Identity use pbyte

sdk/identity/azure-identity/CHANGELOG.md

@@ -2,6 +2,7 @@
 
 ## 1.4.0b3 (Unreleased)
 
+- Preview of `VSCodeCredential` #10840
 
 ## 1.4.0b2 (2020-04-06)
 - After an instance of `DefaultAzureCredential` successfully authenticates, it

sdk/identity/azure-identity/azure/identity/_constants.py

@@ -8,6 +8,7 @@
 AZURE_VSCODE_CLIENT_ID = "aebc6443-996d-45c2-90f0-388ff96faa56"
 VSCODE_CREDENTIALS_SECTION = "VS Code Azure"
 
+
 class KnownAuthorities:
     AZURE_CHINA = "login.chinacloudapi.cn"
     AZURE_GERMANY = "login.microsoftonline.de"

sdk/identity/azure-identity/azure/identity/_credentials/linux_vscode_adapter.py

@@ -9,23 +9,38 @@
 
 
 def _c_str(string):
-    return ct.c_char_p(string.encode('utf-8'))
+    return ct.c_char_p(string.encode("utf-8"))
 
 
 try:
-    _libsecret = ct.cdll.LoadLibrary('libsecret-1.so.0')
-    _libsecret.secret_schema_new.argtypes = \
-        [ct.c_char_p, ct.c_uint, ct.c_char_p, ct.c_uint, ct.c_char_p, ct.c_uint, ct.c_void_p]
-    _libsecret.secret_password_lookup_sync.argtypes = \
-        [ct.c_void_p, ct.c_void_p, ct.c_void_p, ct.c_char_p, ct.c_char_p, ct.c_char_p, ct.c_char_p, ct.c_void_p]
+    _libsecret = ct.cdll.LoadLibrary("libsecret-1.so.0")
+    _libsecret.secret_schema_new.argtypes = [
+        ct.c_char_p,
+        ct.c_uint,
+        ct.c_char_p,
+        ct.c_uint,
+        ct.c_char_p,
+        ct.c_uint,
+        ct.c_void_p,
+    ]
+    _libsecret.secret_password_lookup_sync.argtypes = [
+        ct.c_void_p,
+        ct.c_void_p,
+        ct.c_void_p,
+        ct.c_char_p,
+        ct.c_char_p,
+        ct.c_char_p,
+        ct.c_char_p,
+        ct.c_void_p,
+    ]
     _libsecret.secret_password_lookup_sync.restype = ct.c_char_p
     _libsecret.secret_schema_unref.argtypes = [ct.c_void_p]
 except OSError:
     _libsecret = None
 
 
 def _get_user_settings_path():
-    app_data_folder = os.environ['HOME']
+    app_data_folder = os.environ["HOME"]
     return os.path.join(app_data_folder, ".config", "Code", "User", "settings.json")
 
 
@@ -47,17 +62,27 @@ def _get_refresh_token(service_name, account_name):
     # _libsecret.secret_password_lookup_sync raises segment fault on Python 2.7
     # temporarily disable it on 2.7
     import sys
+
     if sys.version_info[0] < 3:
         raise NotImplementedError("Not supported on Python 2.7")
 
     err = ct.c_int()
-    schema = _libsecret.secret_schema_new(_c_str("org.freedesktop.Secret.Generic"), 2,
-                                          _c_str("service"), 0, _c_str("account"), 0, None)
-    p_str = _libsecret.secret_password_lookup_sync(schema, None, ct.byref(err), _c_str("service"), _c_str(service_name),
-                                                   _c_str("account"), _c_str(account_name), None)
+    schema = _libsecret.secret_schema_new(
+        _c_str("org.freedesktop.Secret.Generic"), 2, _c_str("service"), 0, _c_str("account"), 0, None
+    )
+    p_str = _libsecret.secret_password_lookup_sync(
+        schema,
+        None,
+        ct.byref(err),
+        _c_str("service"),
+        _c_str(service_name),
+        _c_str("account"),
+        _c_str(account_name),
+        None,
+    )
     _libsecret.secret_schema_unref(schema)
     if err.value == 0:
-        return p_str.decode('utf-8')
+        return p_str.decode("utf-8")
 
     return None
 
@@ -69,5 +94,5 @@ def get_credentials():
         return credentials
     except NotImplementedError:  # pylint:disable=try-except-raise
         raise
-    except Exception: #pylint: disable=broad-except
+    except Exception:  # pylint: disable=broad-except
         return None

sdk/identity/azure-identity/azure/identity/_credentials/macos_vscode_adapter.py

@@ -9,7 +9,7 @@
 
 
 def _get_user_settings_path():
-    app_data_folder = os.environ['USER']
+    app_data_folder = os.environ["USER"]
     return os.path.join(app_data_folder, "Library", "Application Support", "Code", "User", "settings.json")
 
