Add Microsoft Authentication helper for Windows

Add an authentication helper for AAD/MSA auth that runs on Windows.

ADAL.NET is used to obtain an access token based on input fed over
stdin by Git Credential Manager. The access token is returned back
to GCM over stdout on success.

Common application start-up code has been refactored into the
`ApplicationBase` abstract class. This ensures consistent tracing
and debug support using the GCM_TRACE & GCM_TRACE_SECRETS and
GCM_DEBUG environment variables.

Author: mjcheetham

Git-Credential-Manager.sln

@@ -31,6 +31,10 @@ Project("{FAE04EC0-301F-11D3-BF4B-00C04F79EFBC}") = "GitHub", "common\src\GitHub
 EndProject
 Project("{FAE04EC0-301F-11D3-BF4B-00C04F79EFBC}") = "GitHub.Tests", "common\tests\GitHub.Tests\GitHub.Tests.csproj", "{03B9B82B-7DCA-4554-97AB-C98FF18FB385}"
 EndProject
+Project("{FAE04EC0-301F-11D3-BF4B-00C04F79EFBC}") = "Microsoft.Authentication.Helper", "windows\src\Microsoft.Authentication.Helper\Microsoft.Authentication.Helper.csproj", "{8B984F78-4EAF-4BC0-A34E-BA3949700ED4}"
+EndProject
+Project("{FAE04EC0-301F-11D3-BF4B-00C04F79EFBC}") = "Microsoft.Authentication.Helper.Tests", "windows\tests\Microsoft.Authentication.Helper.Tests\Microsoft.Authentication.Helper.Tests.csproj", "{E0391B02-16D5-4B49-9C33-349B25717011}"
+EndProject
 Global
 	GlobalSection(SolutionConfigurationPlatforms) = preSolution
 		Debug|Any CPU = Debug|Any CPU
@@ -103,6 +107,18 @@ Global
 		{03B9B82B-7DCA-4554-97AB-C98FF18FB385}.WindowsDebug|Any CPU.Build.0 = Debug|Any CPU
 		{03B9B82B-7DCA-4554-97AB-C98FF18FB385}.WindowsRelease|Any CPU.ActiveCfg = Release|Any CPU
 		{03B9B82B-7DCA-4554-97AB-C98FF18FB385}.WindowsRelease|Any CPU.Build.0 = Release|Any CPU
+		{8B984F78-4EAF-4BC0-A34E-BA3949700ED4}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
+		{8B984F78-4EAF-4BC0-A34E-BA3949700ED4}.Release|Any CPU.ActiveCfg = Release|Any CPU
+		{8B984F78-4EAF-4BC0-A34E-BA3949700ED4}.WindowsDebug|Any CPU.ActiveCfg = Debug|Any CPU
+		{8B984F78-4EAF-4BC0-A34E-BA3949700ED4}.WindowsDebug|Any CPU.Build.0 = Debug|Any CPU
+		{8B984F78-4EAF-4BC0-A34E-BA3949700ED4}.WindowsRelease|Any CPU.ActiveCfg = Release|Any CPU
+		{8B984F78-4EAF-4BC0-A34E-BA3949700ED4}.WindowsRelease|Any CPU.Build.0 = Release|Any CPU
+		{E0391B02-16D5-4B49-9C33-349B25717011}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
+		{E0391B02-16D5-4B49-9C33-349B25717011}.Release|Any CPU.ActiveCfg = Release|Any CPU
+		{E0391B02-16D5-4B49-9C33-349B25717011}.WindowsDebug|Any CPU.ActiveCfg = Debug|Any CPU
+		{E0391B02-16D5-4B49-9C33-349B25717011}.WindowsDebug|Any CPU.Build.0 = Debug|Any CPU
+		{E0391B02-16D5-4B49-9C33-349B25717011}.WindowsRelease|Any CPU.ActiveCfg = Release|Any CPU
+		{E0391B02-16D5-4B49-9C33-349B25717011}.WindowsRelease|Any CPU.Build.0 = Release|Any CPU
 	EndGlobalSection
 	GlobalSection(SolutionProperties) = preSolution
 		HideSolutionNode = FALSE
@@ -120,6 +136,8 @@ Global
 		{5A7D9E8B-C1D2-4C5C-BE98-648C41D1F8BD} = {4B305AC9-153F-4EA3-822F-3E5023BABAF1}
 		{3C840B06-A595-4FD9-9A76-56CD45B14780} = {A7FC1234-95E3-4496-B5F7-4306F41E6A0E}
 		{03B9B82B-7DCA-4554-97AB-C98FF18FB385} = {4B305AC9-153F-4EA3-822F-3E5023BABAF1}
+		{8B984F78-4EAF-4BC0-A34E-BA3949700ED4} = {1229E443-E66C-402F-8AA4-5AE6A207D3C7}
+		{E0391B02-16D5-4B49-9C33-349B25717011} = {DD8B847B-286B-4928-867B-E09C6C90DA1F}
 	EndGlobalSection
 	GlobalSection(ExtensibilityGlobals) = postSolution
 		SolutionGuid = {0EF9FC65-E6BA-45D4-A455-262A9EA4366B}

