Merge remote-tracking branch 'azure/preview' into server2015

Author: jaredmoo

src/Common/Commands.Common.Authentication.Abstractions/AzureEnvironment.cs

@@ -52,6 +52,7 @@ public class AzureEnvironment : IAzureEnvironment
                     AzureDataLakeAnalyticsCatalogAndJobEndpointSuffix = AzureEnvironmentConstants.AzureDataLakeAnalyticsCatalogAndJobEndpointSuffix,
                     AzureDataLakeStoreFileSystemEndpointSuffix = AzureEnvironmentConstants.AzureDataLakeStoreFileSystemEndpointSuffix,
                     GraphEndpointResourceId = AzureEnvironmentConstants.AzureGraphEndpoint,
+                    DataLakeEndpointResourceId = AzureEnvironmentConstants.AzureDataLakeServiceEndpointResourceId,
                     AdTenant = "Common"
                 }
             },
@@ -222,6 +223,11 @@ public AzureEnvironment(IAzureEnvironment other)
         /// </summary>
         public string GraphEndpointResourceId { get; set; }
 
+        /// <summary>
+        /// The token audience required for communicating with the Azure Active Directory Data Lake service in this environment
+        /// </summary>
+        public string DataLakeEndpointResourceId { get; set; }
+
         /// <summary>
         /// The domain name suffix for Azure DataLake Catalog and Job services created in this environment
         /// </summary>
@@ -268,7 +274,8 @@ public static class Endpoint
                 PublishSettingsFileUrl = "PublishSettingsFileUrl",
                 ManagementPortalUrl = "ManagementPortalUrl",
                 AzureDataLakeAnalyticsCatalogAndJobEndpointSuffix = "AzureDataLakeAnalyticsCatalogAndJobEndpointSuffix",
-                AzureDataLakeStoreFileSystemEndpointSuffix = "AzureDataLakeStoreFileSystemEndpointSuffix";
+                AzureDataLakeStoreFileSystemEndpointSuffix = "AzureDataLakeStoreFileSystemEndpointSuffix",
+                DataLakeEndpointResourceId = "DataLakeEndpointResourceId";
 
         }
     }

src/Common/Commands.Common.Authentication.Abstractions/AzureEnvironmentConstants.cs

@@ -120,5 +120,10 @@ public static class AzureEnvironmentConstants
         /// </summary>
         public const string AzureDataLakeAnalyticsCatalogAndJobEndpointSuffix = "azuredatalakeanalytics.net";
         public const string AzureDataLakeStoreFileSystemEndpointSuffix = "azuredatalakestore.net";
+
+        /// <summary>
+        /// The token audience for authorizing DataLake requests
+        /// </summary>
+        public const string AzureDataLakeServiceEndpointResourceId = "https://datalake.azure.net";
     }
 }

src/Common/Commands.Common.Authentication.Abstractions/Extensions/AzureEnvironmentExtensions.cs

@@ -62,6 +62,9 @@ public static bool TryGetEndpointUrl(this IAzureEnvironment environment, string
                 case AzureEnvironment.Endpoint.GraphEndpointResourceId:
                     endpoint = new Uri(environment.GraphEndpointResourceId);
                     break;
+                case AzureEnvironment.Endpoint.DataLakeEndpointResourceId:
+                    endpoint = new Uri(environment.DataLakeEndpointResourceId);
+                    break;
                 default:
                     result = false;
                     break;
@@ -220,6 +223,9 @@ public static void SetEndpoint(this IAzureEnvironment environment, string endpoi
                     case AzureEnvironment.Endpoint.AzureDataLakeStoreFileSystemEndpointSuffix:
                         environment.AzureDataLakeStoreFileSystemEndpointSuffix = propertyValue;
                         break;
+                    case AzureEnvironment.Endpoint.DataLakeEndpointResourceId:
+                        environment.DataLakeEndpointResourceId = propertyValue;
+                        break;
                     case AzureEnvironment.Endpoint.ActiveDirectory:
                         environment.ActiveDirectoryAuthority = propertyValue;
                         break;
@@ -258,6 +264,12 @@ public static string GetTokenAudience(this IAzureEnvironment environment, string
             {
                 resource = AzureEnvironment.Endpoint.GraphEndpointResourceId;
             }
+            else if (targetEndpoint == AzureEnvironment.Endpoint.AzureDataLakeAnalyticsCatalogAndJobEndpointSuffix ||
+                targetEndpoint == AzureEnvironment.Endpoint.AzureDataLakeStoreFileSystemEndpointSuffix ||
+                targetEndpoint == AzureEnvironment.Endpoint.DataLakeEndpointResourceId)
+            {
+                resource = AzureEnvironment.Endpoint.DataLakeEndpointResourceId;
+            }
 
