Mid-work Self-Update cleanup

Author: jacobsen9026

BLAZAM.Tests/Updates/UpdateTests.cs

@@ -57,13 +57,7 @@ private static async Task Update_Cleanup_OK(ApplicationUpdate latest)
             Assert.Empty(latest.UpdateStagingDirectory.Files);
         }
 
-        [Fact]
-        public void UpdateService_HasWritePermission_ReturnsExpected()
-        {
-            // Should reflect the underlying credential state
-            var hasPermission = _updateService.HasWritePermission;
-            Assert.IsType<bool>(hasPermission);
-        }
+      
 
         [Fact]
         public void UpdateService_UpdateCredential_ReturnsEnum()
@@ -75,7 +69,7 @@ public void UpdateService_UpdateCredential_ReturnsEnum()
         [Fact]
         public void UpdateService_GetUpdateCredentials_ReturnsExpectedType()
         {
-            var creds = _updateService.GetUpdateCredentials();
+            var creds = _updateService.GetUpdateIdentity();
             // Should be null or WindowsImpersonation depending on credential
             Assert.True(creds == null || creds.GetType().Name == "WindowsImpersonation");
         }

BLAZAM/BLAZAM.csproj

@@ -5,8 +5,8 @@
 		<Nullable>enable</Nullable>
 		<ImplicitUsings>enable</ImplicitUsings>
 		<ServerGarbageCollection>false</ServerGarbageCollection>
-		<AssemblyVersion>1.5.2</AssemblyVersion>
-		<Version>2026.03.12.2310</Version>
+		<AssemblyVersion>1.5.3</AssemblyVersion>
+		<Version>2026.03.15.2053</Version>
 		<IncludeSourceRevisionInInformationalVersion>false</IncludeSourceRevisionInInformationalVersion>
 		<RootNamespace>BLAZAM</RootNamespace>
 		<GenerateDocumentationFile>True</GenerateDocumentationFile>

BLAZAMCommon/Data/WindowsImpersonation.cs

@@ -10,41 +10,41 @@ namespace BLAZAM.Common.Data
     public class WindowsImpersonation
     {
         private SafeAccessTokenHandle safeAccessTokenHandle;
-        private WindowsImpersonationUser impersonationUser;
+        private WindowsImpersonationUser? impersonationUser;
         private readonly WindowsIdentity ApplicationIdentity;
 
-        private SafeAccessTokenHandle ImpersonatedToken
+        private SafeAccessTokenHandle GetImpersonatedToken()
         {
-            get
+            if (impersonationUser == null)
             {
-                //Use interactive logon
-                var domain = impersonationUser.FQDN ?? "";
-                var username = impersonationUser.Username;
-                var phPassword = Marshal.SecureStringToGlobalAllocUnicode(impersonationUser.Password);
-                bool returnValue = LogonUser(username,
-                        domain,
-                        phPassword,
-                        LOGON32_LOGON_BATCH,
-                        LOGON32_PROVIDER_DEFAULT,
-                        out safeAccessTokenHandle);
+                throw new AppException("Attempted to impersonate without an impersonation user");
+            }
+            //Use interactive logon
+            var domain = impersonationUser.FQDN ?? "";
+            var username = impersonationUser.Username;
+            var phPassword = Marshal.SecureStringToGlobalAllocUnicode(impersonationUser.Password);
+            bool returnValue = LogonUser(username,
+                    domain,
+                    phPassword,
+                    LOGON32_LOGON_NETWORK,
+                    LOGON32_PROVIDER_DEFAULT,
+                    out safeAccessTokenHandle);
 
 
 
-                Marshal.ZeroFreeGlobalAllocUnicode(phPassword);
-                if (false == returnValue)
-                {
-                    int ret = Marshal.GetLastWin32Error();
-                    Loggers.ActiveDirectoryLogger.Warning("LogonUser failed with error code : {0}", ret);
-                    var exception = new System.ComponentModel.Win32Exception(ret);
-                    if (exception.NativeErrorCode == 1326)
-                    {
-
-                        throw new AuthenticationException(exception.Message);
-                    }
-                }
-                return safeAccessTokenHandle;
+            Marshal.ZeroFreeGlobalAllocUnicode(phPassword);
+            if (!returnValue)
+            {
+                int ret = Marshal.GetLastWin32Error();
+                Loggers.ActiveDirectoryLogger.Warning("LogonUser failed with error code : {0}", ret);
+                var exception = new System.ComponentModel.Win32Exception(ret);
+
+
+                throw new AuthenticationException(exception.Message);
 
