53410d7b57f857d5baf30a951b8 Mon Sep 17 00:00:00 2001
From: Bilal Al-Shahwany <bilal.al-shahwany@harness.io>
Date: Tue, 1 Jul 2025 11:04:22 -0700
Subject: [PATCH 14/18] polishing

---
 client/pom.xml                                |   6 +-
 .../io/split/client/SplitClientConfig.java    |   9 +-
 .../io/split/client/SplitFactoryImpl.java     |  11 +-
 okhttp-modules/pom.xml                        |   6 +-
 pluggable-storage/pom.xml                     |   2 +-
 pom.xml                                       |   2 +-
 redis-wrapper/pom.xml                         |   2 +-
 testing/.github/CODEOWNERS                    |   1 -
 .../linter/checkstyle-suppressions.xml        |   9 -
 testing/.github/linter/google-java-style.xml  | 380 ------------------
 testing/pom.xml                               |   4 +-
 11 files changed, 23 insertions(+), 409 deletions(-)
 delete mode 100644 testing/.github/CODEOWNERS
 delete mode 100644 testing/.github/linter/checkstyle-suppressions.xml
 delete mode 100644 testing/.github/linter/google-java-style.xml

diff --git a/client/pom.xml b/client/pom.xml
index 567849d2..5310cfea 100644
--- a/client/pom.xml
+++ b/client/pom.xml
@@ -5,9 +5,9 @@
     <parent>
         <groupId>io.split.client</groupId>
         <artifactId>java-client-parent</artifactId>
-        <version>4.17.0-rc1</version>
+        <version>4.17.0-rc2</version>
     </parent>
-    <version>4.17.0-rc1</version>
+    <version>4.17.0-rc2</version>
     <artifactId>java-client</artifactId>
     <packaging>jar</packaging>
     <name>Java Client</name>
@@ -24,7 +24,7 @@
                         <version>0.8.0</version>
                         <extensions>true</extensions>
                         <configuration>
-                            <ignorePublishedComponents>true</ignorePublishedComponents>
+                            <ignorePublishedComponents>false</ignorePublishedComponents>
                             <publishingServerId>central</publishingServerId>
                             <autoPublish>false</autoPublish>
                             <waitUntil>published</waitUntil>
diff --git a/client/src/main/java/io/split/client/SplitClientConfig.java b/client/src/main/java/io/split/client/SplitClientConfig.java
index 603d5ef1..d314baa7 100644
--- a/client/src/main/java/io/split/client/SplitClientConfig.java
+++ b/client/src/main/java/io/split/client/SplitClientConfig.java
@@ -36,6 +36,9 @@ public class SplitClientConfig {
     public static final String TELEMETRY_ENDPOINT = "https://telemetry.split.io/api/v1";
 
     public static class HttpScheme {
+        private HttpScheme() {
+            throw new IllegalStateException("Utility class");
+        }
         public static final String HTTP = "http";
         public static final String HTTPS = "https";
     }
@@ -1177,10 +1180,8 @@ private void verifyProxy() {
                 throw new IllegalArgumentException("Proxy token and Proxy mTLS params are updated, set only one param.");
             }
 
-            if (_proxyMtlsAuth != null) {
-                if (_proxyMtlsAuth.getP12File() == null || _proxyMtlsAuth.getP12FilePassKey() == null) {
-                    throw new IllegalArgumentException("Proxy mTLS must have p12 file path and name, and pass phrase.");
-                }
+            if (_proxyMtlsAuth != null && (_proxyMtlsAuth.getP12File() == null || _proxyMtlsAuth.getP12FilePassKey() == null)) {
+                throw new IllegalArgumentException("Proxy mTLS must have p12 file path and name, and pass phrase.");
             }
         }
 
diff --git a/client/src/main/java/io/split/client/SplitFactoryImpl.java b/client/src/main/java/io/split/client/SplitFactoryImpl.java
index 4da2f503..e1a11dcf 100644
--- a/client/src/main/java/io/split/client/SplitFactoryImpl.java
+++ b/client/src/main/java/io/split/client/SplitFactoryImpl.java
@@ -520,7 +520,7 @@ public boolean isDestroyed() {
 
     protected static SplitHttpClient buildSplitHttpClient(String apiToken, SplitClientConfig config,
             SDKMetadata sdkMetadata, RequestDecorator requestDecorator)
-            throws URISyntaxException {
+            throws URISyntaxException, IOException {
 
         SSLContext sslContext = buildSSLContext(config);
 
@@ -562,7 +562,7 @@ protected static SplitHttpClient buildSplitHttpClient(String apiToken, SplitClie
     }
 
     private static CloseableHttpClient buildSSEdHttpClient(String apiToken, SplitClientConfig config,
-            SDKMetadata sdkMetadata) {
+            SDKMetadata sdkMetadata) throws IOException {
         RequestConfig requestConfig = RequestConfig.custom()
                 .setConnectTimeout(Timeout.ofMilliseconds(SSE_CONNECT_TIMEOUT))
                 .build();
@@ -597,13 +597,14 @@ private static CloseableHttpClient buildSSEdHttpClient(String apiToken, SplitCli
         return httpClientbuilder.build();
     }
 