common/src/Microsoft.Git.CredentialManager/Application.cs

@@ -1,67 +1,20 @@
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT license.
 using System;
-using System.Diagnostics;
-using System.IO;
-using System.Text;
 using System.Threading.Tasks;
 using Microsoft.Git.CredentialManager.Commands;
 
 namespace Microsoft.Git.CredentialManager
 {
-    public class Application : IDisposable
+    public class Application : ApplicationBase
     {
-        private readonly ICommandContext _context;
-
-        private TextWriter _traceFileWriter;
-
         public IHostProviderRegistry ProviderRegistry { get; } = new HostProviderRegistry();
 
         public Application(ICommandContext context)
-        {
-            EnsureArgument.NotNull(context, nameof(context));
-
-            _context = context;
-        }
+            : base(context) { }
 
-        public async Task<int> RunAsync(string[] args)
+        protected override async Task<int> RunInternalAsync(string[] args)
         {
-            // Launch debugger
-            if (_context.IsEnvironmentVariableTruthy(Constants.EnvironmentVariables.GcmDebug, false))
-            {
-                _context.StdError.WriteLine("Waiting for debugger to be attached...");
-                PlatformUtils.WaitForDebuggerAttached();
-
-                // Now the debugger is attached, break!
-                Debugger.Break();
-            }
-
-            // Enable tracing
-            if (_context.TryGetEnvironmentVariable(Constants.EnvironmentVariables.GcmTrace, out string traceEnvar))
-            {
-                if (traceEnvar.IsTruthy()) // Trace to stderr
-                {
-                    _context.Trace.AddListener(_context.StdError);
-                }
-                else if (Path.IsPathRooted(traceEnvar) && // Trace to a file
-                         TryCreateTextWriter(_context, traceEnvar, out var fileWriter))
-                {
-                    _traceFileWriter = fileWriter;
-                    _context.Trace.AddListener(fileWriter);
-                }
-                else
-                {
-                    _context.StdError.WriteLine($"warning: cannot write trace output to {traceEnvar}");
-                }
-            }
-
-            // Enable sensitive tracing and show warning
-            if (_context.IsEnvironmentVariableTruthy(Constants.EnvironmentVariables.GcmTraceSecrets, false))
-            {
-                _context.Trace.EnableSecretTracing = true;
-                _context.StdError.WriteLine("Secret tracing is enabled. Trace output may contain sensitive information.");
-            }
-
             // Construct all supported commands
             var commands = new CommandBase[]
             {
@@ -73,12 +26,12 @@ public async Task<int> RunAsync(string[] args)
             };
 
