Adds command to ensure the SSL certificate. Closes #1045 (#1047)

waldekmastykarz · web-flow · commit 1703aee80233 · 2025-03-07T14:39:38.000Z
diff --git a/dev-proxy/CommandHandlers/CertEnsureCommandHandler.cs b/dev-proxy/CommandHandlers/CertEnsureCommandHandler.cs
@@ -0,0 +1,26 @@
+// Licensed to the .NET Foundation under one or more agreements.
+// The .NET Foundation licenses this file to you under the MIT license.
+// See the LICENSE file in the project root for more information.
+
+namespace DevProxy.CommandHandlers;
+
+public static class CertEnsureCommandHandler
+{
+    public static async Task EnsureCertAsync(ILogger logger)
+    {
+        logger.LogTrace("EnsureCertAsync() called");
+
+        try
+        {
+            logger.LogInformation("Ensuring certificate exists and is trusted...");
+            await ProxyEngine.ProxyServer.CertificateManager.EnsureRootCertificateAsync();
+            logger.LogInformation("DONE");
+        }
+        catch (Exception ex)
+        {
+            logger.LogError(ex, "Error ensuring certificate");
+        }
+
+        logger.LogTrace("EnsureCertAsync() finished");
+    }
+}
diff --git a/dev-proxy/ProxyEngine.cs b/dev-proxy/ProxyEngine.cs
@@ -27,7 +27,8 @@ public class ProxyEngine(IProxyConfiguration config, ISet<UrlToWatch> urlsToWatc
     private readonly IPluginEvents _pluginEvents = pluginEvents ?? throw new ArgumentNullException(nameof(pluginEvents));
     private readonly ILogger _logger = logger ?? throw new ArgumentNullException(nameof(logger));
     private readonly IProxyConfiguration _config = config ?? throw new ArgumentNullException(nameof(config));
-    private static readonly ProxyServer? _proxyServer;
+    private static readonly ProxyServer _proxyServer;
+    internal static ProxyServer ProxyServer => _proxyServer;
     private ExplicitProxyEndPoint? _explicitEndPoint;
     // lists of URLs to watch, used for intercepting requests
     private readonly ISet<UrlToWatch> _urlsToWatch = urlsToWatch ?? throw new ArgumentNullException(nameof(urlsToWatch));
diff --git a/dev-proxy/ProxyHost.cs b/dev-proxy/ProxyHost.cs
@@ -361,7 +361,7 @@ public RootCommand GetRootCommand(ILogger logger)
         outdatedCommand.SetHandler(async versionOnly => await OutdatedCommandHandler.CheckVersionAsync(versionOnly, logger), outdatedShortOption);
         command.Add(outdatedCommand);
 
-        var jwtCommand = new Command("jwt", "Manage JSON Web Tokens ");
+        var jwtCommand = new Command("jwt", "Manage JSON Web Tokens");
         var jwtCreateCommand = new Command("create", "Create a new JWT token");
         var jwtNameOption = new Option<string>("--name", "The name of the user to create the token for.");
         jwtNameOption.AddAlias("-n");
@@ -465,6 +465,12 @@ public RootCommand GetRootCommand(ILogger logger)
 
         command.Add(jwtCommand);
 
+        var certCommand = new Command("cert", "Manage the Dev Proxy certificate");
+        var certEnsureCommand = new Command("ensure", "Ensure certificates are setup (creates root if required). Also makes root certificate trusted.");
+        certEnsureCommand.SetHandler(async () => await CertEnsureCommandHandler.EnsureCertAsync(logger));
+        certCommand.Add(certEnsureCommand);
+        command.Add(certCommand);
+
         return command;
     }
 
