Replace Newtonsoft.Json with System.Text.Json (#206)

Author: PrzemyslawKlys

.github/README.md

@@ -4,7 +4,7 @@
 # Directory Services Internals<br/>PowerShell Module and Framework
 
 [![MIT License](https://img.shields.io/badge/License-MIT-green.svg)](../LICENSE.md)
-[![PowerShell 5.1 | 7](https://badgen.net/badge/icon/5.1%20|%207?icon=terminal&label=PowerShell)](#) 
+[![PowerShell 5.1 | 7](https://badgen.net/badge/icon/5.1%20|%207?icon=terminal&label=PowerShell)](#)
 [![Windows Server 2008 R2 | 2012 R2 | 2016 | 2019 | 2022 | 2025](https://badgen.net/badge/icon/2008%20R2%20|%202012%20R2%20|%202016%20|%202019%20|%202022%20|%202025?icon=windows&label=Windows%20Server)](#)
 
 [![.NET Framework 4.8+](https://img.shields.io/badge/Framework-4.8%2B-007FFF.svg?logo=.net)](#)
@@ -160,8 +160,7 @@ This project utilizes the following 3<sup>rd</sup> party copyrighted material:
 - [ManagedEsent](https://github.com/Microsoft/ManagedEsent) - Provides managed access to esent.dll, the embeddable database engine native to Windows.
 - [NDceRpc](https://github.com/OpenSharp/NDceRpc) - Integration of WCF and .NET with MS-RPC and binary serialization.
 - [PBKDF2.NET](https://github.com/therealmagicmike/PBKDF2.NET) - Provides PBKDF2 for .NET Framework.
-- [Bouncy Castle](https://www.bouncycastle.org/csharp/index.html) - A lightweight cryptography API for Java and C#. 
-- [Json.NET](https://github.com/JamesNK/Newtonsoft.Json) - Popular high-performance JSON framework for .NET.
+- [Bouncy Castle](https://www.bouncycastle.org/csharp/index.html) - A lightweight cryptography API for Java and C#.
 - [Peter O. CBOR](https://github.com/peteroupc/CBOR) - A C# implementation of Concise Binary Object Representation (RFC 7049).
 
 ## Related Projects

Scripts/Update-Licenses.ps1

@@ -19,9 +19,6 @@ $products = @(
      }, @{
         Name = 'Bouncy Castle';
         LicenseUrl = 'https://raw.githubusercontent.com/bcgit/bc-csharp/master/crypto/License.html'
-     }, @{
-        Name = 'Json.NET';
-        LicenseUrl = 'https://raw.githubusercontent.com/JamesNK/Newtonsoft.Json/master/LICENSE.md'
      }, @{
         Name = 'Peter O. CBOR Library';
         LicenseUrl = 'https://raw.githubusercontent.com/peteroupc/CBOR/master/LICENSE.md'

Src/DSInternals.Common.Test/DSInternals.Common.Test.csproj

@@ -1,6 +1,7 @@
 <Project Sdk="MSTest.Sdk">
   <PropertyGroup>
     <TargetFrameworks>net48;net8.0-windows</TargetFrameworks>
+    <CopyLocalLockFileAssemblies>true</CopyLocalLockFileAssemblies>
   </PropertyGroup>
   <ItemGroup>
     <ProjectReference Include="..\DSInternals.Common\DSInternals.Common.csproj" />

Src/DSInternals.Common.Test/KeyCredentialTester.cs

@@ -3,6 +3,7 @@
 using System.Security.Cryptography.X509Certificates;
 using DSInternals.Common.Data;
 using Microsoft.VisualStudio.TestTools.UnitTesting;
+using System.Text.Json;
 
 namespace DSInternals.Common.Test
 {
@@ -11,6 +12,64 @@ public class KeyCredentialTester
     {
         private const string DummyDN = "CN=Account,DC=contoso,DC=com";
 