             return resource;
         }

src/Common/Commands.Common.Authentication.Abstractions/Interfaces/IAzureEnvironment.cs

@@ -102,6 +102,11 @@ public interface IAzureEnvironment : IExtensibleModel
         /// </summary>
         string GraphEndpointResourceId { get; set; }
 
+        /// <summary>
+        /// The token audience required to authenticate with the Azure Active Directory Data Lake services
+        /// </summary>
+        string DataLakeEndpointResourceId { get; set; }
+
         /// <summary>
         ///  The domain name suffix for Azure DataLake Catalog and Job services
         /// </summary>

src/Common/Commands.Common.Authentication.Test/AzureSessionTests.cs

@@ -0,0 +1,75 @@
+// ----------------------------------------------------------------------------------
+//
+// Copyright Microsoft Corporation
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+// http://www.apache.org/licenses/LICENSE-2.0
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+// ----------------------------------------------------------------------------------
+
+using Microsoft.Azure.Commands.Common.Authentication;
+using Microsoft.Azure.Commands.Common.Authentication.Factories;
+using Microsoft.Azure.Commands.Common.Authentication.Models;
+using Microsoft.WindowsAzure.Commands.Test.Utilities.Common;
+using System;
+using System.Collections.Generic;
+using Microsoft.WindowsAzure.Commands.ScenarioTest;
+using Xunit;
+using Microsoft.Azure.Commands.Common.Authentication.Abstractions;
+using System.IO;
+
+namespace Common.Authentication.Test
+{
+    public class AzureSessionTests
+    {
+        [Fact]
+        [Trait(Category.AcceptanceType, Category.CheckIn)]
+        public void InitializerCreatesTokenCacheFile()
+        {
+            AzureSessionInitializer.InitializeAzureSession();
+            IAzureSession oldSession = null;
+            try
+            {
+                oldSession = AzureSession.Instance;
+            }
+            catch { }
+            try
+            {
+                var store = new MemoryDataStore();
+                AzureSessionInitializer.CreateOrReplaceSession(store);
+                var session = AzureSession.Instance;
+                var tokenCacheFile = Path.Combine(session.ProfileDirectory, session.TokenCacheFile);
+                Assert.True(store.FileExists(tokenCacheFile));
+
+            }
+            finally
+            {
+                AzureSession.Initialize(() => oldSession, true);
+            }
+        }
+
+        [Fact]
+        [Trait(Category.AcceptanceType, Category.CheckIn)]
+        public void TokenCacheIgnoresInvalidData()
+        {
+            var store = new AzureTokenCache { CacheData = new byte[] { 3, 0, 0, 0, 0, 0, 0, 0 } };
+            var cache = new AuthenticationStoreTokenCache(store);
+            Assert.NotEqual(cache.CacheData, store.CacheData);
+        }
+
+        [Fact]
+        [Trait(Category.AcceptanceType, Category.CheckIn)]
+        public void TokenCacheUsesValidData()
+        {
+            var store = new AzureTokenCache { CacheData = new byte[] { 2, 0, 0, 0, 0, 0, 0, 0 } };
+            var cache = new AuthenticationStoreTokenCache(store);
+            Assert.Equal(cache.CacheData, store.CacheData);
+        }
+
+    }
+}

src/Common/Commands.Common.Authentication.Test/Commands.Common.Authentication.Test.csproj