             }
+            return safeAccessTokenHandle;
+
         }
 
         private const int LOGON32_LOGON_INTERACTIVE = 2;
@@ -70,7 +70,7 @@ private static extern bool LogonUser(string lpszUsername, string lpszDomain, Int
         /// Creates a new impersonation context under the provided <see cref="WindowsImpersonationUser"/>
         /// </summary>
         /// <param name="user"></param>
-        public WindowsImpersonation(WindowsImpersonationUser user)
+        public WindowsImpersonation(WindowsImpersonationUser? user)
         {
             impersonationUser = user;
             ApplicationIdentity = WindowsIdentity.GetCurrent();
@@ -81,36 +81,52 @@ public WindowsImpersonation(WindowsImpersonationUser user)
         /// <typeparam name="T"></typeparam>
         /// <param name="task"></param>
         /// <returns></returns>
-        public async Task<T?> RunAsync<T>(Func<T> task) => await Task.Run(() => Run<T>(task));
+        public async Task<T?> RunAsync<T>(Func<T> task) => await Task.Run(() => Run(task));
+
         /// <summary>
-        /// Runs the provided action synchronously as the <see cref="WindowsImpersonationUser"/>
+        /// Runs the provided async action as the <see cref="WindowsImpersonationUser"/>
         /// </summary>
         /// <typeparam name="T"></typeparam>
         /// <param name="task"></param>
         /// <returns></returns>
-        /// <exception cref="AppException"></exception>
-        public T? Run<T>(Func<T> task)
-        {
+        public async Task<T?> RunAsync<T>(Func<Task<T>> task) =>
+            await Task.Run(() => RunImpersonated(() => task().GetAwaiter().GetResult()));
 
+        /// <summary>
+        /// Runs the provided action synchronously as the <see cref="WindowsImpersonationUser"/> or as the application identity if no user was provided
+        /// </summary>
+        /// <typeparam name="T"></typeparam>
+        /// <param name="task"></param>
+        /// <returns></returns>
+        public T? Run<T>(Func<T> task) => RunImpersonated(() => task());
+
+        /// <summary>
+        /// Core impersonation logic shared by all Run methods
+        /// </summary>
+        private T? RunImpersonated<T>(Func<T> executeTask)
+        {
+            // If no impersonation user provided, run as application identity
+            if (impersonationUser == null)
+            {
+                Loggers.ActiveDirectoryLogger.Information("Running as application identity: {@Identity}", WindowsIdentity.GetCurrent().Name);
+                return executeTask();
+            }
 
             T? result = default;
             try
             {
-                var impersonatedToken = ImpersonatedToken;
-
+                var impersonatedToken = GetImpersonatedToken();
 
                 if (impersonatedToken == null)
                 {
                     throw new AppException("The impersonation user is invalid. Check settings.");
                 }
 
-
                 // Check the identity.
-                Loggers.ActiveDirectoryLogger.Debug("Before impersonation: " + WindowsIdentity.GetCurrent().Name);
+                Loggers.ActiveDirectoryLogger.Information("Before impersonation: {@PreIdentity}", WindowsIdentity.GetCurrent().Name);
 
                 try
                 {
-
                     WindowsIdentity.RunImpersonated(
                       impersonatedToken,
                       () =>
@@ -122,13 +138,11 @@ public WindowsImpersonation(WindowsImpersonationUser user)
                               var exception = new AppException("Impersonation running as application identity");
                               ExceptionDispatchInfo.SetCurrentStackTrace(exception);
                               Loggers.ActiveDirectoryLogger.Information(exception, "Impersonation running as application identity");
-
                           }
-                          Loggers.ActiveDirectoryLogger.Debug("During impersonation: " + WindowsIdentity.GetCurrent().Name);
-                          result = task.Invoke();
+                          Loggers.ActiveDirectoryLogger.Information("During impersonation: {@PostIdentity}", WindowsIdentity.GetCurrent().Name);
+                          result = executeTask();
                       }
                       );
-
                 }
                 catch (IdentityNotMappedException ex)
                 {
@@ -140,7 +154,7 @@ public WindowsImpersonation(WindowsImpersonationUser user)
                 }
                 finally
                 {
-                    impersonatedToken?.Close();
+                    impersonatedToken.Close();
                 }
             }
             catch (AuthenticationException ex)

