b/290701797 Embed default app protocols (#1059)

* Include default app protocols (Chrome, MySQL Shell)
* Embed IAPC files in assembly so that they are immutable

Author: jpassing

sources/Google.Solutions.IapDesktop.Core.Test/ClientModel/Protocol/TestAppProtocolConfigurationFile.cs

@@ -33,19 +33,19 @@ namespace Google.Solutions.IapDesktop.Core.Test.ClientModel.Protocol
     public class TestAppProtocolConfigurationFile
     {
         //---------------------------------------------------------------------
-        // FromJson.
+        // ReadJson.
         //---------------------------------------------------------------------
 
         [Test]
-        public void WhenJsonIsNullOrEmptyOrMalformed_ThenFromJsonThrowsException(
+        public void WhenJsonIsNullOrEmptyOrMalformed_ThenReadJsonThrowsException(
             [Values(null, " ", "{,", "{}")] string json)
         {
             Assert.Throws<InvalidAppProtocolException>(
                 () => AppProtocolConfigurationFile.ReadJson(json));
         }
 
         [Test]
-        public void WhenJsonContainsNoVersion_ThenFromJsonThrowsException()
+        public void WhenJsonContainsNoVersion_ThenReadJsonThrowsException()
         {
             var json = @"
                 {
@@ -59,7 +59,7 @@ public void WhenJsonContainsNoVersion_ThenFromJsonThrowsException()
         }
 
         [Test]
-        public void WhenJsonContainsUnsupportedVersion_ThenFromJsonThrowsException()
+        public void WhenJsonContainsUnsupportedVersion_ThenReadJsonThrowsException()
         {
             var json = @"
                 {
@@ -74,7 +74,7 @@ public void WhenJsonContainsUnsupportedVersion_ThenFromJsonThrowsException()
         }
 
         [Test]
-        public void WhenJsonIsValid_ThenFromJsonReturnsProtocol()
+        public void WhenJsonIsValid_ThenReadJsonReturnsProtocol()
         {
             var json = @"
                 {
@@ -97,11 +97,29 @@ public void WhenJsonIsValid_ThenFromJsonReturnsProtocol()
         }
 
         //---------------------------------------------------------------------
-        // FromJson.
+        // ReadStreamAsync.
         //---------------------------------------------------------------------
 
         [Test]
-        public void WhenFileNotFound_ThenFromFileThrowsException()
+        public void WhenStreamDataEmptyOrMalformed_ThenReadStreamThrowsException(
+            [Values("", " ", "{,", "{}")] string json)
+        {
+            var filePath = Path.GetTempFileName();
+            File.WriteAllText(filePath, json);
+
+            using (var stream = File.OpenRead(filePath))
+            {
+                ExceptionAssert.ThrowsAggregateException<InvalidAppProtocolException>(
+                    () => AppProtocolConfigurationFile.ReadStreamAsync(stream).Wait());
+            }
+        }
+
+        //---------------------------------------------------------------------
+        // ReadFileAsync.
+        //---------------------------------------------------------------------
+
+        [Test]
+        public void WhenFileNotFound_ThenReadFileThrowsException()
         {
             ExceptionAssert.ThrowsAggregateException<FileNotFoundException>(
                 () => AppProtocolConfigurationFile.ReadFileAsync("doesnotexist.json").Wait());
@@ -110,7 +128,7 @@ public void WhenFileNotFound_ThenFromFileThrowsException()
         }
 
         [Test]
-        public void WhenFileEmptyOrMalformed_ThenFromFileThrowsException(
+        public void WhenFileEmptyOrMalformed_ThenReadFileThrowsException(
             [Values("", " ", "{,", "{}")] string json)
         {
             var filePath = Path.GetTempFileName();

sources/Google.Solutions.IapDesktop.Core/ClientModel/Protocol/AppProtocolConfigurationFile.cs

@@ -78,7 +78,7 @@ public static class AppProtocolConfigurationFile
         // Deserialization.
         //---------------------------------------------------------------------
 