 
@@ -37,5 +37,5 @@ def get_credentials():
         environment_name = _get_user_settings()
         credentials = _get_refresh_token(VSCODE_CREDENTIALS_SECTION, environment_name)
         return credentials
-    except Exception: #pylint: disable=broad-except
+    except Exception:  # pylint: disable=broad-except
         return None

sdk/identity/azure-identity/azure/identity/_credentials/vscode_credential.py

@@ -7,9 +7,10 @@
 from .._exceptions import CredentialUnavailableError
 from .._constants import AZURE_VSCODE_CLIENT_ID
 from .._internal.aad_client import AadClient
-if sys.platform.startswith('win'):
+
+if sys.platform.startswith("win"):
     from .win_vscode_adapter import get_credentials
-elif sys.platform.startswith('darwin'):
+elif sys.platform.startswith("darwin"):
     from .macos_vscode_adapter import get_credentials
 else:
     from .linux_vscode_adapter import get_credentials
@@ -24,6 +25,7 @@ class VSCodeCredential(object):
     """Authenticates by redeeming a refresh token previously saved by VS Code
 
         """
+
     def __init__(self, **kwargs):
         self._client = kwargs.pop("_client", None) or AadClient("organizations", AZURE_VSCODE_CLIENT_ID, **kwargs)
 
@@ -45,9 +47,8 @@ def get_token(self, *scopes, **kwargs):
 
         refresh_token = get_credentials()
         if not refresh_token:
-            raise CredentialUnavailableError(
-                message="No Azure user is logged in to Visual Studio Code."
-            )
-        token = self._client.get_cached_access_token(scopes) \
-                or self._client.obtain_token_by_refresh_token(refresh_token, scopes, **kwargs)
+            raise CredentialUnavailableError(message="No Azure user is logged in to Visual Studio Code.")
+        token = self._client.get_cached_access_token(scopes) or self._client.obtain_token_by_refresh_token(
+            refresh_token, scopes, **kwargs
+        )
         return token

sdk/identity/azure-identity/azure/identity/_credentials/win_vscode_adapter.py

@@ -6,16 +6,16 @@
 import json
 import ctypes as ct
 from .._constants import VSCODE_CREDENTIALS_SECTION
+
 try:
     import ctypes.wintypes as wt
 except (IOError, ValueError):
     pass
 
 
-SUPPORTED_CREDKEYS = set((
-    'Type', 'TargetName', 'Persist',
-    'UserName', 'Comment', 'CredentialBlob'))
+SUPPORTED_CREDKEYS = set(("Type", "TargetName", "Persist", "UserName", "Comment", "CredentialBlob"))
 
+_PBYTE = ct.POINTER(ct.c_byte)
 
 class _CREDENTIAL(ct.Structure):
     _fields_ = [
@@ -25,17 +25,17 @@ class _CREDENTIAL(ct.Structure):
         ("Comment", ct.c_wchar_p),
         ("LastWritten", wt.FILETIME),
         ("CredentialBlobSize", wt.DWORD),
-        ("CredentialBlob", wt.LPBYTE),
+        ("CredentialBlob", _PBYTE),
         ("Persist", wt.DWORD),
         ("AttributeCount", wt.DWORD),
         ("Attributes", ct.c_void_p),
         ("TargetAlias", ct.c_wchar_p),
-        ("UserName", ct.c_wchar_p)]
-
+        ("UserName", ct.c_wchar_p),
+    ]
 
 _PCREDENTIAL = ct.POINTER(_CREDENTIAL)
 