             // Trace the current version and program arguments
-            _context.Trace.WriteLine($"{Constants.GetProgramHeader()} '{string.Join(" ", args)}'");
+            Context.Trace.WriteLine($"{Constants.GetProgramHeader()} '{string.Join(" ", args)}'");
 
             if (args.Length == 0)
             {
-                _context.StdError.WriteLine("Missing command.");
-                HelpCommand.PrintUsage(_context.StdError);
+                Context.StdError.WriteLine("Missing command.");
+                HelpCommand.PrintUsage(Context.StdError);
                 return -1;
             }
 
@@ -88,72 +41,49 @@ public async Task<int> RunAsync(string[] args)
                 {
                     try
                     {
-                        await cmd.ExecuteAsync(_context, args);
+                        await cmd.ExecuteAsync(Context, args);
                         return 0;
                     }
                     catch (Exception e)
                     {
                         if (e is AggregateException ae)
                         {
-                            ae.Handle(x => WriteException(_context, x));
+                            ae.Handle(WriteException);
                         }
                         else
                         {
-                            WriteException(_context, e);
+                            WriteException(e);
                         }
 
                         return -1;
                     }
                 }
             }
 
-            _context.StdError.WriteLine("Unrecognized command '{0}'.", args[0]);
-            HelpCommand.PrintUsage(_context.StdError);
+            Context.StdError.WriteLine("Unrecognized command '{0}'.", args[0]);
+            HelpCommand.PrintUsage(Context.StdError);
             return -1;
         }
 
-        #region Helpers
-
-        private static bool WriteException(ICommandContext context, Exception e)
+        protected override void Dispose(bool disposing)
         {
-            context.StdError.WriteLine("fatal: {0}", e.Message);
-            if (e.InnerException != null)
+            if (disposing)
             {
-                context.StdError.WriteLine("fatal: {0}", e.InnerException.Message);
+                ProviderRegistry.Dispose();
             }
 
-            return true;
+            base.Dispose(disposing);
         }
 
-        private static bool TryCreateTextWriter(ICommandContext context, string path, out TextWriter writer)
+        protected bool WriteException(Exception e)
         {
-            writer = null;
-
-            try
-            {
-                var utf8NoBomEncoding = new UTF8Encoding(encoderShouldEmitUTF8Identifier: false);
-
-                var stream = context.FileSystem.OpenFileStream(path, FileMode.Append, FileAccess.Write, FileShare.ReadWrite);
-                writer = new StreamWriter(stream, utf8NoBomEncoding, 4096, leaveOpen: false);
-            }
-            catch
+            Context.StdError.WriteLine("fatal: {0}", e.Message);
+            if (e.InnerException != null)
             {
-                // Swallow all exceptions
+                Context.StdError.WriteLine("fatal: {0}", e.InnerException.Message);
             }
 
-            return writer != null;
-        }
-
-        #endregion
-
-        #region IDisposable
-
-        public void Dispose()
-        {
-            ProviderRegistry.Dispose();
-            _traceFileWriter?.Dispose();
+            return true;
         }
-
-        #endregion
     }
 }