-        private static AppProtocol FromSection(MainSection section)
+        private static AppProtocol ReadSection(MainSection section)
         {
             if (section == null)
             {
@@ -105,7 +105,7 @@ public static AppProtocol ReadJson(string json)
         {
             try
             {
-                return FromSection(NewtonsoftJsonSerializer
+                return ReadSection(NewtonsoftJsonSerializer
                     .Instance
                     .Deserialize<MainSection>(json));
             }
@@ -116,6 +116,29 @@ public static AppProtocol ReadJson(string json)
             }
         }
 
+        public static Task<AppProtocol> ReadStreamAsync(Stream stream)
+        {
+            return Task.Run(() =>
+            {
+                try
+                {
+                    return ReadSection(NewtonsoftJsonSerializer
+                        .Instance
+                        .Deserialize<MainSection>(stream));
+                }
+                catch (InvalidAppProtocolException e)
+                {
+                    throw new InvalidAppProtocolException(
+                        $"The protocol configuration contains format errors", e);
+                }
+                catch (JsonException e)
+                {
+                    throw new InvalidAppProtocolException(
+                        $"The protocol configuration contains format errors", e);
+                }
+            });
+        }
+
         public static Task<AppProtocol> ReadFileAsync(string path)
         {
             return Task.Run(() =>
@@ -124,7 +147,7 @@ public static Task<AppProtocol> ReadFileAsync(string path)
                 {
                     using (var stream = File.OpenRead(path))
                     {
-                        return FromSection(NewtonsoftJsonSerializer
+                        return ReadSection(NewtonsoftJsonSerializer
                             .Instance
                             .Deserialize<MainSection>(stream));
                     }

sources/Google.Solutions.IapDesktop.Extensions.Session.Test/TestInitializeSessionExtension.cs

@@ -0,0 +1,88 @@
+//
+// Copyright 2023 Google LLC
+//
+// Licensed to the Apache Software Foundation (ASF) under one
+// or more contributor license agreements.  See the NOTICE file
+// distributed with this work for additional information
+// regarding copyright ownership.  The ASF licenses this file
+// to you under the Apache License, Version 2.0 (the
+// "License"); you may not use this file except in compliance
+// with the License.  You may obtain a copy of the License at
+// 
+//   http://www.apache.org/licenses/LICENSE-2.0
+// 
+// Unless required by applicable law or agreed to in writing,
+// software distributed under the License is distributed on an
+// "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+// KIND, either express or implied.  See the License for the
+// specific language governing permissions and limitations
+// under the License.
+//
+using Google.Solutions.IapDesktop.Core.ClientModel.Protocol;
+using NUnit.Framework;
+using System.IO;
+using System.Threading.Tasks;
+
+namespace Google.Solutions.IapDesktop.Extensions.Session.Test
+{
+    [TestFixture]
+    public class TestInitializeSessionExtension
+    {
+        //---------------------------------------------------------------------
+        // LoadAndRegisterDefaultAppProtocols.
+        //---------------------------------------------------------------------
+
+        [Test]
+        public async Task LoadAndRegisterDefaultAppProtocols()
+        {
+            var registry = new ProtocolRegistry();
+            await InitializeSessionExtension
+                .LoadAndRegisterDefaultAppProtocolsAsync(registry)
+                .ConfigureAwait(false);
+
+            CollectionAssert.IsNotEmpty(registry.Protocols);
+        }
+
+        //---------------------------------------------------------------------
+        // LoadAndRegisterCustomAppProtocols.
+        //---------------------------------------------------------------------
+
+        [Test]
+        public async Task WhenDirectoryNotFound_ThenLoadAndRegisterCustomAppProtocolsReturns()
+        {
+            var registry = new ProtocolRegistry();
+            await InitializeSessionExtension
+                .LoadAndRegisterCustomAppProtocolsAsync("b:\\notfound", registry)
+                .ConfigureAwait(false);
+
+            CollectionAssert.IsEmpty(registry.Protocols);
+        }
+
+        [Test]
+        public async Task WhenDirectoryContainsIapcFiles_ThenLoadAndRegisterCustomAppProtocolsLoadsFiles()
+        {
+            var dir = Directory.CreateDirectory(
+                Path.Combine(Path.GetTempPath(), Path.GetRandomFileName()));
+
+            File.WriteAllText(
+                $"{dir.FullName}\\sample.iapc",
+                @"
+                {
+                    'version': 1,
+                    'name': 'protocol-1',
+                    'condition': 'isWindows()',
+                    'remotePort': 8080,
+                    'client': {
+                        'executable': 'cmd'
+                    }
+                }");
+
+            var registry = new ProtocolRegistry();
+            await InitializeSessionExtension
+                .LoadAndRegisterCustomAppProtocolsAsync(dir.FullName, registry)
+                .ConfigureAwait(false);
+
+            CollectionAssert.IsNotEmpty(registry.Protocols);
+        }
+    }
+}