+        private static KeyCredential CreateSampleKey()
+        {
+            byte[] publicKey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exToBinary();
+            Guid deviceId = Guid.Parse("47f577e3-d2d0-4a0a-8aca-e0501098bde4");
+            DateTime creationTime = new DateTime(2020, 1, 1, 0, 0, 0, DateTimeKind.Utc);
+            return new KeyCredential(publicKey, deviceId, DummyDN, creationTime);
+        }
+
+        [TestMethod]
+        public void KeyCredential_RoundTrip_DoubleQuoted()
+        {
+            KeyCredential key = CreateSampleKey();
+            string json = key.ToJson();
+            KeyCredential result = KeyCredential.ParseJson(json);
+            Assert.IsNotNull(result);
+            Assert.AreEqual(key.Identifier, result.Identifier);
+            Assert.AreEqual(key.DeviceId, result.DeviceId);
+            Assert.AreEqual(key.CreationTime, result.CreationTime);
+        }
+
+        [TestMethod]
+        public void KeyCredential_Deserialize_SingleQuoted_Input()
+        {
+            KeyCredential key = CreateSampleKey();
+            string json = key.ToJson().Replace('"', '\'');
+            KeyCredential result = KeyCredential.ParseJson(json);
+            Assert.IsNotNull(result);
+            Assert.AreEqual(key.DeviceId, result.DeviceId);
+        }
+
+        [TestMethod]
+        public void KeyCredential_Deserialize_TrailingComma_And_Comments()
+        {
+            KeyCredential key = CreateSampleKey();
+            string json = key.ToJson();
+            string jsonWithComment = json.Insert(1, "\n  // comment\n");
+            jsonWithComment = jsonWithComment.Substring(0, jsonWithComment.Length - 1) + ",\n}";
+            KeyCredential result = KeyCredential.ParseJson(jsonWithComment);
+            Assert.IsNotNull(result);
+            Assert.AreEqual(key.DeviceId, result.DeviceId);
+        }
+
+        [TestMethod]
+        public void Parse_SingleQuoted_WithEscapedApostrophe_Works()
+        {
+            var jsonSingleQuoted = "{ 'OwnerDN':'CN=O\\'Connor,DC=contoso,DC=com', 'IsComputerKey': false }";
+            var obj = KeyCredential.ParseJson(jsonSingleQuoted);
+            Assert.IsNotNull(obj);
+        }
+
+        [TestMethod]
+        [ExpectedException(typeof(JsonException))]
+        public void Parse_BadJson_StillThrows()
+        {
+            var bad = "{ \"OwnerDN\": \"CN=User,DC=contoso,DC=com\" ";
+            _ = KeyCredential.ParseJson(bad);
+        }
+
         [TestMethod]
         public void KeyCredential_Parse_NonMFAKey()
         {

Src/DSInternals.Common.Test/SearchableDeviceKeyTester.cs

@@ -1,8 +1,8 @@
 using System;
 using DSInternals.Common.Data;
+using DSInternals.Common.Serialization;
 using Microsoft.VisualStudio.TestTools.UnitTesting;
-using Newtonsoft.Json;
-using Newtonsoft.Json.Linq;
+using System.Text.Json;
 
 namespace DSInternals.Common.Test
 {
@@ -38,7 +38,10 @@ public void SearchableDeviceKey_Parse_FIDO_Input1()
             Assert.AreEqual("cb69481e-8ff7-4039-93ec-0a2729a154a8", keyCredential.FidoKeyMaterial.AuthenticatorData.AttestedCredentialData.AaGuid.ToString());
 
             // Serialize the object again and compare with the original
-            Assert.AreEqual(JToken.Parse(jsonData).ToString(Formatting.None), keyCredential.ToJson());
+            string normalized = JsonSerializer.Serialize(
+                DsiJson.DeserializeLenient<JsonElement>(jsonData),
+                DsiJson.Options);
+            Assert.AreEqual(normalized, keyCredential.ToJson());
         }
 
         [TestMethod]
@@ -91,7 +94,10 @@ public void SearchableDeviceKey_Serialize_FIDO_Input2()
             Assert.AreEqual(2, keyCredential.FidoKeyMaterial.AttestationCertificates.Count);
 
