WIP: Check allowed login methods of enterprise instance

Unfortunately my idea of checking whether the `redirect_url` is correctly set by sending a request with the required `redirect_url` with `HttpClient` and listening for an error if it doesn't match that on the server doesn't seem to work.

Author: grokys

src/GitHub.Api/LoginManager.cs

@@ -345,7 +345,10 @@ Uri GetLoginUrl(IOauthClient client, string state)
                 request.Scopes.Add(scope);
             }
 
-            return client.GetGitHubLoginUrl(request);
+            var uri = client.GetGitHubLoginUrl(request);
+            
+            // OauthClient.GetGitHubLoginUrl seems to give the wrong URL. Fix this.
+            return new Uri(uri.ToString().Replace("/api/v3", ""));
         }
     }
 }

src/GitHub.App/GitHub.App.csproj

@@ -133,6 +133,7 @@
     <Compile Include="Models\IssueCommentModel.cs" />
     <Compile Include="Models\PullRequestReviewCommentModel.cs" />
     <Compile Include="Models\PullRequestDetailArgument.cs" />
+    <Compile Include="Services\EnterpriseCapabilitiesService.cs" />
     <Compile Include="Services\GlobalConnection.cs" />
     <Compile Include="Services\OAuthCallbackListener.cs" />
     <Compile Include="ViewModels\Dialog\GistCreationViewModel.cs" />

src/GitHub.App/Services/EnterpriseCapabilitiesService.cs

@@ -0,0 +1,62 @@
+using System;
+using System.ComponentModel.Composition;
+using System.Net.Http;
+using System.Threading.Tasks;
+using GitHub.Api;
+using GitHub.Factories;
+using GitHub.Primitives;
+using Octokit;
+
+namespace GitHub.Services
+{
+    [Export(typeof(IEnterpriseCapabilitiesService))]
+    [PartCreationPolicy(CreationPolicy.Shared)]
+    public class EnterpriseCapabilitiesService : IEnterpriseCapabilitiesService
+    {
+        readonly ISimpleApiClientFactory apiClientFactory;
+        readonly IEnterpriseProbe probe;
+
+        [ImportingConstructor]
+        public EnterpriseCapabilitiesService(
+            ISimpleApiClientFactory apiClientFactory,
+            IEnterpriseProbe probe)
+        {
+            this.apiClientFactory = apiClientFactory;
+            this.probe = probe;
+        }
+
+        public Task<EnterpriseProbeResult> Probe(Uri enterpriseBaseUrl) => probe.Probe(enterpriseBaseUrl);
+
+        public async Task<EnterpriseLoginMethods> ProbeLoginMethods(Uri enterpriseBaseUrl)
+        {
+            var client = await apiClientFactory.Create(UriString.ToUriString(enterpriseBaseUrl));
+            var meta = await client.GetMetadata();
+            var result = meta.VerifiablePasswordAuthentication ?
+                EnterpriseLoginMethods.UsernameAndPassword :
+                EnterpriseLoginMethods.TokenOnly;
+            var httpClient = new HttpClient();
+            var loginUrl = GetLoginUrl(client.Client.Connection);
+            var response = await httpClient.GetAsync(loginUrl);
+
+            //if (response.IsSuccessStatusCode)
+            //{
+            //    result |= EnterpriseLoginMethods.OAuth;
+            //}
+
+            return result;
+        }
+
+        private Uri GetLoginUrl(IConnection connection)
+        {
+            var oauthClient = new OauthClient(connection);
+            var oauthLoginRequest = new OauthLoginRequest(ApiClientConfiguration.ClientId)
+            {
+                RedirectUri = new Uri(OAuthCallbackListener.CallbackUrl),
+            };
+            var uri = oauthClient.GetGitHubLoginUrl(oauthLoginRequest);
+
+            // OauthClient.GetGitHubLoginUrl seems to give the wrong URL. Fix this.
+            return new Uri(uri.ToString().Replace("/api/v3", ""));
+        }
+    }
+}

src/GitHub.App/Services/OAuthCallbackListener.cs

@@ -27,7 +27,6 @@ namespace GitHub.Services
     public class OAuthCallbackListener : IOAuthCallbackListener
     {
         const int CallbackPort = 42549;
-        readonly static string CallbackUrl = Invariant($"http://localhost:{CallbackPort}/");
         readonly IHttpListener httpListener;
 