sources/Google.Solutions.IapDesktop.Extensions.Session/Google.Solutions.IapDesktop.Extensions.Session.csproj

@@ -15,7 +15,6 @@
       copy /Y $(MSBuildProjectDirectory)\$(OutputPath)\$(TargetFramework)\*oslogin* $(SolutionDir)\Google.Solutions.IapDesktop\$(OutputPath)\$(TargetFramework)\
       copy /Y $(MSBuildProjectDirectory)\$(OutputPath)\$(TargetFramework)\vtnetcore.* $(SolutionDir)\Google.Solutions.IapDesktop\$(OutputPath)\$(TargetFramework)\
       copy /Y $(MSBuildProjectDirectory)\$(OutputPath)\$(TargetFramework)\*tsc* $(SolutionDir)\Google.Solutions.IapDesktop\$(OutputPath)\$(TargetFramework)\
-      xcopy /S /Y /I $(MSBuildProjectDirectory)\Properties\Config $(SolutionDir)\Google.Solutions.IapDesktop\$(OutputPath)\$(TargetFramework)\Config
     </PostBuildEvent>
   </PropertyGroup>
   <ItemGroup>
@@ -227,4 +226,14 @@
   <ItemGroup>
     <Compile Remove="obj\x86\Release\.NETFramework,Version=v4.6.2.AssemblyAttributes.cs" />
   </ItemGroup>
+  <ItemGroup>
+    <None Remove="Properties\DefaultAppProtocols\chrome-80.iapc" />
+    <None Remove="Properties\DefaultAppProtocols\chrome-8080.iapc" />
+    <None Remove="Properties\DefaultAppProtocols\mysql.iapc" />
+  </ItemGroup>
+  <ItemGroup>
+    <EmbeddedResource Include="Properties\DefaultAppProtocols\chrome-80.iapc" />
+    <EmbeddedResource Include="Properties\DefaultAppProtocols\chrome-8080.iapc" />
+    <EmbeddedResource Include="Properties\DefaultAppProtocols\mysql.iapc" />
+  </ItemGroup>
 </Project>

sources/Google.Solutions.IapDesktop.Extensions.Session/InitializeSessionExtension.cs

@@ -30,7 +30,6 @@
 using Google.Solutions.IapDesktop.Application.Windows.Dialog;
 using Google.Solutions.IapDesktop.Core.ClientModel.Protocol;
 using Google.Solutions.IapDesktop.Core.ClientModel.Traits;
-using Google.Solutions.IapDesktop.Core.ClientModel.Transport.Policies;
 using Google.Solutions.IapDesktop.Core.ObjectModel;
 using Google.Solutions.IapDesktop.Core.ProjectModel;
 using Google.Solutions.IapDesktop.Extensions.Session.Properties;
@@ -45,13 +44,11 @@
 using Google.Solutions.IapDesktop.Extensions.Session.ToolWindows.SshKeys;
 using Google.Solutions.IapDesktop.Extensions.Session.ToolWindows.Tunnels;
 using Google.Solutions.Mvvm.Binding.Commands;
-using Google.Solutions.Platform.Dispatch;
 using System;
 using System.Collections.Specialized;
 using System.Diagnostics;
 using System.IO;
 using System.Linq;
-using System.Reflection;
 using System.Threading.Tasks;
 using System.Windows.Forms;
 
@@ -116,13 +113,41 @@ await this.serviceProvider.GetService<ICreateCredentialsWorkflow>()
             }
         }
 