             // Serialize the object again and compare with the original
-            Assert.AreEqual(JToken.Parse(jsonData).ToString(Formatting.None), keyCredential.ToJson());
+            string normalized = JsonSerializer.Serialize(
+                DsiJson.DeserializeLenient<JsonElement>(jsonData),
+                DsiJson.Options);
+            Assert.AreEqual(normalized, keyCredential.ToJson());
         }
 
         [TestMethod]
@@ -119,7 +125,10 @@ public void SearchableDeviceKey_Parse_NGC()
             Assert.AreEqual("cbad3c94-b480-4fa6-9187-ff1ed42c4479", parsedKey.DeviceId.Value.ToString().ToLowerInvariant());
 
             // Serialize the object again and compare with the original
-            Assert.AreEqual(JToken.Parse(jsonData).ToString(Formatting.None), parsedKey.ToJson());
+            string normalized = JsonSerializer.Serialize(
+                DsiJson.DeserializeLenient<JsonElement>(jsonData),
+                DsiJson.Options);
+            Assert.AreEqual(normalized, parsedKey.ToJson());
 
             // Re-generate the identifier and check that it matches the value in AAD.
             var generatedKey = new KeyCredential(
@@ -131,7 +140,7 @@ public void SearchableDeviceKey_Parse_NGC()
             Assert.AreEqual(parsedKey.Identifier, generatedKey.Identifier);
 
             // Serialize the generated object and compare with the original
-            Assert.AreEqual(JToken.Parse(jsonData).ToString(Formatting.None), generatedKey.ToJson());
+            Assert.AreEqual(normalized, generatedKey.ToJson());
         }
 
         [TestMethod]