         [ImportingConstructor]
@@ -39,6 +38,8 @@ public OAuthCallbackListener(IHttpListener httpListener)
             httpListener.Prefixes.Add(CallbackUrl);
         }
 
+        public readonly static string CallbackUrl = Invariant($"http://localhost:{CallbackPort}/");
+
         public async Task<string> Listen(string id, CancellationToken cancel)
         {
             if (httpListener.IsListening) httpListener.Stop();

src/GitHub.App/ViewModels/Dialog/LoginToGitHubForEnterpriseViewModel.cs

@@ -21,23 +21,23 @@ namespace GitHub.ViewModels.Dialog
     public class LoginToGitHubForEnterpriseViewModel : LoginTabViewModel, ILoginToGitHubForEnterpriseViewModel
     {
         readonly ISimpleApiClientFactory apiClientFactory;
-        readonly IEnterpriseProbe enterpriseProbe;
+        readonly IEnterpriseCapabilitiesService enterpriseCapabilities;
 
         [ImportingConstructor]
         public LoginToGitHubForEnterpriseViewModel(
             IConnectionManager connectionManager,
             ISimpleApiClientFactory apiClientFactory,
-            IEnterpriseProbe enterpriseProbe,
+            IEnterpriseCapabilitiesService enterpriseCapabilities,
             IVisualStudioBrowser browser)
             : base(connectionManager, browser)
         {
             Guard.ArgumentNotNull(connectionManager, nameof(connectionManager));
             Guard.ArgumentNotNull(apiClientFactory, nameof(apiClientFactory));
-            Guard.ArgumentNotNull(enterpriseProbe, nameof(enterpriseProbe));
+            Guard.ArgumentNotNull(enterpriseCapabilities, nameof(enterpriseCapabilities));
             Guard.ArgumentNotNull(browser, nameof(browser));
 
             this.apiClientFactory = apiClientFactory;
-            this.enterpriseProbe = enterpriseProbe;
+            this.enterpriseCapabilities = enterpriseCapabilities;
 
             EnterpriseUrlValidator = ReactivePropertyValidator.For(this, x => x.EnterpriseUrl)
                 .IfNullOrEmpty(Resources.EnterpriseUrlValidatorEmpty)
@@ -91,11 +91,11 @@ public EnterpriseProbeStatus ProbeStatus
             private set { this.RaiseAndSetIfChanged(ref probeStatus, value); }
         }
 
-        bool? supportsUserNameAndPassword;
-        public bool? SupportsUserNameAndPassword
+        EnterpriseLoginMethods? supportedLoginMethods;
+        public EnterpriseLoginMethods? SupportedLoginMethods
         {
-            get { return supportsUserNameAndPassword; }
-            private set { this.RaiseAndSetIfChanged(ref supportsUserNameAndPassword, value); }
+            get { return supportedLoginMethods; }
+            private set { this.RaiseAndSetIfChanged(ref supportedLoginMethods, value); }
         }
 
         public ReactivePropertyValidator EnterpriseUrlValidator { get; }
@@ -119,35 +119,34 @@ async void EnterpriseUrlChanged(string url, bool valid)
             {
                 // The EnterpriseUrlValidator will display an adorner in this case so don't show anything.
                 ProbeStatus = EnterpriseProbeStatus.None;
+                SupportedLoginMethods = null;
                 return;
             }
 
             var enterpriseInstance = false;
-            var passwordAuth = (bool?)null;
+            var loginMethods = (EnterpriseLoginMethods?)null;
 
             try
             {
+                var uri = new Uri(url);
                 ProbeStatus = EnterpriseProbeStatus.Checking;
-                SupportsUserNameAndPassword = null;
 
