Cargo AuthenticateV0 Service Connection (#17572)

* Cargo AuthenticateV0 Service Connection

* Added username/password (PAT)

* Refactoring to support crates.io auth token

* Remove node16

* Remove node16

* node10 commit

Author: zhenghao104

Tasks/CargoAuthenticateV0/Strings/resources.resjson/en-US/resources.resjson

@@ -5,10 +5,13 @@
   "loc.instanceNameFormat": "cargo Authenticate $(configFile)",
   "loc.input.label.configFile": "config.toml file to authenticate",
   "loc.input.help.configFile": "Path to the config.toml file that specifies the registries you want to work with. Select the file, not the folder e.g. \"/.cargo/config.toml\".",
+  "loc.input.label.cargoServiceConnections": "Credentials for registries outside this organization/collection",
+  "loc.input.help.cargoServiceConnections": "Credentials to use for external registries located in the project's config.toml. For registries in this organization/collection, leave this blank; the build’s credentials are used automatically.",
   "loc.messages.FailedToAddAuthentication": "Failed to add authentication.",
   "loc.messages.ConfigTomlNotToml": "The file you selected to authenticate (%s) is not a valid .toml file.",
   "loc.messages.ConfigTomlDoesNotExist": "The config.toml file you selected at %s does not currently exist.",
   "loc.messages.ConfigTomlMissingRegistry": "The config.toml file you selected must contain registries table",
   "loc.messages.AuthenticatingThisConfigToml": "Adding authentication for registry listed in this config.toml file at %s",
-  "loc.messages.AddingAuthRegistry": "Adding auth for registry: %s with token name: %s"
+  "loc.messages.AddingAuthRegistry": "Adding auth for registry: %s with token name: %s",
+  "loc.messages.AddingAuthExternalRegistry": "Adding auth for external registry: %s with token name: %s"
 }

Tasks/CargoAuthenticateV0/Tests/package-lock.json

@@ -1,20 +1,19 @@
 {
-    "name": "cargo-authenticate-tests",
-    "version": "1.0.0",
-    "description": "Azure Pipelines Cargo Authenticate V0 Task Tests",
-    "main": "L0.js",
-    "scripts": {
-      "test": "echo \"Error: no test specified\" && exit 1"
-    },
-    "repository": {
-      "type": "git",
-      "url": "git+ssh://[email protected]/Microsoft/azure-pipelines-tasks.git"
-    },
-    "author": "Microsoft Corporation",
-    "license": "MIT",
-    "bugs": {
-      "url": "https://github.com/Microsoft/azure-pipelines-tasks/issues"
-    },
-    "homepage": "https://github.com/Microsoft/azure-pipelines-tasks#readme"
-  }
-  
+  "name": "cargo-authenticate-tests",
+  "version": "1.0.0",
+  "description": "Azure Pipelines Cargo Authenticate V0 Task Tests",
+  "main": "L0.js",
+  "scripts": {
+    "test": "echo \"Error: no test specified\" && exit 1"
+  },
+  "repository": {
+    "type": "git",
+    "url": "git+ssh://[email protected]/Microsoft/azure-pipelines-tasks.git"
+  },
+  "author": "Microsoft Corporation",
+  "license": "MIT",
+  "bugs": {
+    "url": "https://github.com/Microsoft/azure-pipelines-tasks/issues"
+  },
+  "homepage": "https://github.com/Microsoft/azure-pipelines-tasks#readme"
+}

Tasks/CargoAuthenticateV0/Tests/package.json

@@ -6,6 +6,9 @@ import * as constants from './constants';
 import * as util from 'azure-pipelines-tasks-packaging-common/util';
 import * as pkgLocationUtils from 'azure-pipelines-tasks-packaging-common/locationUtilities';
 import * as url from 'url';
+import * as base64 from 'base-64';
+import * as utf8 from 'utf8';
+import { ServiceConnection, getPackagingServiceConnections, ServiceConnectionAuthType, UsernamePasswordServiceConnection, TokenServiceConnection } from "azure-pipelines-tasks-artifacts-common/serviceConnectionUtils";
 
 async function main(): Promise<void> {
     tl.setResourcePath(path.join(__dirname, 'task.json'));
@@ -49,16 +52,48 @@ async function main(): Promise<void> {
         });
 
         const localAccesstoken = `Bearer ${tl.getVariable('System.AccessToken')}`;
+        const serviceConnections = getPackagingServiceConnections('cargoServiceConnections');
+        let externalServiceConnections: ServiceConnection[] = [];
+
+        for (let serviceConnection of serviceConnections) {
+            switch (serviceConnection.authType) {
+                case (ServiceConnectionAuthType.UsernamePassword):
+                    externalServiceConnections.push(serviceConnection);
+                    break;
+                case (ServiceConnectionAuthType.Token):
+                    // We only support crates.io
+                    if (url.parse(serviceConnection.packageSource.uri).host !== "crates.io") throw Error(tl.loc('Error_InvalidServiceConnection', serviceConnection.packageSource.uri));
+
+                    const tokenAuthInfo = serviceConnection as TokenServiceConnection;
+                    tl.debug(`Detected token credentials for '${serviceConnection.packageSource.uri}'`);
+                    tl.setVariable("CARGO_REGISTRY_TOKEN", tokenAuthInfo.token)
+                    break;
+                default:
+                    throw Error(tl.loc('Error_InvalidServiceConnection', serviceConnection.packageSource.uri));
+            }
+        }
+
         for (let registry of Object.keys(result.registries)) {
             const registryUrl = url.parse(result.registries[registry].index);
-            if(registryUrl && registryUrl.host && collectionHosts.indexOf(registryUrl.host.toLowerCase()) >= 0) {
-                const tokenName = `CARGO_REGISTRIES_${registry.toLocaleUpperCase().replace("-", "_")}_TOKEN`;
-                tl.debug(tl.loc('AddingAuthRegistry', registry, tokenName));
-                tl.setVariable(tokenName, localAccesstoken);
+            let tokenName = `CARGO_REGISTRIES_${registry.toLocaleUpperCase().replace("-", "_")}_TOKEN`;
+            if (registryUrl && registryUrl.host && collectionHosts.indexOf(registryUrl.host.toLowerCase()) >= 0) {
+                let currentRegistry : string;
+                for (let serviceConnection of externalServiceConnections) {
+                    if (url.parse(serviceConnection.packageSource.uri).href === url.parse(result.registries[registry].index.replace("sparse+", "")).href) {
+                        const usernamePasswordAuthInfo = serviceConnection as UsernamePasswordServiceConnection;
+                        currentRegistry = registry;
+                        tl.debug(`Detected username/password or PAT credentials for '${serviceConnection.packageSource.uri}'`);
+                        tl.debug(tl.loc('AddingAuthExternalRegistry', registry, tokenName));
+                        tl.setVariable(tokenName, `Basic ${base64.encode(utf8.encode(`${usernamePasswordAuthInfo.username}:${usernamePasswordAuthInfo.password}`))}`);
+                    }      
+                }
+                // Default to internal registry if no token has been set yet
+                if (!currentRegistry) {
+                    tl.debug(tl.loc('AddingAuthRegistry', registry, tokenName));
+                    tl.setVariable(tokenName, localAccesstoken);
+                }  
             }   
-        }
-
-        //External endpoints
+        } 
     }
 
     catch(error) {

Tasks/CargoAuthenticateV0/cargoauthenticatemain.ts

@@ -1,3 +1,4 @@
 export class CargoAuthenticateTaskInput  {
     public static ConfigFile: string = 'configFile';
+    public static cargoServiceConnections: string = 'cargoServiceConnections';
 }