-    private static SSLContext buildSSLContext(SplitClientConfig config) {
+    private static SSLContext buildSSLContext(SplitClientConfig config) throws IOException {
         SSLContext sslContext;
         if (config.proxyMTLSAuth() != null) {
             _log.debug("Proxy setup using mTLS");
+            InputStream keystoreStream = null;
             try {
                 KeyStore keyStore = KeyStore.getInstance("PKCS12");
-                InputStream keystoreStream = java.nio.file.Files.newInputStream(Paths.get(config.proxyMTLSAuth().getP12File()));
+                keystoreStream = java.nio.file.Files.newInputStream(Paths.get(config.proxyMTLSAuth().getP12File()));
                 keyStore.load(keystoreStream, config.proxyMTLSAuth().getP12FilePassKey().toCharArray());
                 sslContext = SSLContexts.custom()
                         .loadKeyMaterial(keyStore, config.proxyMTLSAuth().getP12FilePassKey().toCharArray())
@@ -612,6 +613,8 @@ private static SSLContext buildSSLContext(SplitClientConfig config) {
                 _log.error("Exception caught while processing p12 file for Proxy mTLS auth: ", e);
                 _log.warn("Ignoring p12 mTLS config and switching to default context");
                 sslContext = SSLContexts.createSystemDefault();
+            } finally {
+                keystoreStream.close();
             }
         } else {
             sslContext = SSLContexts.createSystemDefault();
diff --git a/okhttp-modules/pom.xml b/okhttp-modules/pom.xml
index f236d002..ff0bac2e 100644
--- a/okhttp-modules/pom.xml
+++ b/okhttp-modules/pom.xml
@@ -5,10 +5,10 @@
     <parent>
         <artifactId>java-client-parent</artifactId>
         <groupId>io.split.client</groupId>
-        <version>4.17.0-rc1</version>
+        <version>4.17.0-rc2</version>
     </parent>
     <modelVersion>4.0.0</modelVersion>
-    <version>4.17.0-rc1</version>
+    <version>4.17.0-rc2</version>
     <artifactId>okhttp-modules</artifactId>
     <packaging>jar</packaging>
     <name>http-modules</name>
@@ -25,7 +25,7 @@
                         <version>0.8.0</version>
                         <extensions>true</extensions>
                         <configuration>
-                            <ignorePublishedComponents>true</ignorePublishedComponents>
+                            <ignorePublishedComponents>false</ignorePublishedComponents>
                             <publishingServerId>central</publishingServerId>
                             <autoPublish>false</autoPublish>
                             <waitUntil>published</waitUntil>
diff --git a/pluggable-storage/pom.xml b/pluggable-storage/pom.xml
index da96cc3a..0353d0c5 100644
--- a/pluggable-storage/pom.xml
+++ b/pluggable-storage/pom.xml
@@ -6,7 +6,7 @@
     <parent>
         <artifactId>java-client-parent</artifactId>
         <groupId>io.split.client</groupId>
-        <version>4.17.0-rc1</version>
+        <version>4.17.0-rc2</version>
     </parent>
 