common/src/Microsoft.Git.CredentialManager/ApplicationBase.cs

@@ -0,0 +1,118 @@
+using System;
+using System.Diagnostics;
+using System.IO;
+using System.Text;
+using System.Threading;
+using System.Threading.Tasks;
+
+namespace Microsoft.Git.CredentialManager
+{
+    public abstract class ApplicationBase : IDisposable
+    {
+        private static readonly Encoding Utf8NoBomEncoding = new UTF8Encoding(encoderShouldEmitUTF8Identifier: false);
+        
+        private TextWriter _traceFileWriter;
+
+        protected ICommandContext Context { get; }
+
+        protected ApplicationBase(ICommandContext context)
+        {
+            EnsureArgument.NotNull(context, nameof(context));
+
+            Context = context;
+        }
+
+        public Task<int> RunAsync(string[] args)
+        {
+            // Launch debugger
+            if (Context.IsEnvironmentVariableTruthy(Constants.EnvironmentVariables.GcmDebug, false))
+            {
+                Context.StdError.WriteLine("Waiting for debugger to be attached...");
+                WaitForDebuggerAttached();
+
+                // Now the debugger is attached, break!
+                Debugger.Break();
+            }
+
+            // Enable tracing
+            if (Context.TryGetEnvironmentVariable(Constants.EnvironmentVariables.GcmTrace, out string traceEnvar))
+            {
+                if (traceEnvar.IsTruthy()) // Trace to stderr
+                {
+                    Context.Trace.AddListener(Context.StdError);
+                }
+                else if (Path.IsPathRooted(traceEnvar)) // Trace to a file
+                {
+                    try
+                    {
+                        Stream stream = Context.FileSystem.OpenFileStream(traceEnvar, FileMode.Append, FileAccess.Write, FileShare.ReadWrite);
+                        _traceFileWriter = new StreamWriter(stream, Utf8NoBomEncoding, 4096, leaveOpen: false);
+
+                        Context.Trace.AddListener(_traceFileWriter);
+                    }
+                    catch (Exception ex)
+                    {
+                        Context.StdError.WriteLine($"warning: unable to trace to file '{traceEnvar}': {ex.Message}");
+                    }
+                }
+                else
+                {
+                    Context.StdError.WriteLine($"warning: unknown value for {Constants.EnvironmentVariables.GcmTrace} '{traceEnvar}'");
+                }
+            }
+
+            // Enable sensitive tracing and show warning
+            if (Context.IsEnvironmentVariableTruthy(Constants.EnvironmentVariables.GcmTraceSecrets, false))
+            {
+                Context.Trace.IsSecretTracingEnabled = true;
+                Context.Trace.WriteLine("Tracing of secrets is enabled. Trace output may contain sensitive information.");
+            }
+
+            return RunInternalAsync(args);
+        }
+
+        protected abstract Task<int> RunInternalAsync(string[] args);
+
+        #region Helpers
+
+        /// <summary>
+        /// Wait until a debugger has attached to the currently executing process.
+        /// </summary>
+        private static void WaitForDebuggerAttached()
+        {
+            // Attempt to launch the debugger if the OS supports the explicit launching
+            if (!Debugger.Launch())
+            {
+                // The prompt to debug was declined
+                return;
+            }
+
+            // Some platforms do not support explicit debugger launching..
+            // Wait for the debugger to attach - poll & sleep until then
+            while (!Debugger.IsAttached)
+            {
+                Thread.Sleep(TimeSpan.FromSeconds(1));
+            }
+        }
+
+        #endregion
+
+        #region IDisposable
+
+        protected virtual void Dispose(bool disposing)
+        {
+            if (disposing)
+            {
+                _traceFileWriter?.Dispose();
+            }
+        }
+
+        public void Dispose()
+        {
+            Dispose(true);
+            GC.SuppressFinalize(this);
+        }
+
+        #endregion
+    }
+}

common/src/Microsoft.Git.CredentialManager/PlatformUtils.cs

@@ -1,9 +1,7 @@
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT license.
 using System;
-using System.Diagnostics;
 using System.Runtime.InteropServices;
-using System.Threading;
 
 namespace Microsoft.Git.CredentialManager
 {
@@ -85,25 +83,6 @@ public static void EnsureLinux()
             }
         }
 
-        /// <summary>
-        /// Wait until a debugger has attached to the currently executing process.
-        /// </summary>
-        public static void WaitForDebuggerAttached()
-        {
-            // Attempt to launch the debugger if the OS supports the explicit launching
-            if (!Debugger.Launch())
-            {
-                // The prompt to debug was declined
-                return;
-            }
-
-            // Wait for the debugger to attach and poll & sleep until then
-            while (!Debugger.IsAttached)
-            {
-                Thread.Sleep(TimeSpan.FromSeconds(1));
-            }
-        }
-
         #region Platform information helper methods
 
         private static string GetOSType()