-        private async Task LoadAndRegisterAppProtocolsAsync( // TODO: Test
-            IWin32Window window,
+        /// <summary>
+        /// Load the default app protocols embedded into the assembly.
+        /// </summary>
+        internal static async Task LoadAndRegisterDefaultAppProtocolsAsync(
+            ProtocolRegistry protocolRegistry)
+        {
+            var assembly = typeof(InitializeSessionExtension).Assembly;
+            var loadTasks = assembly
+                .GetManifestResourceNames()
+                .Where(s => s.EndsWith(AppProtocolConfigurationFile.FileExtension))
+                .Select(async resourceName =>
+                {
+                    using (var stream = assembly.GetManifestResourceStream(resourceName))
+                    {
+                        var protocol = await AppProtocolConfigurationFile
+                            .ReadStreamAsync(stream)
+                            .ConfigureAwait(false);
+
+                        protocolRegistry.RegisterProtocol(protocol);
+                    }
+                })
+                .ToList();
+
+            await Task
+                .WhenAll(loadTasks)
+                .ConfigureAwait(false);
+        }
+
+        /// <summary>
+        /// Load user-defined app protocols from the file system.
+        /// </summary>
+        internal static async Task LoadAndRegisterCustomAppProtocolsAsync(
+            string protocolsPath,
             ProtocolRegistry protocolRegistry)
         {
-            var protocolsPath = Path.Combine(
-                this.serviceProvider.GetService<IInstall>().BaseDirectory,
-                "Config");
             if (!Directory.Exists(protocolsPath))
             {
                 return;
@@ -157,11 +182,28 @@ private async Task LoadAndRegisterAppProtocolsAsync( // TODO: Test
                     }
                 })
                 .ToList();
-            
+
+            await Task
+                .WhenAll(loadTasks)
+                .ConfigureAwait(false);
+        }
+
+        private async Task LoadAndRegisterAppProtocolsAsync(
+            IWin32Window window,
+            ProtocolRegistry protocolRegistry)
+        {
             try
             {
+                var protocolsPath = Path.Combine(
+                    this.serviceProvider.GetService<IInstall>().BaseDirectory,
+                    "Config");
+
                 await Task
-                    .WhenAll(loadTasks)
+                    .WhenAll(
+                        LoadAndRegisterDefaultAppProtocolsAsync(protocolRegistry),
+                        LoadAndRegisterCustomAppProtocolsAsync(
+                            protocolsPath,
+                            protocolRegistry))
                     .ConfigureAwait(true); // Back to UI thread (for exception dialog).
             }
             catch (Exception e)

sources/Google.Solutions.IapDesktop.Extensions.Session/Properties/DefaultAppProtocols/chrome-80.iapc

@@ -0,0 +1,18 @@
+{
+  "version": 1,
+  "name": "Chrome (port 80)",
+  "condition": "isInstance()",
+  "remotePort": "80",
+  "client": {
+    //
+    // Force Chrome to launch a new process (as opposed to passing the URL
+    // to one of its existing processes) so that IAP Desktop knows when to
+    // close the tunnel again.
+    //
+    // Use guest mode to prevent any browsing history or cookies from bleeding
+    // to or from the IAP-protected resource.
+    //
+    "executable": "chrome.exe",
+    "arguments": "--user-data-dir=%temp%\\chrome-guest-{port} --guest \"http://{host}:{port}/"
+  }
+}

sources/Google.Solutions.IapDesktop.Extensions.Session/Properties/Config/chrome-8080.iapc renamed to sources/Google.Solutions.IapDesktop.Extensions.Session/Properties/DefaultAppProtocols/chrome-8080.iapc

@@ -80,7 +80,8 @@ public IEnumerable<IContextCommand<IProjectModelNode>> ConnectWithAppCommands
                 foreach (var protocol in this.protocolRegistry
                     .Protocols
                     .OfType<AppProtocol>()
-                    .Where(p => p.Client != null))
+                    .Where(p => p.Client != null)
+                    .OrderBy(p => p.Name))
                 {
                     var factory = new AppProtocolContextFactory(
                         protocol,