A simple and efficient tool for deploying software
Complex software often requires many different steps during deployment. After the compiler is finished with the build, it may be necessary to
- copy files to one or multiple webservers
- run a command on a server to update the database
- stop a Windows service, replace its binaries and start it again
All these steps can be automated in many different ways. But you often have to learn, install and configure a lot of tools and helpers to achieve this.
This is where QuickDeploy comes in. It requires you only to install a Windows service on the server. Afterwards you can do all the actions mentioned above with simple C# code - or if you like with VB.NET, Powershell or any tool that can use .NET DLLs.
- Secure communication: Mutually authenticated TLS connection between client and server
- Easy authentication: Just use your Windows credentials to login on the server. Any action on the server will be executed with the Windows user's permissions.
- Efficient file transfer: Files are only copied if they have changed and are compressed for transfer.
- Create your own certificates with public private key pairs as mentioned in the chapter 'Creation of your own certificates with public private key pairs'.
- Use the QuickDeploy-server-setup.exe from https://github.com/Toqe/QuickDeploy/releases and install it on the server. This will install the service and create a Windows firewall rule for it. Please check the firewall rule and make sure only trusted computers are able to access the service, for example by using IPSec.
- Copy your own created certificates
server-private.pfxandclient-public.pfxto the installation directory, for exampleC:\Program Files (x86)\QuickDeploy\Server - Run
services.msc(Windows Services Manager) and startQuickDeployServiceby right-clicking on it and selecting "Start".
- Create a new Visual Studio C# project.
- Install the
QuickDeploy.ClientNuGet package by using Visual Studio's 'Manage Packages' or the Package ManagerInstall-Package QuickDeploy.Client. You can find more information about the NuGet package on https://www.nuget.org/packages/QuickDeploy.Client - Copy your own created certificates
server-public.pfxandclient-private.pfxto the new project and set "Copy to Output Directory" to "Always copy". - Use the following code as starting point for your own deployments:
using System;
using System.IO;
using QuickDeploy.Client;
using QuickDeploy.Common;
using QuickDeploy.Common.DirectorySyncer;
using QuickDeploy.Common.Messages;
namespace QuickDeploy.Example
{
public class Program
{
static void Main(string[] args)
{
var credentials = new Credentials
{
Domain = "mydomain",
Username = "mydeploymentuser",
Password = "mypassword"
};
var expectedServerCertificateFilename = "server-public.pfx";
var clientCertificateFilename = "client-private.pfx";
var clientCertificatePassword = "";
var hostname = "targetserver.example.org";
var port = 9876;
var client = new QuickDeployTcpSslClient(hostname, port, expectedServerCertificateFilename, clientCertificateFilename, clientCertificatePassword);
var directorySyncer = new DirectorySyncer(client);
// ***
// Example 1: Sync local directory to server (for example for deployment of IIS websites)
// ***
// Copy all files from local c:\develop\mywebsite\deploy to remote c:\inetpub\wwwroot\mywebsite
directorySyncer.Sync(
Path.Combine(@"c:\develop\mywebsite\deploy"),
Path.Combine(@"c:\inetpub\wwwroot\mywebsite"),
credentials);
// ***
// Example 2: Windows Service deployment
// ***
// Stop service MyWindowsService ...
client.ChangeServiceStatus(
new ChangeServiceStatusRequest
{
ServiceName = "MyWindowsService",
DesiredServiceStatus = ServiceStatus.Stop,
Credentials = credentials
});
// ... then copy all files from local c:\develop\myservice\deploy to remote c:\services\myservice ...
directorySyncer.Sync(
Path.Combine(@"c:\develop\myservice\deploy"),
Path.Combine(@"c:\services\myservice"),
credentials);
// ... finally restart service
client.ChangeServiceStatus(
new ChangeServiceStatusRequest
{
ServiceName = "MyWindowsService",
DesiredServiceStatus = ServiceStatus.Start,
Credentials = credentials
});
// ***
// Example 3: Execute command on server
// ***
// Copy all files from local c:\develop\mydatabase\deploy to c:\tools\mydatabase ...