@@ -120,6 +120,7 @@
     </Reference>
   </ItemGroup>
   <ItemGroup>
+    <Compile Include="AzureSessionTests.cs" />
     <Compile Include="ClientFactoryHandlerTests.cs" />
     <Compile Include="ClientFactoryTests.cs" />
     <Compile Include="AuthenticationFactoryTests.cs" />

src/Common/Commands.Common.Authentication/Authentication/AuthenticationStoreTokenCache.cs

@@ -22,19 +22,17 @@ namespace Microsoft.Azure.Commands.Common.Authentication
     [Serializable]
     public class AuthenticationStoreTokenCache : TokenCache, IAzureTokenCache, IDisposable
     {
-        AzureTokenCache _tokenStore;
-
+        IAzureTokenCache _store = new AzureTokenCache();
         public byte[] CacheData
         {
             get
             {
-                return _tokenStore.CacheData;
+               return Serialize();
             }
 
             set
             {
-                this.Clear();
-                _tokenStore.CacheData = value;
+                this.Deserialize(value);
             }
         }
 
@@ -45,10 +43,9 @@ public AuthenticationStoreTokenCache(AzureTokenCache store) : base()
                 throw new ArgumentNullException("store");
             }
 
-            _tokenStore = store;
-            if (_tokenStore != null && _tokenStore.CacheData != null && _tokenStore.CacheData.Length > 0)
+            if (store.CacheData != null && store.CacheData.Length > 0)
             {
-                base.Deserialize(_tokenStore.CacheData);
+                CacheData = store.CacheData;
             }
 
             AfterAccess += HandleAfterAccess;
@@ -59,41 +56,33 @@ public AuthenticationStoreTokenCache(AzureTokenCache store) : base()
         /// </summary>
         /// <param name="cache">The cache to copy</param>
         /// <param name="store">The store to use for persisting state</param>
-        public AuthenticationStoreTokenCache(TokenCache cache, AzureTokenCache store) : this(store)
+        public AuthenticationStoreTokenCache(TokenCache cache) : base()
         {
             if (null == cache)
             {
                 throw new ArgumentNullException("Cache");
             }
 
-            Deserialize(cache.Serialize());
-        }
-
-        /// <summary>
-        /// Create a token cache, copying any data from the given token cache
-        /// </summary>
-        /// <param name="cache">The cache to copy</param>
-        public AuthenticationStoreTokenCache(TokenCache cache) : this(cache, new AzureTokenCache())
-        {
+            CacheData = cache.Serialize();
+            AfterAccess += HandleAfterAccess;
         }
 
-
         public void HandleAfterAccess(TokenCacheNotificationArgs args)
         {
             if (HasStateChanged)
             {
-                _tokenStore.CacheData = Serialize();
+                _store.CacheData = Serialize();
             }
         }
 
         protected virtual void Dispose(bool disposing)
         {
             if (disposing)
             {
-                var cache = Interlocked.Exchange(ref _tokenStore, null);
+                var cache = Interlocked.Exchange(ref _store, null);
                 if (cache != null)
                 {
-                    cache.CacheData = base.Serialize();
+                    cache.CacheData = Serialize();
                 }
             }
         }

src/Common/Commands.Common.Authentication/Authentication/ProtectedFileTokenCache.cs

@@ -37,6 +37,8 @@ public class ProtectedFileTokenCache : TokenCache, IAzureTokenCache
 
         private static readonly Lazy<ProtectedFileTokenCache> instance = new Lazy<ProtectedFileTokenCache>(() => new ProtectedFileTokenCache());
 
+        IDataStore _store;
+
         public byte[] CacheData
         {
             get
@@ -47,32 +49,37 @@ public byte[] CacheData
             set
             {
                 Deserialize(value);
+                HasStateChanged = true;
+                EnsureStateSaved();
             }
         }
 
         // Initializes the cache against a local file.
         // If the file is already present, it loads its content in the ADAL cache
         private ProtectedFileTokenCache()
         {
+            _store = AzureSession.Instance.DataStore;
             Initialize(CacheFileName);
         }
 