     <version>2.1.0</version>
diff --git a/pom.xml b/pom.xml
index 65a92436..cabb7d91 100644
--- a/pom.xml
+++ b/pom.xml
@@ -4,7 +4,7 @@
     <modelVersion>4.0.0</modelVersion>
     <groupId>io.split.client</groupId>
     <artifactId>java-client-parent</artifactId>
-    <version>4.17.0-rc1</version>
+    <version>4.17.0-rc2</version>
     <dependencyManagement>
         <dependencies>
             <dependency>
diff --git a/redis-wrapper/pom.xml b/redis-wrapper/pom.xml
index 2f89586b..0da0c71f 100644
--- a/redis-wrapper/pom.xml
+++ b/redis-wrapper/pom.xml
@@ -6,7 +6,7 @@
     <parent>
         <artifactId>java-client-parent</artifactId>
         <groupId>io.split.client</groupId>
-        <version>4.17.0-rc1</version>
+        <version>4.17.0-rc2</version>
     </parent>
     <artifactId>redis-wrapper</artifactId>
     <version>3.1.1</version>
diff --git a/testing/.github/CODEOWNERS b/testing/.github/CODEOWNERS
deleted file mode 100644
index 9e319810..00000000
--- a/testing/.github/CODEOWNERS
+++ /dev/null
@@ -1 +0,0 @@
-* @splitio/sdk
diff --git a/testing/.github/linter/checkstyle-suppressions.xml b/testing/.github/linter/checkstyle-suppressions.xml
deleted file mode 100644
index 81d23539..00000000
--- a/testing/.github/linter/checkstyle-suppressions.xml
+++ /dev/null
@@ -1,9 +0,0 @@
-<?xml version="1.0"?>
-
-<!DOCTYPE suppressions PUBLIC
-        "-//Checkstyle//DTD SuppressionFilter Configuration 1.2//EN"
-        "https://checkstyle.org/dtds/suppressions_1_2.dtd">
-
-<suppressions>
-    <suppress checks="LineLength" files=".*(test|it)[\\/]"/>
-</suppressions>
\ No newline at end of file
diff --git a/testing/.github/linter/google-java-style.xml b/testing/.github/linter/google-java-style.xml
deleted file mode 100644
index e885305e..00000000
--- a/testing/.github/linter/google-java-style.xml
+++ /dev/null
@@ -1,380 +0,0 @@
-<?xml version="1.0"?>
-<!DOCTYPE module PUBLIC
-        "-//Checkstyle//DTD Checkstyle Configuration 1.3//EN"
-        "https://checkstyle.org/dtds/configuration_1_3.dtd">
-
-<!--
-    Checkstyle configuration that checks the Google coding conventions from Google Java Style
-    that can be found at https://google.github.io/styleguide/javaguide.html
-
-    Checkstyle is very configurable. Be sure to read the documentation at
-    http://checkstyle.org (or in your downloaded distribution).
-
-    To completely disable a check, just comment it out or delete it from the file.
-    To suppress certain violations please review suppression filters.
-
-    Authors: Max Vetrenko, Ruslan Diachenko, Roman Ivanov.
- -->
-
-<module name="Checker">
-    <property name="charset" value="UTF-8"/>
-
-    <property name="severity" value="warning"/>
-
-    <property name="fileExtensions" value="java, properties, xml"/>
-    <!-- Excludes all 'module-info.java' files              -->
-    <!-- See https://checkstyle.org/filefilters/index.html -->
-    <module name="BeforeExecutionExclusionFileFilter">
-        <property name="fileNamePattern" value="module\-info\.java$"/>
-    </module>
-    <!-- https://checkstyle.org/filters/suppressionfilter.html -->
-    <module name="SuppressionFilter">
-        <property name="file" value="${org.checkstyle.google.suppressionfilter.config}"
-                  default="checkstyle-suppressions.xml" />
-        <property name="optional" value="true"/>
-    </module>
-
-    <!-- Checks for whitespace                               -->
-    <!-- See http://checkstyle.org/checks/whitespace/index.html -->
-    <module name="FileTabCharacter">
-        <property name="eachLine" value="true"/>
-    </module>
-
-    <module name="LineLength">
-        <property name="fileExtensions" value="java"/>
-        <property name="max" value="150"/>
-        <property name="ignorePattern" value="^package.*|^import.*|a href|href|http://|https://|ftp://"/>
-    </module>
-
-    <module name="TreeWalker">
-        <!--<module name="OuterTypeFilename"/>
-        <module name="IllegalTokenText">
-            <property name="tokens" value="STRING_LITERAL, CHAR_LITERAL"/>
-            <property name="format"
-                      value="\\u00(09|0(a|A)|0(c|C)|0(d|D)|22|27|5(C|c))|\\(0(10|11|12|14|15|42|47)|134)"/>
-            <property name="message"
-                      value="Consider using special escape sequence instead of octal value or Unicode escaped value."/>
-        </module>-->
-        <!--<module name="AvoidEscapedUnicodeCharacters">
-            <property name="allowEscapesForControlCharacters" value="true"/>
-            <property name="allowByTailComment" value="true"/>
-            <property name="allowNonPrintableEscapes" value="true"/>
-        </module>-->
-        <!--<module name="AvoidStarImport"/>
-        <module name="OneTopLevelClass"/>-->
-        <!--<module name="NoLineWrap">
-            <property name="tokens" value="PACKAGE_DEF, IMPORT, STATIC_IMPORT"/>
-        </module>-->
-        <!--<module name="EmptyBlock">
-            <property name="option" value="TEXT"/>
-            <property name="tokens"
-                      value="LITERAL_TRY, LITERAL_FINALLY, LITERAL_IF, LITERAL_ELSE"/>
-        </module>-->
-        <!--<module name="NeedBraces">
-            <property name="tokens"
-                      value="LITERAL_DO, LITERAL_ELSE, LITERAL_FOR, LITERAL_IF, LITERAL_WHILE"/>
-        </module>-->
-        <!--<module name="LeftCurly">
-            <property name="tokens"
-                      value="ANNOTATION_DEF, CLASS_DEF, CTOR_DEF, ENUM_CONSTANT_DEF, ENUM_DEF,
-                    INTERFACE_DEF, LAMBDA, LITERAL_CASE, LITERAL_CATCH, LITERAL_DEFAULT,
-                    LITERAL_DO, LITERAL_ELSE, LITERAL_FINALLY, LITERAL_FOR, LITERAL_IF,
-                    LITERAL_SYNCHRONIZED, LITERAL_TRY, LITERAL_WHILE, METHOD_DEF,
-                    OBJBLOCK, STATIC_INIT, RECORD_DEF, COMPACT_CTOR_DEF"/>
-        </module>-->
