Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

GCM release 2.3.0 #1361

Merged
merged 15 commits into from
Aug 1, 2023
Merged

GCM release 2.3.0 #1361

merged 15 commits into from
Aug 1, 2023

Conversation

ldennington
Copy link
Contributor

mjcheetham and others added 15 commits July 10, 2023 10:52
@mjcheetham
msauth: let caller select if MSA-PT behaviour is used
99dea8e 
Let the caller in to the `IMicrosoftAuthentication` component decide if
Microsoft Account Passthrough (MSA-PT) behaviour should be used.

Azure DevOps requires MSA-PT, so set that to `true` in usages.
@mjcheetham
msauth: workaround MSAL.NET issue with MSA-PT accounts
68bcc34 
When we have a Microsoft Account (MSA) in the cache and attempt to do a
silent authentication, if we're an MSA-PT app we need to specify the
special MSA transfer tenant ID to make sure we get the a token silently,
correctly. See the issue [1] in the MSAL repo for more information.

[1] AzureAD/microsoft-authentication-library-for-dotnet#3077
@ldennington
rename: remove git-credential-manager-core symlinks
88cae6b 
Since 2 versions of Git have released since the rename of the executable
from git-credential-manager-core to git-credential-manager, remove the
associated symlinks and warnings, (as outlined in docs/rename.md).
@cyclr-adrian
Update multiple-users.md
97d26d3
@ldennington
diagnose: add http fallback uri
5afa56b 
Currently, failure to access http://example.com causes failure of the
Networking Diagnostic portion of the diagnose command. To improve the
experience for users who are unable to access http://example.com, this
change:

1. Adds a fallback URI - if accessing http://example.com throws an
exception, we now try http://httpforever.com.
2. Prints a warning when either the primary or both the primary and
fallback uris throw an exception (instead of failing the Networking
Diagnostic).
@derrickstolee
Trace2FileWriter: ignore some exceptions on write
92cc905 
These exceptions were discovered while exploring trace2 settings with a
full Git client.

Git can take a directory location as a trace2 target and will create new
files for every process. GCM currently throws a
DirectoryNotFoundException given such a parameter.

Git processes somehow can append to the same file across multiple
subprocesses. When GCM attempts to append to the file, it gets an
UnauthorizedAccessException on Windows due to multiple writers being
problematic. This exception could also happen on other platforms if the
setting is pointing to a file with restricted permissions.

In both of these cases, we chose to do nothing. The traces are lost, but
that's better than crashing the process.

Future directions could include:

1. Sending a warning over stderr if these exceptions occur, to make it
   clear why trace2 are not showing up.

2. Directories could be noticed as a different kind of trace target and
   we create a new file for the process before passing it to the
   Trace2FileWriter.

3. Perhaps there is a way for Git to pass the handle to the trace file
   so we can append to the file that Git was using. (Alternatively, Git
   could close the file and then reopen it after running the GCM
   subprocess.)

Each of these issues are a bit complicated, so this quick fix is chosen
as a stop gap to avoid this problem for current users.
@derrickstolee
Trace2FileWriter: ignore some exceptions on write (#1340)
cc77173 
These exceptions were discovered while exploring trace2 settings with a
full Git client.

Git can take a directory location as a trace2 target and will create new
files for every process. GCM currently throws a
DirectoryNotFoundException given such a parameter.

Git processes somehow can append to the same file across multiple
subprocesses. When GCM attempts to append to the file, it gets an
UnauthorizedAccessException on Windows due to multiple writers being
problematic. This exception could also happen on other platforms if the
setting is pointing to a file with restricted permissions.

In both of these cases, we chose to do nothing. The traces are lost, but
that's better than crashing the process.

Future directions could include:

1. Sending a warning over stderr if these exceptions occur, to make it
clear why trace2 are not showing up.

2. Directories could be noticed as a different kind of trace target and
we create a new file for the process before passing it to the
Trace2FileWriter.

3. Perhaps there is a way for Git to pass the handle to the trace file
so we can append to the file that Git was using. (Alternatively, Git
could close the file and then reopen it after running the GCM
subprocess.)

Each of these issues are a bit complicated, so this quick fix is chosen
as a stop gap to avoid this problem for current users.
@ldennington
Update multiple-users.md (#1334)
eb35c03 
Change the example command `git-credential-manager github --help` to `git credential-manager github --help` to ensure compatibility with GCM bundled with Git for Windows.
@ldennington
rename: remove git-credential-manager-core symlinks (#1327)
2334200 
Since 2 versions of Git have released since the rename of the executable
from `git-credential-manager-core` to `git-credential-manager`, remove
the associated symlinks and warnings, (as outlined in `docs/rename.md`).
@ldennington
diagnose: add http fallback uri (#1339)
6904af7 
Currently, failure to access http://example.com causes failure of the
Networking Diagnostic portion of the `diagnose` command. To improve the
experience for users who are unable to access http://example.com, this
change:

1. Adds a fallback URI - if accessing http://example.com throws an
exception, we now try http://httpforever.com.
2. Prints a warning when either the primary or both the primary and
fallback uris throw an exception (instead of failing the Networking
Diagnostic).

Fixes #1215
@kawana77b
docs: update required dotnet-sdk version in install.md
1e09a44 
Update the version notation because since the release of git-credential-manager version 2.2.1, the sdk version required for installation is .NET 7.
@ldennington
docs: update required dotnet-sdk version in install.md (#1345)
2fcbd77 
Update the version notation because since the release of
git-credential-manager version 2.2.1, [the sdk version required for
installation is .NET
7](https://www.nuget.org/packages/git-credential-manager/2.2.1).
@mjcheetham
msauth: add extra tracing of MSA-PT and ATS
725ab49
@mjcheetham
Workaround MSAL.NET issue with MSA-PT account silent auth (#1321)
02ba62f 
When we have a Microsoft Account (MSA) in the cache and attempt to do a
silent authentication, if we're an MSA-PT app we need to specify the
special MSA transfer tenant ID to make sure we get the a token silently,
correctly.

See the
[issue](AzureAD/microsoft-authentication-library-for-dotnet#3077)
in the MSAL repo for more information.

Fixes: #1297
@ldennington
version: bump to 2.3.0
8c430c9
@ldennington ldennington self-assigned this Aug 1, 2023
@ldennington ldennington merged commit 58e34e3 into release Aug 1, 2023
16 checks passed
@ldennington ldennington temporarily deployed to release August 7, 2023 16:10 — with GitHub Actions Inactive
@ldennington ldennington temporarily deployed to release August 7, 2023 16:10 — with GitHub Actions Inactive
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@mjcheetham mjcheetham mjcheetham approved these changes

Assignees

@ldennington ldennington

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
5 participants
@ldennington @mjcheetham @cyclr-adrian @derrickstolee @kawana77b