diff --git a/scripts/Dockerfile_local b/scripts/Dockerfile_local
@@ -0,0 +1,46 @@
+FROM ubuntu:24.04
+
+ARG DEVPROXY_VERSION=0.26.0-beta.1
+ARG USERNAME=devproxy
+ENV DEVPROXY_VERSION=${DEVPROXY_VERSION}
+
+EXPOSE 8000 8897
+
+LABEL name="dev-proxy/dev-proxy:${DEVPROXY_VERSION}" \
+  description="Dev Proxy is an API simulator that helps you effortlessly test your app beyond the happy path." \
+  homepage="https://aka.ms/devproxy" \
+  maintainers="Waldek Mastykarz <waldek@mastykarz.nl>, \
+  Garry Trinder <garry.trinder@live.com>" \
+  org.opencontainers.image.source=https://github.com/dotnet/dev-proxy \
+  org.opencontainers.image.description="Dev Proxy is an API simulator that helps you effortlessly test your app beyond the happy path." \
+  org.opencontainers.image.licenses=MIT
+
+WORKDIR /app
+
+COPY ./bld /app/devproxy
+
+RUN apt -y update && apt -y upgrade && \
+    apt install -y \
+    curl unzip && \
+    apt -y clean && \
+    rm -rf /var/lib/apt/lists/* && \
+    # Create a new user
+    useradd -ms /bin/bash ${USERNAME} && \
+    echo "export PATH=$PATH:$(pwd)/devproxy" >> /home/${USERNAME}/.bashrc && \
+    # Create a directory for the configuration
+    mkdir -p /home/${USERNAME}/.config && \
+    chown -R ${USERNAME}:${USERNAME} /home/${USERNAME}/.config
+
+# Prevents error "Couldn't find a valid ICU package" when running Dev Proxy
+ENV DOTNET_SYSTEM_GLOBALIZATION_INVARIANT=1 \
+    # Required for .NET to properly resolve SpecialFolder.ApplicationData
+    XDG_DATA_HOME=/home/${USERNAME}/.config
+
+VOLUME /config
+WORKDIR /config
+
+USER ${USERNAME}
+
+RUN /app/devproxy/devproxy cert ensure
+
+ENTRYPOINT ["/app/devproxy/devproxy", "--ip-address", "0.0.0.0"]
diff --git a/scripts/local-build.ps1 b/scripts/local-build.ps1
@@ -2,14 +2,15 @@
 # The .NET Foundation licenses this file to you under the MIT license.
 # See the LICENSE file in the project root for more information.
 
-$versionString = "v0.26.0-beta.1"
+. (Join-Path $PSScriptRoot "version.ps1")
 $version = $versionString.Substring(1)
+$platform = "linux-arm64"
 
 Remove-Item ../bld -Recurse -Force
 
-dotnet publish ../dev-proxy/dev-proxy.csproj -c Release -p:PublishSingleFile=true -r win-x64 --self-contained -o ../bld -p:InformationalVersion=$version
-dotnet build ../dev-proxy-plugins/dev-proxy-plugins.csproj -c Release -r win-x64 --no-self-contained -p:InformationalVersion=$version
-cp -R ../dev-proxy/bin/Release/net9.0/win-x64/plugins ../bld
+dotnet publish ../dev-proxy/dev-proxy.csproj -c Release -p:PublishSingleFile=true -r $platform --self-contained -o ../bld -p:InformationalVersion=$version
+dotnet build ../dev-proxy-plugins/dev-proxy-plugins.csproj -c Release -r $platform --no-self-contained -p:InformationalVersion=$version
+cp -R ../dev-proxy/bin/Release/net9.0/$platform/plugins ../bld
 pushd
 
 cd ../bld
diff --git a/scripts/local-docker.ps1 b/scripts/local-docker.ps1
@@ -0,0 +1,10 @@
+# Licensed to the .NET Foundation under one or more agreements.
+# The .NET Foundation licenses this file to you under the MIT license.
+# See the LICENSE file in the project root for more information.
+
+. (Join-Path $PSScriptRoot "version.ps1")
+. (Join-Path $PSScriptRoot "local-build.ps1")
+
+$version = $versionString.Substring(1)
+
+docker build --build-arg DEVPROXY_VERSION=$version -t dev-proxy-local:$version -f Dockerfile_local ..
diff --git a/scripts/version.ps1 b/scripts/version.ps1
@@ -0,0 +1,5 @@
+# Licensed to the .NET Foundation under one or more agreements.
+# The .NET Foundation licenses this file to you under the MIT license.
+# See the LICENSE file in the project root for more information.
+
+$script:versionString = "v0.26.0-beta.1"