-        <!--<module name="RightCurly">
-            <property name="id" value="RightCurlySame"/>
-            <property name="tokens"
-                      value="LITERAL_TRY, LITERAL_CATCH, LITERAL_FINALLY, LITERAL_IF, LITERAL_ELSE,
-                    LITERAL_DO"/>
-        </module>-->
-        <!--<module name="RightCurly">
-            <property name="id" value="RightCurlyAlone"/>
-            <property name="option" value="alone"/>
-            <property name="tokens"
-                      value="CLASS_DEF, METHOD_DEF, CTOR_DEF, LITERAL_FOR, LITERAL_WHILE, STATIC_INIT,
-                    INSTANCE_INIT, ANNOTATION_DEF, ENUM_DEF, INTERFACE_DEF, RECORD_DEF,
-                    COMPACT_CTOR_DEF"/>
-        </module>-->
-        <!--<module name="SuppressionXpathSingleFilter">
-            &lt;!&ndash; suppresion is required till https://github.com/checkstyle/checkstyle/issues/7541 &ndash;&gt;
-            <property name="id" value="RightCurlyAlone"/>
-            <property name="query" value="//RCURLY[parent::SLIST[count(./*)=1]
-                                     or preceding-sibling::*[last()][self::LCURLY]]"/>
-        </module>-->
-        <!--<module name="WhitespaceAfter">
-            <property name="tokens"
-                      value="COMMA, SEMI, TYPECAST, LITERAL_IF, LITERAL_ELSE, LITERAL_RETURN,
-                    LITERAL_WHILE, LITERAL_DO, LITERAL_FOR, LITERAL_FINALLY, DO_WHILE, ELLIPSIS,
-                    LITERAL_SYNCHRONIZED, LITERAL_TRY, LITERAL_CATCH, LAMBDA,
-                    LITERAL_YIELD, LITERAL_CASE"/>
-        </module>-->
-        <!--<module name="WhitespaceAround">
-            <property name="allowEmptyConstructors" value="true"/>
-            <property name="allowEmptyLambdas" value="true"/>
-            <property name="allowEmptyMethods" value="true"/>
-            <property name="allowEmptyTypes" value="true"/>
-            <property name="allowEmptyLoops" value="true"/>
-            <property name="ignoreEnhancedForColon" value="false"/>
-            <property name="tokens"
-                      value="ASSIGN, BAND, BAND_ASSIGN, BOR, BOR_ASSIGN, BSR, BSR_ASSIGN, BXOR,
-                    BXOR_ASSIGN, COLON, DIV, DIV_ASSIGN, DO_WHILE, EQUAL, GE, GT, LAMBDA, LAND,
-                    LCURLY, LE, LITERAL_CATCH, LITERAL_DO, LITERAL_ELSE, LITERAL_FINALLY,
-                    LITERAL_FOR, LITERAL_IF, LITERAL_RETURN, LITERAL_SYNCHRONIZED,
-                    LITERAL_TRY, LITERAL_WHILE, LOR, LT, MINUS, MINUS_ASSIGN, MOD, MOD_ASSIGN,
-                    NOT_EQUAL, PLUS, PLUS_ASSIGN, QUESTION, RCURLY, SL, SLIST, SL_ASSIGN, SR,
-                    SR_ASSIGN, STAR, STAR_ASSIGN, LITERAL_ASSERT, TYPE_EXTENSION_AND"/>
-            <message key="ws.notFollowed"
-                     value="WhitespaceAround: ''{0}'' is not followed by whitespace. Empty blocks
-               may only be represented as '{}' when not part of a multi-block statement (4.1.3)"/>
-            <message key="ws.notPreceded"
-                     value="WhitespaceAround: ''{0}'' is not preceded with whitespace."/>
-        </module>-->
-        <!--<module name="OneStatementPerLine"/>
-        <module name="MultipleVariableDeclarations"/>
-        <module name="ArrayTypeStyle"/>
-        <module name="MissingSwitchDefault"/>
-        <module name="FallThrough"/>
-        <module name="UpperEll"/>
-        <module name="ModifierOrder"/>-->
-        <!--<module name="EmptyLineSeparator">
-            <property name="tokens"
-                      value="PACKAGE_DEF, IMPORT, STATIC_IMPORT, CLASS_DEF, INTERFACE_DEF, ENUM_DEF,
-                    STATIC_INIT, INSTANCE_INIT, METHOD_DEF, CTOR_DEF, VARIABLE_DEF, RECORD_DEF,
-                    COMPACT_CTOR_DEF"/>
-            <property name="allowNoEmptyLineBetweenFields" value="true"/>
-        </module>-->
-        <!--<module name="SeparatorWrap">
-            <property name="id" value="SeparatorWrapDot"/>
-            <property name="tokens" value="DOT"/>
-            <property name="option" value="nl"/>
-        </module>-->
-        <!--<module name="SeparatorWrap">
-            <property name="id" value="SeparatorWrapComma"/>
-            <property name="tokens" value="COMMA"/>
-            <property name="option" value="EOL"/>
-        </module>-->
-        <!--<module name="SeparatorWrap">
-            &lt;!&ndash; ELLIPSIS is EOL until https://github.com/google/styleguide/issues/259 &ndash;&gt;
-            <property name="id" value="SeparatorWrapEllipsis"/>
-            <property name="tokens" value="ELLIPSIS"/>
-            <property name="option" value="EOL"/>
-        </module>-->
-        <!--<module name="SeparatorWrap">
-            &lt;!&ndash; ARRAY_DECLARATOR is EOL until https://github.com/google/styleguide/issues/258 &ndash;&gt;
-            <property name="id" value="SeparatorWrapArrayDeclarator"/>
-            <property name="tokens" value="ARRAY_DECLARATOR"/>
-            <property name="option" value="EOL"/>
-        </module>-->
-        <!--<module name="SeparatorWrap">
-            <property name="id" value="SeparatorWrapMethodRef"/>
-            <property name="tokens" value="METHOD_REF"/>
-            <property name="option" value="nl"/>
-        </module>-->
-        <!--<module name="PackageName">
-            <property name="format" value="^[a-z]+(\.[a-z][a-z0-9]*)*$"/>
-            <message key="name.invalidPattern"
-                     value="Package name ''{0}'' must match pattern ''{1}''."/>
-        </module>-->
-        <!--<module name="TypeName">
-            <property name="tokens" value="CLASS_DEF, INTERFACE_DEF, ENUM_DEF,
-                    ANNOTATION_DEF, RECORD_DEF"/>
-            <message key="name.invalidPattern"
-                     value="Type name ''{0}'' must match pattern ''{1}''."/>
-        </module>-->
-        <!--<module name="MemberName">