-                if (await enterpriseProbe.Probe(new Uri(url)) == EnterpriseProbeResult.Ok)
+                if (await enterpriseCapabilities.Probe(uri) == EnterpriseProbeResult.Ok)
                 {
-                    var client = await apiClientFactory.Create(new UriString(url));
-                    var meta = await client.GetMetadata();
-
+                    loginMethods = await enterpriseCapabilities.ProbeLoginMethods(uri);
                     enterpriseInstance = true;
-                    passwordAuth = meta.VerifiablePasswordAuthentication;
                 }
             }
             catch
             {
                 ProbeStatus = EnterpriseProbeStatus.Invalid;
+                loginMethods = null;
             }
 
             if (url == EnterpriseUrl)
             {
                 ProbeStatus = enterpriseInstance ? EnterpriseProbeStatus.Valid : EnterpriseProbeStatus.Invalid;
-                SupportsUserNameAndPassword = passwordAuth;
+                SupportedLoginMethods = loginMethods;
             }
         }
     }

src/GitHub.Exports.Reactive/ViewModels/Dialog/ILoginToGitHubForEnterpriseViewModel.cs

@@ -1,4 +1,5 @@
 using System.Reactive;
+using GitHub.Services;
 using GitHub.Validation;
 using ReactiveUI;
 
@@ -47,10 +48,10 @@ public interface ILoginToGitHubForEnterpriseViewModel : ILoginToHostViewModel
         EnterpriseProbeStatus ProbeStatus { get; }
 
         /// <summary>
-        /// Gets a value indcating whether the GitHub Enterprise instance at <see cref="EnterpriseUrl"/>
-        /// supports logging in with a username and password.
+        /// Gets the supported login methods for the GitHub Enterprise instance at
+        /// <see cref="EnterpriseUrl"/>.
         /// </summary>
-        bool? SupportsUserNameAndPassword { get; }
+        EnterpriseLoginMethods? SupportedLoginMethods { get; }
 
         /// <summary>
         /// Gets the validator instance used for validating the 

src/GitHub.Exports/GitHub.Exports.csproj

@@ -146,6 +146,7 @@
     <Compile Include="Models\ICommentModel.cs" />
     <Compile Include="Models\IInlineCommentModel.cs" />
     <Compile Include="Models\IPullRequestReviewCommentModel.cs" />
+    <Compile Include="Services\IEnterpriseCapabilitiesService.cs" />
     <Compile Include="Services\IGlobalConnection.cs" />
     <Compile Include="Services\ILocalRepositories.cs" />
     <Compile Include="Services\IVisualStudioBrowser.cs" />

src/GitHub.Exports/Services/IEnterpriseCapabilitiesService.cs

@@ -0,0 +1,43 @@
+using System;
+using System.Threading.Tasks;
+using Octokit;
+
+namespace GitHub.Services
+{
+    /// <summary>
+    /// Describes the login methods supported by an enterprise instance.
+    /// </summary>
+    [Flags]
+    public enum EnterpriseLoginMethods
+    {
+        TokenOnly = 0x00,
+        UsernameAndPassword = 0x01,
+        OAuth = 0x02,
+        All = 0x03,
+    }
+
+    /// <summary>
+    /// Services for checking the capabilities of enterprise installations.
+    /// </summary>
+    public interface IEnterpriseCapabilitiesService
+    {
+        /// <summary>
+        /// Makes a request to the specified URL and returns whether or not the probe could definitively determine that a GitHub
+        /// Enterprise Instance exists at the specified URL.
+        /// </summary>
+        /// <remarks>
+        /// The probe checks the absolute path /site/sha at the specified <paramref name="enterpriseBaseUrl" />.
+        /// </remarks>
+        /// <param name="enterpriseBaseUrl">The URL to test</param>
+        /// <returns>An <see cref="EnterpriseProbeResult" /> with either <see cref="EnterpriseProbeResult.Ok"/>,
+        /// <see cref="EnterpriseProbeResult.NotFound"/>, or <see cref="EnterpriseProbeResult.Failed"/> in the case the request failed</returns>
+        Task<EnterpriseProbeResult> Probe(Uri enterpriseBaseUrl);
+
+        /// <summary>
+        /// Checks the login methods supported by an enterprise instance.
+        /// </summary>
+        /// <param name="enterpriseBaseUrl">The URL to test.</param>
+        /// <returns>The supported login methods.</returns>
+        Task<EnterpriseLoginMethods> ProbeLoginMethods(Uri enterpriseBaseUrl);
+    }
+}

src/GitHub.VisualStudio.UI/Resources.Designer.cs

@@ -398,4 +398,7 @@
   <data name="OpenFileInSolution" xml:space="preserve">
     <value>Open File in Solution</value>
   </data>
+  <data name="TokenPrompt" xml:space="preserve">
+    <value>Token</value>
+  </data>
 </root>