BLAZAMCommon/GlobalSuppressions.cs

@@ -55,3 +55,4 @@
 [assembly: SuppressMessage("Interoperability", "CA1416:Validate platform compatibility", Justification = "<Pending>", Scope = "member", Target = "~M:BLAZAM.Helpers.CommonHelpers.ToSidByteArray(System.String)~System.Byte[]")]
 [assembly: SuppressMessage("Interoperability", "CA1416:Validate platform compatibility", Justification = "<Pending>", Scope = "member", Target = "~M:BLAZAM.Common.Data.WindowsImpersonation.#ctor(BLAZAM.Common.Data.WindowsImpersonationUser)")]
 [assembly: SuppressMessage("Interoperability", "CA1416:Validate platform compatibility", Justification = "<Pending>", Scope = "member", Target = "~M:BLAZAM.Helpers.CommonHelpers.GetEventProperty(System.Diagnostics.Eventing.Reader.EventRecord,System.Int32)~System.String")]
+[assembly: SuppressMessage("Interoperability", "CA1416:Validate platform compatibility", Justification = "<Pending>", Scope = "member", Target = "~M:BLAZAM.Common.Data.WindowsImpersonation.RunImpersonated``1(System.Func{``0})~``0")]

BLAZAMLoggers/Loggers.cs

@@ -1,5 +1,6 @@
 using Serilog;
 using Serilog.Events;
+using System.Diagnostics;
 
 namespace BLAZAM.Logger
 {
@@ -195,12 +196,22 @@ public static ILogger SetupLogger(string logFilePath, RollingInterval rollingInt
                     fileSizeLimitBytes: 10000000,
                     rollOnFileSizeLimit: true,
          outputTemplate: "{Timestamp:yyyy-MM-dd HH:mm:ss.fff zzz} [{Level}] {Message}{NewLine}{Exception}",
-         retainedFileTimeLimit: TimeSpan.FromDays(30))
-
-                .WriteTo.Logger(lc =>
+         retainedFileTimeLimit: TimeSpan.FromDays(30));
+            if (!Debugger.IsAttached)
+            {
+                loggerBuilder.WriteTo.Logger(lc =>
                 {
                     lc.Filter.ByExcluding(e => e.Level == LogEventLevel.Information).WriteTo.Console();
                 });
+            }
+            else
+            {
+                loggerBuilder.WriteTo.Logger(lc =>
+                {
+                    lc.WriteTo.Console();
+                });
+            }
+                
             if (SendToSeqServer)
             {
                 loggerBuilder.WriteTo.Seq(SeqServerUri, apiKey: SeqAPIKey, restrictedToMinimumLevel: LogEventLevel.Warning);

BLAZAMServices/Background/AutoUpdateService.cs

@@ -38,9 +38,9 @@ public AutoUpdateService(IAppDatabaseFactory factory, UpdateService updateServic
             _applicationInfo = applicationInfo;
             this.factory = factory;
             this.updateService = updateService;
-            directoryCleaner = new Timer(CleanDirectories, null, TimeSpan.FromSeconds(30), TimeSpan.FromHours(20));
+            //directoryCleaner = new Timer(CleanDirectories, null, TimeSpan.FromSeconds(30), TimeSpan.FromHours(20));
         }
-
+        /*
         private void CleanDirectories(object? state)
         {
             using var context = factory.CreateDbContext();
@@ -199,7 +199,7 @@ private static void TryDeleteFile(IDatabaseContext context, SystemFile file)
 
 
         }
-
+        */
         protected override void Execute(object? state = null)
         {
             using var context = factory.CreateDbContext();