-            <property name="format" value="^[a-z][a-z0-9][a-zA-Z0-9]*$"/>
-            <message key="name.invalidPattern"
-                     value="Member name ''{0}'' must match pattern ''{1}''."/>
-        </module>-->
-        <!--<module name="ParameterName">
-            <property name="format" value="^[a-z]([a-z0-9][a-zA-Z0-9]*)?$"/>
-            <message key="name.invalidPattern"
-                     value="Parameter name ''{0}'' must match pattern ''{1}''."/>
-        </module>-->
-        <!--<module name="LambdaParameterName">
-            <property name="format" value="^[a-z]([a-z0-9][a-zA-Z0-9]*)?$"/>
-            <message key="name.invalidPattern"
-                     value="Lambda parameter name ''{0}'' must match pattern ''{1}''."/>
-        </module>-->
-        <!--<module name="CatchParameterName">
-            <property name="format" value="^[a-z]([a-z0-9][a-zA-Z0-9]*)?$"/>
-            <message key="name.invalidPattern"
-                     value="Catch parameter name ''{0}'' must match pattern ''{1}''."/>
-        </module>-->
-        <!--<module name="LocalVariableName">
-            <property name="format" value="^[a-z]([a-z0-9][a-zA-Z0-9]*)?$"/>
-            <message key="name.invalidPattern"
-                     value="Local variable name ''{0}'' must match pattern ''{1}''."/>
-        </module>-->
-        <!--<module name="PatternVariableName">
-            <property name="format" value="^[a-z]([a-z0-9][a-zA-Z0-9]*)?$"/>
-            <message key="name.invalidPattern"
-                     value="Pattern variable name ''{0}'' must match pattern ''{1}''."/>
-        </module>-->
-        <!--<module name="ClassTypeParameterName">
-            <property name="format" value="(^[A-Z][0-9]?)$|([A-Z][a-zA-Z0-9]*[T]$)"/>
-            <message key="name.invalidPattern"
-                     value="Class type name ''{0}'' must match pattern ''{1}''."/>
-        </module>-->
-        <!--<module name="RecordComponentName">
-            <property name="format" value="^[a-z]([a-z0-9][a-zA-Z0-9]*)?$"/>
-            <message key="name.invalidPattern"
-                     value="Record component name ''{0}'' must match pattern ''{1}''."/>
-        </module>-->
-        <!--<module name="RecordTypeParameterName">
-            <property name="format" value="(^[A-Z][0-9]?)$|([A-Z][a-zA-Z0-9]*[T]$)"/>
-            <message key="name.invalidPattern"
-                     value="Record type name ''{0}'' must match pattern ''{1}''."/>
-        </module>-->
-        <!--<module name="MethodTypeParameterName">
-            <property name="format" value="(^[A-Z][0-9]?)$|([A-Z][a-zA-Z0-9]*[T]$)"/>
-            <message key="name.invalidPattern"
-                     value="Method type name ''{0}'' must match pattern ''{1}''."/>
-        </module>-->
-        <!--<module name="InterfaceTypeParameterName">
-            <property name="format" value="(^[A-Z][0-9]?)$|([A-Z][a-zA-Z0-9]*[T]$)"/>
-            <message key="name.invalidPattern"
-                     value="Interface type name ''{0}'' must match pattern ''{1}''."/>
-        </module>-->
-        <!--<module name="NoFinalizer"/>-->
-        <!--<module name="GenericWhitespace">
-            <message key="ws.followed"
-                     value="GenericWhitespace ''{0}'' is followed by whitespace."/>
-            <message key="ws.preceded"
-                     value="GenericWhitespace ''{0}'' is preceded with whitespace."/>
-            <message key="ws.illegalFollow"
-                     value="GenericWhitespace ''{0}'' should followed by whitespace."/>
-            <message key="ws.notPreceded"
-                     value="GenericWhitespace ''{0}'' is not preceded with whitespace."/>
-        </module>-->
-        <!--<module name="Indentation">
-            <property name="basicOffset" value="2"/>
-            <property name="braceAdjustment" value="2"/>
-            <property name="caseIndent" value="2"/>
-            <property name="throwsIndent" value="4"/>
-            <property name="lineWrappingIndentation" value="4"/>
-            <property name="arrayInitIndent" value="2"/>
-        </module>-->
-        <!--<module name="AbbreviationAsWordInName">
-            <property name="ignoreFinal" value="false"/>
-            <property name="allowedAbbreviationLength" value="0"/>
-            <property name="tokens"
-                      value="CLASS_DEF, INTERFACE_DEF, ENUM_DEF, ANNOTATION_DEF, ANNOTATION_FIELD_DEF,
-                    PARAMETER_DEF, VARIABLE_DEF, METHOD_DEF, PATTERN_VARIABLE_DEF, RECORD_DEF,
-                    RECORD_COMPONENT_DEF"/>
-        </module>-->
-        <!--<module name="NoWhitespaceBeforeCaseDefaultColon"/>
-        <module name="OverloadMethodsDeclarationOrder"/>
-        <module name="VariableDeclarationUsageDistance"/>-->
-        <!--<module name="CustomImportOrder">
-            <property name="sortImportsInGroupAlphabetically" value="true"/>
-            <property name="separateLineBetweenGroups" value="true"/>
-            <property name="customImportOrderRules" value="STATIC###THIRD_PARTY_PACKAGE"/>
-            <property name="tokens" value="IMPORT, STATIC_IMPORT, PACKAGE_DEF"/>
-        </module>-->
-        <!--<module name="MethodParamPad">
-            <property name="tokens"
-                      value="CTOR_DEF, LITERAL_NEW, METHOD_CALL, METHOD_DEF,
-                    SUPER_CTOR_CALL, ENUM_CONSTANT_DEF, RECORD_DEF"/>
-        </module>-->
-        <!--<module name="NoWhitespaceBefore">
-            <property name="tokens"
-                      value="COMMA, SEMI, POST_INC, POST_DEC, DOT,
-                    LABELED_STAT, METHOD_REF"/>
-            <property name="allowLineBreaks" value="true"/>
-        </module>-->
-        <!--<module name="ParenPad">
-            <property name="tokens"