directorySyncer.Sync(
Path.Combine(@"c:\develop\mydatabase\deploy"),
Path.Combine(@"c:\tools\mydatabase"),
credentials);
// ... then execute the just transferred deploy.bat
var cmdResult = client.ExecuteCommand(
new ExecuteCommandRequest
{
Command = @"c:\tools\mydatabase\deploy.bat",
Credentials = credentials
});
if (cmdResult.ExitCode != 0)
{
throw new InvalidOperationException($"Build failed: Command exited with code {cmdResult.ExitCode}");
}
}
}
}QuickDeploy proxying can be used when you don't have a direct network connection to a target server ("server B"), but can connect to an intermediate server ("server A") that can reach the target server. This scenario is often the case in VPN setups where you can only directly reach a jump host in a target network, from which you can then access further computers in the network.
As a preparation, you have to create certificates with public private key pairs for server A and server B (see chapter below) and distribute them to the servers. Say, you have used the QuickDeploy.Common.CertificateGeneration.Console.exe and renamed the generated folders to certificates-serverA and certificates-serverB.
Then you can use the following client code to proxy through server A to server B:
var serverAClient = new QuickDeployTcpSslClient(
"serverA",
9876,
System.IO.File.ReadAllBytes("certificates-serverA/client/server-public.pfx"),
System.IO.File.ReadAllBytes("certificates-serverA/client/client-private.pfx"),
"");
var serverACredentials = new Credentials
{
Domain = "server_a_domain",
Username = "server_a_user",
Password = "server_a_password",
};
var serverBClient = serverAClient.GetProxyClient(
serverACredentials,
"serverB",
9876,
System.IO.File.ReadAllBytes("certificates-serverB/client/server-public.pfx"),
System.IO.File.ReadAllBytes("certificates-serverB/client/client-private.pfx"),
"");
var serverBCredentials = new Credentials
{
Domain = "server_b_domain",
Username = "server_b_user",
Password = "server_b_password",
};
// do some work with serverBClient, for example extract a zip file ...
var request = new ExtractZipRequest
{
Credentials = serverBCredentials,
ZipFileName = @"c:\temp\test.zip",
DestinationDirectory = @"c:\test-extracted",
};
serverBClient.ExtractZip(request);This software uses self signed certificates for the authentication between server and client and the TLS encryption of the transferred messages. It is recommended to create and use your own certificates. Otherwise any attacker having access to the open port of your server may take control over the server.
You can create the certificates following these steps:
- Go to https://github.com/Toqe/QuickDeploy/releases and download
QuickDeploy.Common.CertificateGeneration.Console.zip. - Extract the zip file and run
QuickDeploy.Common.CertificateGeneration.Console.exe. This will create a folder namedcertificates_and the current timestamp, for examplecertificates_20181124_124541. In this folder you will find subfoldersclientandserver. The certificates in theserverdirectory are intended to be copied to the server, the one in theclientdirectory are used by the client. - For development purposes: Copy the just created
server-public.pfx,server-private.pfx,client-public.pfxandclient-private.pfxto theQuickDeploy.Commondirectory and replace the existing ones.
- The server will use
server-private.pfxto authententicate to the client on connecting and encrypt the connection with TLS. The file contains the private keys of the server and should be handled carefully and not be made publicly available. - The client will use
server-public.pfxto check the server's certificate on connecting. The file doesn't contain private keys and can be exposed publicly. - The client will use
client-private.pfxto authententicate to the server on connecting. The file contains the private keys of the client and should be handled carefully and not be made publicly available. - The server will use
client-public.pfxto check the client's certificate on connecting. The file doesn't contain private keys and can be exposed publicly.
- Version 2.4.0: Added functionality to query if a Windows service exists and is running.
- Version 2.3.0: Added functionality to proxy through a QuickDeploy server to another one.
- Version 2.2.0: Added functionality to start and stop IIS application pools.
- Version 2.1.0: Added functionality to sync a single file.
- Version 2.0.0: Added client authentication for better security. This is a breaking change to version 1.0.0, so clients and servers of different versions can't be used together.
- Version 1.0.0: Initial release
- Create NuGet package:
nuget pack QuickDeploy.Client\QuickDeploy.Client.nuspec - Create Installer:
ci.bat pkg