-_advapi = ct.WinDLL('advapi32')
+_advapi = ct.WinDLL("advapi32")
 _advapi.CredReadW.argtypes = [wt.LPCWSTR, wt.DWORD, wt.DWORD, ct.POINTER(_PCREDENTIAL)]
 _advapi.CredReadW.restype = wt.BOOL
 _advapi.CredFree.argtypes = [_PCREDENTIAL]
@@ -47,16 +47,15 @@ def _read_credential(service_name, account_name):
     if _advapi.CredReadW(target, 1, 0, ct.byref(cred_ptr)):
         cred_blob = cred_ptr.contents.CredentialBlob
         cred_blob_size = cred_ptr.contents.CredentialBlobSize
-        password_as_list = [int.from_bytes(cred_blob[pos:pos + 1], 'little')
-                            for pos in range(0, cred_blob_size)]
-        cred = ''.join(map(chr, password_as_list))
+        password_as_list = [int.from_bytes(cred_blob[pos : pos + 1], "little") for pos in range(0, cred_blob_size)]
+        cred = "".join(map(chr, password_as_list))
         _advapi.CredFree(cred_ptr)
         return cred
     return None
 
 
 def _get_user_settings_path():
-    app_data_folder = os.environ['APPDATA']
+    app_data_folder = os.environ["APPDATA"]
     return os.path.join(app_data_folder, "Code", "User", "settings.json")
 
 
@@ -80,5 +79,5 @@ def get_credentials():
         environment_name = _get_user_settings()
         credentials = _get_refresh_token(VSCODE_CREDENTIALS_SECTION, environment_name)
         return credentials
-    except Exception: #pylint: disable=broad-except
+    except Exception:  # pylint: disable=broad-except
         return None

sdk/identity/azure-identity/azure/identity/aio/_credentials/vscode_credential.py

@@ -8,15 +8,18 @@
 from ..._constants import AZURE_VSCODE_CLIENT_ID
 from .._internal.aad_client import AadClient
 from ..._credentials.vscode_credential import get_credentials
+
 if TYPE_CHECKING:
     # pylint:disable=unused-import,ungrouped-imports
     from typing import Any, Iterable, Optional
     from azure.core.credentials import AccessToken
 
+
 class VSCodeCredential(AsyncCredentialBase):
     """Authenticates by redeeming a refresh token previously saved by VS Code
 
         """
+
     def __init__(self, **kwargs):
         self._client = kwargs.pop("_client", None) or AadClient("organizations", AZURE_VSCODE_CLIENT_ID, **kwargs)
 
@@ -49,9 +52,7 @@ async def get_token(self, *scopes, **kwargs):
 
         refresh_token = get_credentials()
         if not refresh_token:
-            raise CredentialUnavailableError(
-                message="No Azure user is logged in to Visual Studio Code."
-            )
+            raise CredentialUnavailableError(message="No Azure user is logged in to Visual Studio Code.")
         token = self._client.get_cached_access_token(scopes)
         if not token:
             token = await self._client.obtain_token_by_refresh_token(refresh_token, scopes, **kwargs)

sdk/identity/azure-identity/tests/test_vscode_credential.py

@@ -71,14 +71,14 @@ def test_redeem_token():
 
 @pytest.mark.skipif(not sys.platform.startswith('darwin'), reason="This test only runs on MacOS")
 def test_mac_keychain_valid_value():
-    with mock.patch('Keychain.get_generic_password', return_value="VALUE"):
+    with mock.patch('msal_extensions.osx.Keychain.get_generic_password', return_value="VALUE"):
         assert get_credentials() == "VALUE"
 
 
 @pytest.mark.skipif(not sys.platform.startswith('darwin'), reason="This test only runs on MacOS")
 def test_mac_keychain_error():
     from msal_extensions.osx import Keychain, KeychainError
-    with mock.patch.object(Keychain, 'get_generic_password', side_effect=KeychainError()):
+    with mock.patch.object(Keychain, 'get_generic_password', side_effect=KeychainError(-1)):
         credential = VSCodeCredential()
         with pytest.raises(CredentialUnavailableError):
             token = credential.get_token("scope")

sdk/identity/azure-identity/tests/test_vscode_credential_async.py

@@ -69,3 +69,4 @@ async def test_redeem_token():
         credential = VSCodeCredential(_client=mock_client)
         token = await credential.get_token("scope")
         assert token is expected_token
+        token_by_refresh_token.assert_called_with('VALUE', ('scope',))