-                      value="ANNOTATION, ANNOTATION_FIELD_DEF, CTOR_CALL, CTOR_DEF, DOT, ENUM_CONSTANT_DEF,
-                    EXPR, LITERAL_CATCH, LITERAL_DO, LITERAL_FOR, LITERAL_IF, LITERAL_NEW,
-                    LITERAL_SYNCHRONIZED, LITERAL_WHILE, METHOD_CALL,
-                    METHOD_DEF, QUESTION, RESOURCE_SPECIFICATION, SUPER_CTOR_CALL, LAMBDA,
-                    RECORD_DEF"/>
-        </module>-->
-        <!--<module name="OperatorWrap">
-            <property name="option" value="NL"/>
-            <property name="tokens"
-                      value="BAND, BOR, BSR, BXOR, DIV, EQUAL, GE, GT, LAND, LE, LITERAL_INSTANCEOF, LOR,
-                    LT, MINUS, MOD, NOT_EQUAL, PLUS, QUESTION, SL, SR, STAR, METHOD_REF,
-                    TYPE_EXTENSION_AND "/>
-        </module>-->
-        <!--<module name="AnnotationLocation">
-            <property name="id" value="AnnotationLocationMostCases"/>
-            <property name="tokens"
-                      value="CLASS_DEF, INTERFACE_DEF, ENUM_DEF, METHOD_DEF, CTOR_DEF,
-                      RECORD_DEF, COMPACT_CTOR_DEF"/>
-        </module>-->
-        <!--<module name="AnnotationLocation">
-            <property name="id" value="AnnotationLocationVariables"/>
-            <property name="tokens" value="VARIABLE_DEF"/>
-            <property name="allowSamelineMultipleAnnotations" value="true"/>
-        </module>-->
-        <!--<module name="NonEmptyAtclauseDescription"/>
-        <module name="InvalidJavadocPosition"/>
-        <module name="JavadocTagContinuationIndentation"/>-->
-        <!--<module name="SummaryJavadoc">
-            <property name="forbiddenSummaryFragments"
-                      value="^@return the *|^This method returns |^A [{]@code [a-zA-Z0-9]+[}]( is a )"/>
-        </module>-->
-        <!--<module name="JavadocParagraph"/>
-        <module name="RequireEmptyLineBeforeBlockTagGroup"/>-->
-        <!--<module name="AtclauseOrder">
-            <property name="tagOrder" value="@param, @return, @throws, @deprecated"/>
-            <property name="target"
-                      value="CLASS_DEF, INTERFACE_DEF, ENUM_DEF, METHOD_DEF, CTOR_DEF, VARIABLE_DEF"/>
-        </module>-->
-        <!--<module name="JavadocMethod">
-            <property name="accessModifiers" value="public"/>
-            <property name="allowMissingParamTags" value="true"/>
-            <property name="allowMissingReturnTag" value="true"/>
-            <property name="allowedAnnotations" value="Override, Test"/>
-            <property name="tokens" value="METHOD_DEF, CTOR_DEF, ANNOTATION_FIELD_DEF, COMPACT_CTOR_DEF"/>
-        </module>-->
-        <!--<module name="MissingJavadocMethod">
-            <property name="scope" value="public"/>
-            <property name="minLineCount" value="2"/>
-            <property name="allowedAnnotations" value="Override, Test"/>
-            <property name="tokens" value="METHOD_DEF, CTOR_DEF, ANNOTATION_FIELD_DEF,
-                                   COMPACT_CTOR_DEF"/>
-        </module>-->
-        <!--<module name="MissingJavadocType">
-            <property name="scope" value="protected"/>
-            <property name="tokens"
-                      value="CLASS_DEF, INTERFACE_DEF, ENUM_DEF,
-                      RECORD_DEF, ANNOTATION_DEF"/>
-            <property name="excludeScope" value="nothing"/>
-        </module>-->
-        <!--<module name="MethodName">
-            <property name="format" value="^[a-z][a-z0-9]\w*$"/>
-            <message key="name.invalidPattern"
-                     value="Method name ''{0}'' must match pattern ''{1}''."/>
-        </module>-->
-        <!--<module name="SingleLineJavadoc"/>-->
-        <!--<module name="EmptyCatchBlock">
-            <property name="exceptionVariableName" value="expected"/>
-        </module>-->
-        <!--<module name="CommentsIndentation">
-            <property name="tokens" value="SINGLE_LINE_COMMENT, BLOCK_COMMENT_BEGIN"/>
-        </module>-->
-        <!-- https://checkstyle.org/filters/suppressionxpathfilter.html -->
-        <!--<module name="SuppressionXpathFilter">
-            <property name="file" value="${org.checkstyle.google.suppressionxpathfilter.config}"
-                      default="checkstyle-xpath-suppressions.xml" />
-            <property name="optional" value="true"/>
-        </module>-->
-        <!--<module name="SuppressWarningsHolder" />-->
-        <!--<module name="SuppressionCommentFilter">
-            <property name="offCommentFormat" value="CHECKSTYLE.OFF\: ([\w\|]+)" />
-            <property name="onCommentFormat" value="CHECKSTYLE.ON\: ([\w\|]+)" />
-            <property name="checkFormat" value="$1" />
-        </module>-->
-        <!--<module name="SuppressWithNearbyCommentFilter">
-            <property name="commentFormat" value="CHECKSTYLE.SUPPRESS\: ([\w\|]+)"/>
-            &lt;!&ndash; $1 refers to the first match group in the regex defined in commentFormat &ndash;&gt;
-            <property name="checkFormat" value="$1"/>
-            &lt;!&ndash; The check is suppressed in the next line of code after the comment &ndash;&gt;
-            <property name="influenceFormat" value="1"/>
-        </module>-->
-    </module>
-</module>
\ No newline at end of file
diff --git a/testing/pom.xml b/testing/pom.xml
index 98f04d55..f7316b7b 100644
--- a/testing/pom.xml
+++ b/testing/pom.xml
@@ -5,11 +5,11 @@
     <parent>
         <groupId>io.split.client</groupId>
         <artifactId>java-client-parent</artifactId>
-        <version>4.16.0</version>
+        <version>4.17.0-rc2</version>
     </parent>
     <artifactId>java-client-testing</artifactId>
     <packaging>jar</packaging>
-    <version>4.17.0-rc1</version>
+    <version>4.17.0-rc2</version>
     <name>Java Client For Testing</name>
     <description>Testing suite for Java SDK for Split</description>
     <dependencies>