Src/DSInternals.Common.Test/packages.lock.json

@@ -73,8 +73,8 @@
       },
       "Microsoft.Bcl.AsyncInterfaces": {
         "type": "Transitive",
-        "resolved": "6.0.0",
-        "contentHash": "UcSjPsst+DfAdJGVDsu346FX0ci0ah+lw3WRtn18NUwEqRt70HaOQ7lI72vy3+1LxtqI3T5GWwV39rQSrCzAeg==",
+        "resolved": "9.0.8",
+        "contentHash": "mdq9WaHnRJBvmhbDvoEk9aIEjpoW1cmA6wGuE0/eV49NT/0Z/d+NauB4jzw2Dyi/TndebYfjAYHCOXeB0c/Qhg==",
         "dependencies": {
           "System.Threading.Tasks.Extensions": "4.5.4"
         }
@@ -172,11 +172,6 @@
         "resolved": "3.10.2",
         "contentHash": "WS9GHohjOzf653bqCSxplq3T25LAwFVeVrgLuotTiPDu+bO5bD7RgvXbkLqRqZGE2Qyuk/dbQpqa18PYAMXjMg=="
       },
-      "Newtonsoft.Json": {
-        "type": "Transitive",
-        "resolved": "13.0.3",
-        "contentHash": "HrC5BXdl00IP9zeV+0Z848QWPAoCr9P3bDEZguI+gkLcBKAOxix/tLEAAHC+UvDNPv4a2d18lOReHMOagPa+zQ=="
-      },
       "PeterO.Cbor": {
         "type": "Transitive",
         "resolved": "4.5.5",
@@ -229,6 +224,16 @@
           "System.ValueTuple": "4.5.0"
         }
       },
+      "System.IO.Pipelines": {
+        "type": "Transitive",
+        "resolved": "9.0.8",
+        "contentHash": "6vPmJt73mgUo1gzc/OcXlJvClz/2jxZ4TQPRfriVaLoGRH2mye530D9WHJYbFQRNMxF3PWCoeofsFdCyN7fLzA==",
+        "dependencies": {
+          "System.Buffers": "4.5.1",
+          "System.Memory": "4.5.5",
+          "System.Threading.Tasks.Extensions": "4.5.4"
+        }
+      },
       "System.Memory": {
         "type": "Transitive",
         "resolved": "4.5.5",
@@ -265,25 +270,25 @@
       },
       "System.Text.Encodings.Web": {
         "type": "Transitive",
-        "resolved": "6.0.1",
-        "contentHash": "E5M5AE2OUTlCrf4omZvzzziUJO9CofBl+lXHaN5IKePPJvHqYFYYpaDPgCpR4VwaFbEebfnjOxxEBtPtsqAxpQ==",
+        "resolved": "9.0.8",
+        "contentHash": "W+LotQsM4wBJ4PG7uRkyul4wqL4Fz7R4ty6uXrCNZUhbaHYANgrPaYR2ZpMVpdCjQEJ17Jr1NMN8hv4SHaHY4A==",
         "dependencies": {
           "System.Buffers": "4.5.1",
-          "System.Memory": "4.5.4",
+          "System.Memory": "4.5.5",
           "System.Runtime.CompilerServices.Unsafe": "6.0.0"
         }
       },
       "System.Text.Json": {
         "type": "Transitive",
-        "resolved": "6.0.11",
-        "contentHash": "xqC1HIbJMBFhrpYs76oYP+NAskNVjc6v73HqLal7ECRDPIp4oRU5pPavkD//vNactCn9DA2aaald/I5N+uZ5/g==",
+        "resolved": "9.0.8",
+        "contentHash": "mIQir9jBqk0V7X0Nw5hzPJZC8DuGdf+2DS3jAVsr6rq5+/VyH5rza0XGcONJUWBrZ+G6BCwNyjWYd9lncBu48A==",
         "dependencies": {
-          "Microsoft.Bcl.AsyncInterfaces": "6.0.0",
+          "Microsoft.Bcl.AsyncInterfaces": "9.0.8",
           "System.Buffers": "4.5.1",
-          "System.Memory": "4.5.4",
-          "System.Numerics.Vectors": "4.5.0",
+          "System.IO.Pipelines": "9.0.8",
+          "System.Memory": "4.5.5",
           "System.Runtime.CompilerServices.Unsafe": "6.0.0",
-          "System.Text.Encodings.Web": "6.0.1",
+          "System.Text.Encodings.Web": "9.0.8",
           "System.Threading.Tasks.Extensions": "4.5.4",
           "System.ValueTuple": "4.5.0"
         }
@@ -304,11 +309,11 @@
       "dsinternals.common": {
         "type": "Project",
         "dependencies": {
-          "Newtonsoft.Json": "[13.0.3, )",
           "PeterO.Cbor": "[4.5.5, )",
           "System.Buffers": "[4.5.1, )",
           "System.Formats.Asn1": "[9.0.8, )",
           "System.Memory": "[4.5.5, )",
+          "System.Text.Json": "[9.0.8, )",
           "System.ValueTuple": "[4.6.1, )"
         }
       }
@@ -486,8 +491,8 @@
       },
       "Newtonsoft.Json": {
         "type": "Transitive",
-        "resolved": "13.0.3",
-        "contentHash": "HrC5BXdl00IP9zeV+0Z848QWPAoCr9P3bDEZguI+gkLcBKAOxix/tLEAAHC+UvDNPv4a2d18lOReHMOagPa+zQ=="
+        "resolved": "13.0.1",
+        "contentHash": "ppPFpBcvxdsfUonNcvITKqLl3bqxWbDCZIzDWHzjpdAHRFfZe0Dw9HmA0+za13IdyrgJwpkDTDA9fHaxOrt20A=="
       },
       "PeterO.Cbor": {
         "type": "Transitive",
@@ -559,7 +564,6 @@
       "dsinternals.common": {
         "type": "Project",
         "dependencies": {
-          "Newtonsoft.Json": "[13.0.3, )",
           "PeterO.Cbor": "[4.5.5, )",
           "System.DirectoryServices": "[9.0.8, )"
         }

Src/DSInternals.Common/AzureAD/AzureADClient.cs

@@ -1,15 +1,16 @@
 using System;
-using System.Collections;
+using System.Collections.Generic;
 using System.Globalization;
 using System.IO;
 using System.Net;
 using System.Net.Http;
 using System.Net.Http.Headers;
 using System.Text;
+using System.Text.Json;
 using System.Threading.Tasks;
 using DSInternals.Common.Data;
 using DSInternals.Common.Exceptions;
-using Newtonsoft.Json;
+using DSInternals.Common.Serialization;
 