-        public ProtectedFileTokenCache(byte[] inputData)
+        public ProtectedFileTokenCache(byte[] inputData, IDataStore store = null) : this(CacheFileName, store)
         {
-            AfterAccess = AfterAccessNotification;
-            BeforeAccess = BeforeAccessNotification;
             CacheData = inputData;
         }
 
+        public ProtectedFileTokenCache(string cacheFile, IDataStore store = null)
+        {
+            _store = store ?? AzureSession.Instance.DataStore;
+            Initialize(cacheFile);
+        }
+
         private void Initialize(string fileName)
         {
-            AfterAccess = AfterAccessNotification;
-            BeforeAccess = BeforeAccessNotification;
             lock (fileLock)
             {
-                if (AzureSession.Instance.DataStore.FileExists(fileName))
+                if (_store.FileExists(fileName))
                 {
-                    var existingData = AzureSession.Instance.DataStore.ReadFileAsBytes(fileName);
+                    var existingData = _store.ReadFileAsBytes(fileName);
                     if (existingData != null)
                     {
                         try
@@ -81,25 +88,26 @@ private void Initialize(string fileName)
                         }
                         catch (CryptographicException)
                         {
-                            AzureSession.Instance.DataStore.DeleteFile(fileName);
+                            _store.DeleteFile(fileName);
                         }
                     }
                 }
+                
+                // Create the file to start with
+                _store.WriteFile(CacheFileName, ProtectedData.Protect(Serialize(), null, DataProtectionScope.CurrentUser));
             }
-        }
 
-        public ProtectedFileTokenCache(string cacheFile)
-        {
-            Initialize(cacheFile);
+            AfterAccess = AfterAccessNotification;
+            BeforeAccess = BeforeAccessNotification;
         }
 
         // Empties the persistent store.
         public override void Clear()
         {
             base.Clear();
-            if (AzureSession.Instance.DataStore.FileExists(CacheFileName))
+            if (_store.FileExists(CacheFileName))
             {
-                AzureSession.Instance.DataStore.DeleteFile(CacheFileName);
+                _store.DeleteFile(CacheFileName);
             }
         }
 
@@ -109,9 +117,9 @@ void BeforeAccessNotification(TokenCacheNotificationArgs args)
         {
             lock (fileLock)
             {
-                if (AzureSession.Instance.DataStore.FileExists(CacheFileName))
+                if (_store.FileExists(CacheFileName))
                 {
-                    var existingData = AzureSession.Instance.DataStore.ReadFileAsBytes(CacheFileName);
+                    var existingData = _store.ReadFileAsBytes(CacheFileName);
                     if (existingData != null)
                     {
                         try
@@ -120,7 +128,7 @@ void BeforeAccessNotification(TokenCacheNotificationArgs args)
                         }
                         catch (CryptographicException)
                         {
-                            AzureSession.Instance.DataStore.DeleteFile(CacheFileName);
+                            _store.DeleteFile(CacheFileName);
                         }
                     }
                 }
@@ -131,13 +139,18 @@ void BeforeAccessNotification(TokenCacheNotificationArgs args)
         void AfterAccessNotification(TokenCacheNotificationArgs args)
         {
             // if the access operation resulted in a cache update
-            if (HasStateChanged)
+            EnsureStateSaved();
+        }
+
+        void EnsureStateSaved()
+        {
+            lock (fileLock)
             {
-                lock (fileLock)
+                if (HasStateChanged)
                 {
                     // reflect changes in the persistent store
-                    AzureSession.Instance.DataStore.WriteFile(CacheFileName,
-                        ProtectedData.Protect(Serialize(), null, DataProtectionScope.CurrentUser));
+                    _store.WriteFile(CacheFileName,
+                    ProtectedData.Protect(Serialize(), null, DataProtectionScope.CurrentUser));
                     // once the write operation took place, restore the HasStateChanged bit to false
                     HasStateChanged = false;
                 }