From 21d43befda766411265040bd36ae3d86a8dbd1d2 Mon Sep 17 00:00:00 2001
From: Bilal Al-Shahwany <bilal.al-shahwany@harness.io>
Date: Tue, 1 Jul 2025 11:41:13 -0700
Subject: [PATCH 15/18] polish

---
 client/src/main/java/io/split/client/SplitFactoryImpl.java   | 2 +-
 client/src/main/java/io/split/client/dtos/ProxyMTLSAuth.java | 5 +----
 2 files changed, 2 insertions(+), 5 deletions(-)

diff --git a/client/src/main/java/io/split/client/SplitFactoryImpl.java b/client/src/main/java/io/split/client/SplitFactoryImpl.java
index e1a11dcf..80f848c4 100644
--- a/client/src/main/java/io/split/client/SplitFactoryImpl.java
+++ b/client/src/main/java/io/split/client/SplitFactoryImpl.java
@@ -597,7 +597,7 @@ private static CloseableHttpClient buildSSEdHttpClient(String apiToken, SplitCli
         return httpClientbuilder.build();
     }
 
-    private static SSLContext buildSSLContext(SplitClientConfig config) throws IOException {
+    private static SSLContext buildSSLContext(SplitClientConfig config) throws IOException, NullPointerException {
         SSLContext sslContext;
         if (config.proxyMTLSAuth() != null) {
             _log.debug("Proxy setup using mTLS");
diff --git a/client/src/main/java/io/split/client/dtos/ProxyMTLSAuth.java b/client/src/main/java/io/split/client/dtos/ProxyMTLSAuth.java
index ddd59696..5cca5abd 100644
--- a/client/src/main/java/io/split/client/dtos/ProxyMTLSAuth.java
+++ b/client/src/main/java/io/split/client/dtos/ProxyMTLSAuth.java
@@ -20,10 +20,7 @@ public static ProxyMTLSAuth.Builder builder() {
     public static class Builder {
         private String _p12File;
         private String _p12FilePassKey;
-
-        public Builder() {
-        }
-
+        
         public ProxyMTLSAuth.Builder proxyP12File(String p12File) {
             _p12File = p12File;
             return this;

