using System; using System.Collections.Generic; using System.Text.Json; using System.Text.Json.Serialization; using Newtonsoft.Json; using ILogger = NuGetCredentialProvider.Logging.ILogger; namespace NuGetCredentialProvider.Util; public class ExternalEndpointCredentials { [JsonProperty("endpoint")] public string Endpoint { get; set; } [JsonProperty("username")] public string Username { get; set; } [JsonProperty("password")] public string Password { get; set; } } public class ExternalEndpointCredentialsContainer { [JsonProperty("endpointCredentials")] public ExternalEndpointCredentials[] EndpointCredentials { get; set; } } public class EndpointCredentials { [JsonPropertyName("endpoint")] public string Endpoint { get; set; } [JsonPropertyName("clientId")] public string ClientId { get; set; } [JsonPropertyName("clientCertificateFilePath")] public string CertificateFilePath { get; set; } [JsonPropertyName("clientCertificateSubjectName")] public string CertificateSubjectName { get; set; } } public class EndpointCredentialsContainer { [JsonPropertyName("endpointCredentials")] public EndpointCredentials[] EndpointCredentials { get; set; } } public static class FeedEndpointCredentialsParser { private static readonly JsonSerializerOptions options = new JsonSerializerOptions { PropertyNamingPolicy = JsonNamingPolicy.CamelCase, PropertyNameCaseInsensitive = true, }; public static Dictionary<string, EndpointCredentials> ParseFeedEndpointsJsonToDictionary(ILogger logger) { string feedEndpointsJson = Environment.GetEnvironmentVariable(EnvUtil.EndpointCredentials); if (string.IsNullOrWhiteSpace(feedEndpointsJson)) { return new Dictionary<string, EndpointCredentials>(StringComparer.OrdinalIgnoreCase); } try { logger.Verbose(Resources.ParsingJson); Dictionary<string, EndpointCredentials> credsResult = new Dictionary<string, EndpointCredentials>(StringComparer.OrdinalIgnoreCase); EndpointCredentialsContainer endpointCredentials = System.Text.Json.JsonSerializer.Deserialize<EndpointCredentialsContainer>(feedEndpointsJson, options); if (endpointCredentials == null) { logger.Verbose(Resources.NoEndpointsFound); return credsResult; } foreach (var credentials in endpointCredentials.EndpointCredentials) { if (credentials == null) { logger.Verbose(Resources.EndpointParseFailure); break; } if (credentials.ClientId == null) { logger.Verbose(Resources.EndpointParseFailure); break; } if (credentials.CertificateSubjectName != null && credentials.CertificateFilePath != null) { logger.Verbose(Resources.EndpointParseFailure); break; } if (!Uri.TryCreate(credentials.Endpoint, UriKind.Absolute, out var endpointUri)) { logger.Verbose(Resources.EndpointParseFailure); break; } var urlEncodedEndpoint = endpointUri.AbsoluteUri; if (!credsResult.ContainsKey(urlEncodedEndpoint)) { credsResult.Add(urlEncodedEndpoint, credentials); } } return credsResult; } catch (Exception ex) { logger.Verbose(string.Format(Resources.VstsBuildTaskExternalCredentialCredentialProviderError, ex)); return new Dictionary<string, EndpointCredentials>(StringComparer.OrdinalIgnoreCase); ; } } public static Dictionary<string, ExternalEndpointCredentials> ParseExternalFeedEndpointsJsonToDictionary(ILogger logger) { string feedEndpointsJson = Environment.GetEnvironmentVariable(EnvUtil.BuildTaskExternalEndpoints); if (string.IsNullOrWhiteSpace(feedEndpointsJson)) { return new Dictionary<string, ExternalEndpointCredentials>(StringComparer.OrdinalIgnoreCase); } try { logger.Verbose(Resources.ParsingJson); if (feedEndpointsJson.Contains("':")) { logger.Warning(Resources.InvalidJsonWarning); } Dictionary<string, ExternalEndpointCredentials> credsResult = new Dictionary<string, ExternalEndpointCredentials>(StringComparer.OrdinalIgnoreCase); ExternalEndpointCredentialsContainer endpointCredentials = JsonConvert.DeserializeObject<ExternalEndpointCredentialsContainer>(feedEndpointsJson); if (endpointCredentials == null) { logger.Verbose(Resources.NoEndpointsFound); return credsResult; } foreach (var credentials in endpointCredentials.EndpointCredentials) { if (credentials == null) { logger.Verbose(Resources.EndpointParseFailure); break; } if (credentials.Username == null) { credentials.Username = "VssSessionToken"; } if (!Uri.TryCreate(credentials.Endpoint, UriKind.Absolute, out var endpointUri)) { logger.Verbose(Resources.EndpointParseFailure); break; } var urlEncodedEndpoint = endpointUri.AbsoluteUri; if (!credsResult.ContainsKey(urlEncodedEndpoint)) { credsResult.Add(urlEncodedEndpoint, credentials); } } return credsResult; } catch (Exception ex) { logger.Verbose(string.Format(Resources.VstsBuildTaskExternalCredentialCredentialProviderError, ex)); return new Dictionary<string, ExternalEndpointCredentials>(StringComparer.OrdinalIgnoreCase); } } }