 namespace DSInternals.Common.AzureAD
 {
@@ -31,7 +32,6 @@ public class AzureADClient : IDisposable
         private string _tenantId;
         private HttpClient _httpClient;
         private readonly string _batchSizeParameter;
-        private JsonSerializer _jsonSerializer = JsonSerializer.CreateDefault();
 
         public AzureADClient(string accessToken, Guid? tenantId = null, int batchSize = MaxBatchSize)
         {
@@ -117,17 +117,17 @@ public async Task SetUserAsync(string userPrincipalName, KeyCredential[] keyCred
             // Vaidate the input
             Validator.AssertNotNullOrEmpty(userPrincipalName, nameof(userPrincipalName));
 
-            var properties = new Hashtable() { { KeyCredentialAttributeName, keyCredentials } };
+            var properties = new Dictionary<string, object> { { KeyCredentialAttributeName, keyCredentials } };
             await SetUserAsync(userPrincipalName, properties).ConfigureAwait(false);
         }
 
         public async Task SetUserAsync(Guid objectId, KeyCredential[] keyCredentials)
         {
-            var properties = new Hashtable() { { KeyCredentialAttributeName, keyCredentials } };
+            var properties = new Dictionary<string, object> { { KeyCredentialAttributeName, keyCredentials } };
             await SetUserAsync(objectId.ToString(), properties).ConfigureAwait(false);
         }
 
-        private async Task SetUserAsync(string userIdentifier, Hashtable properties)
+        private async Task SetUserAsync(string userIdentifier, Dictionary<string, object> properties)
         {
             // Build the request uri
             var url = new StringBuilder();
@@ -137,7 +137,7 @@ private async Task SetUserAsync(string userIdentifier, Hashtable properties)
             // TODO: Switch to HttpMethod.Patch after migrating to .NET Standard 2.1 / .NET 5
             using (var request = new HttpRequestMessage(new HttpMethod("PATCH"), url.ToString()))
             {
-                request.Content = new StringContent(JsonConvert.SerializeObject(properties), Encoding.UTF8, JsonContentType);
+                request.Content = new StringContent(JsonSerializer.Serialize(properties, DsiJson.Options), Encoding.UTF8, JsonContentType);
                 await SendODataRequest<object>(request).ConfigureAwait(false);
             }
         }
@@ -155,30 +155,26 @@ private async Task<T> SendODataRequest<T>(HttpRequestMessage request)
                     }
 
                     using (var responseStream = await response.Content.ReadAsStreamAsync().ConfigureAwait(false))
-                    using (var streamReader = new StreamReader(responseStream))
                     {
                         if (s_odataContentType.MediaType.Equals(response.Content.Headers.ContentType.MediaType, StringComparison.InvariantCultureIgnoreCase))
                         {
-                            // The response is a JSON document
-                            using (var jsonTextReader = new JsonTextReader(streamReader))
+                            if (response.StatusCode == HttpStatusCode.OK)
                             {
-                                if (response.StatusCode == HttpStatusCode.OK)
-                                {
-                                    return _jsonSerializer.Deserialize<T>(jsonTextReader);
-                                }
-                                else
-                                {
-                                    // Translate OData response to an exception
-                                    var error = _jsonSerializer.Deserialize<OdataErrorResponse>(jsonTextReader);
-                                    throw error.GetException();
-                                }
+                                return await JsonSerializer.DeserializeAsync<T>(responseStream, DsiJson.Options).ConfigureAwait(false);
+                            }
+                            else
+                            {
+                                var error = await JsonSerializer.DeserializeAsync<OdataErrorResponse>(responseStream, DsiJson.Options).ConfigureAwait(false);
+                                throw error.GetException();
                             }
                         }
                         else
                         {
-                            // The response is not a JSON document, so we parse its first line as message text
-                            string message = await streamReader.ReadLineAsync().ConfigureAwait(false);
-                            throw new GraphApiException(message, response.StatusCode.ToString());
+                            using (var streamReader = new StreamReader(responseStream))
+                            {
+                                string message = await streamReader.ReadLineAsync().ConfigureAwait(false);
+                                throw new GraphApiException(message, response.StatusCode.ToString());
+                            }
                         }
                     }
                 }