From d9e2bceafb11128027fca0752b1a3e8728c03d5e Mon Sep 17 00:00:00 2001
From: Bilal Al-Shahwany <bilal.al-shahwany@harness.io>
Date: Tue, 1 Jul 2025 11:51:31 -0700
Subject: [PATCH 16/18] polish

---
 client/src/main/java/io/split/client/SplitFactoryImpl.java | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/client/src/main/java/io/split/client/SplitFactoryImpl.java b/client/src/main/java/io/split/client/SplitFactoryImpl.java
index 80f848c4..f6d932a2 100644
--- a/client/src/main/java/io/split/client/SplitFactoryImpl.java
+++ b/client/src/main/java/io/split/client/SplitFactoryImpl.java
@@ -614,7 +614,11 @@ private static SSLContext buildSSLContext(SplitClientConfig config) throws IOExc
                 _log.warn("Ignoring p12 mTLS config and switching to default context");
                 sslContext = SSLContexts.createSystemDefault();
             } finally {
-                keystoreStream.close();
+                try {
+                    keystoreStream.close();
+                } catch (NullPointerException e) {
+                    _log.error("Exception caught while closing file stream handler: ", e);
+                }
             }
         } else {
             sslContext = SSLContexts.createSystemDefault();

From 2113b7c00726312015faabd524e261787a6b6c1a Mon Sep 17 00:00:00 2001
From: Bilal Al-Shahwany <bilal.al-shahwany@harness.io>
Date: Tue, 1 Jul 2025 12:10:18 -0700
Subject: [PATCH 17/18] polish

---
 client/src/main/java/io/split/client/SplitFactoryImpl.java | 4 +---
 1 file changed, 1 insertion(+), 3 deletions(-)

diff --git a/client/src/main/java/io/split/client/SplitFactoryImpl.java b/client/src/main/java/io/split/client/SplitFactoryImpl.java
index f6d932a2..6e9d9913 100644
--- a/client/src/main/java/io/split/client/SplitFactoryImpl.java
+++ b/client/src/main/java/io/split/client/SplitFactoryImpl.java
@@ -614,10 +614,8 @@ private static SSLContext buildSSLContext(SplitClientConfig config) throws IOExc
                 _log.warn("Ignoring p12 mTLS config and switching to default context");
                 sslContext = SSLContexts.createSystemDefault();
             } finally {
-                try {
+                if (keystoreStream != null) {
                     keystoreStream.close();
-                } catch (NullPointerException e) {
-                    _log.error("Exception caught while closing file stream handler: ", e);
                 }
             }
         } else {

From 4f89fd9242b407a37d5d8214958f33054cd5c65f Mon Sep 17 00:00:00 2001
From: Bilal Al-Shahwany <bilal.al-shahwany@harness.io>
Date: Thu, 3 Jul 2025 08:42:05 -0700
Subject: [PATCH 18/18] fix tracker warning

---
 .../java/io/split/client/impressions/UniqueKeysTrackerImp.java  | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/client/src/main/java/io/split/client/impressions/UniqueKeysTrackerImp.java b/client/src/main/java/io/split/client/impressions/UniqueKeysTrackerImp.java
index bd2ff918..80b3703d 100644
--- a/client/src/main/java/io/split/client/impressions/UniqueKeysTrackerImp.java
+++ b/client/src/main/java/io/split/client/impressions/UniqueKeysTrackerImp.java
@@ -117,7 +117,7 @@ private void sendUniqueKeys(){
         }
         try {
             if (uniqueKeysTracker.size() == 0) {
-                _log.warn("The Unique Keys Tracker is empty");
+                _log.debug("The Unique Keys Tracker is empty");
                 return;
             }
             HashMap<String, HashSet<String>> uniqueKeysHashMap = popAll();