GH-3397: Implemented the HTTP-based authentication for Git in Electron.

[kittaakos]

Closes: #3397

Signed-off-by: Akos Kitta kittaakos@typefox.io

Resources for CQ:

• askpass-empty.sh
• askpass-main.ts
• askpass.sh
• askpass.ts

[kittaakos]

For reviewers: it is in an early preview state.
What it does:

• in the electron Theia, if the credential.helper is not (yet) set, it prompts for the username and password.

What it does not yet support:

• save the password and reuse it.
• I am sure, there are issues with the reconnection this point.

If you want to try out:

• unset your credential.helper for Git

git config --global --unset credential.helper
git config --system --unset credential.helper

• start the electron example.
• open a workspace using a private Git repository.
• do a pull from the Git widget.

[kittaakos]

@marcdumais-work, this PR contains a few resources that are based on VS Code. Can you please assist me what to do to start the CQ process? Thank you!

[marcdumais-work]

Hi @kittaakos,

I am learning how to do this ATM, so let's try together. If you would add me in cc to the CQ/IP record, once created, I can more easily follow.

ref: https://www.eclipse.org/legal/EclipseLegalProcessPoster.pdf
I think we are in this case (Page 2 -> Everything else -> license is not EPL -> license is approved (MIT).

extra info:

1. navigate to our project page and log-in
2. On the right side of the page, under "Intellectual Property", chose "Create a Contribution Questionnaire"
3. type of contribution: "Contribution of code to be maintained by an Eclipse Foundation project"
4. I am a bit less sure at this point. But I would suggest:

• name: same as PR?
• descr: short description of PR, including mentioning the borrowing of files from the vscode project and which ones, that the original license for those files is MIT.
• reason: New Feature but not initial contribution
• contribution record: URL of the PR?
• Authors: yourself for the bulk, plus Microsoft for copied files previously specified in the description?

I think we then need to attach the copied code (from original vscode project) to the IP record, that I think is automatically created when submitting the CQ. A zip file where only the copied file, in their original context, are preserved. e.g. keep the directory structure and copied files. Maybe also e.g. the original LICENSE file.

[kittaakos]

Thank you, @marcdumais-work.
CQ: https://dev.eclipse.org/ipzilla/show_bug.cgi?id=18131

[marcdumais-work]

Hi @kittaakos

CQ: https://dev.eclipse.org/ipzilla/show_bug.cgi?id=18131

Nice, thanks.

A couple of comments:

• I think the type should be "Type_A"
• From what I understood, we should submit the borrowed files in the form of a zip archive. The expected content was not 100% clear to me, but what seemed to work was to take the original repo (vscode in this case) and only keep, in their original directories, the borrowed source files and files that might include related license info, for context. e.g.: see latest attachment: on https://dev.eclipse.org/ipzilla/show_bug.cgi?id=17011
• when ready to go forward, you have to click the "Issues addressed, return CQ to IP team" button on the CQ.

I added a quick comment on the CQ about the project type and to point towards our previous vscode CQ.

[kittaakos]

@marcdumais-work, thanks for the feedback.

• I think the type should be "Type_A"

👍 Is it required? I must have missed it.

• borrowed files

The files are not just borrowed but modified too. I do not know if this matters.

• The expected content was not 100% clear to me

Me neither. Do I need to collect all files (from this PR) and attach it as a ZIP archive? Let's wait for the feedback for the CQ. What do you think?
For instance, here in JDT LS, the attachment was the entire patch (git diff) of the PR.

• take the original repo (vscode in this case) and only keep, in their original directories, the borrowed source files and files that might include related license info

I do not understand it.

[marcdumais-work]

For instance, here in JDT LS, the attachment was the entire patch (git diff) of the PR.

Interesting. However I think in that case the reason for needing a CQ was that the patch size was over the 1000 lines threshold and from a non-committer / non-committer-company. The copied code came from an Eclipse Foundation project, so it was already known to be license-compatible. So maybe not the same case exactly.

Let's wait for the feedback for the CQ

+1. We can learn and then adjust for later CQs

[AlexTugarev]

minor: we could also have a single initialized: Deferred to await on, and in the init we could set both properties.
but this is fine as well.

[AlexTugarev]

Works nicely! Thanks!
🎉

[kittaakos]

On Windows, I still have the following issue:

root ERROR Cannot find a service for the path: /services/plugin-ext
Server worker failed. [ID: 1 | PID: 4260] { Error: write ENOTSUP
    at exports._errnoException (util.js:1024:11)
    at ChildProcess.target._send (internal/child_process.js:698:20)
    at ChildProcess.target.send (internal/child_process.js:582:19)
    at sendHelper (internal/cluster/utils.js:25:15)
    at send (internal/cluster/master.js:339:10)
    at handle.add (internal/cluster/master.js:311:5)
    at SharedHandle.add (internal/cluster/shared_handle.js:29:3)
    at queryServer (internal/cluster/master.js:300:10)
    at Worker.onmessage (internal/cluster/master.js:244:5)
    at ChildProcess.onInternalMessage (internal/cluster/utils.js:42:8) code: 'ENOTSUP', errno: 'ENOTSUP', syscall: 'write' }

Runninng chmod -R 777 ./packages/git/src/electron-node/askpass/ does not solve it.

[kittaakos]

I have managed to get this running (again) on OS X with and without the clusters, and on Windows without the clusters. There is a caveat, it seems, named pipe servers cannot be started from a cluster worker on Windows.

Please note that on Windows, it is not yet possible to set up a named pipe server in a worker.

I need to find a solution for that.

[kittaakos]

It works with the patch. I have replaced the named pipes with a pure HTTP server. I need to squash the commits.

[marcdumais-work]

Which files should be attached to the CQ? original from vscode or our modified version?

The files are not just borrowed but modified too. I do not know if this matters.

From email discussions with Sharon, I now understand better. For this case, it's the original vscode files that need to be attached to the CQ.

Given that you are a committer on the project, the main concern for the Foundation is to confirm license compatibility of the files we are effectively forking. Even if it's know a project has a compatible license, a given file can legitimately contain license info that's different from the project it's in. Should we miss a case like that for a file we copy, it could have significant consequences. Hence the CQ for this case in interested in the upstream version of the files.

I do not know if this matters.

For the CQ, no. It does of course matters that we properly maintain files that we have forked. What that means may vary depending on each file's original license. But it seems generally assumed that committers and the project can take care of that aspect, without automatic preemptive oversight.

@kittaakos I have sent you an email that covers a bit more. Please ask if there's anything.

[kittaakos]

I have sent you an email that covers a bit more. Please ask if there's anything.

Thank you for the help, @marcdumais-work! I will update the PR.

[kittaakos]

@marcdumais-work, I have updated the PR to use the original MIT copyright from vscode. I also attached the borrowed resources to the CQ.

[marcdumais-work]

I also attached the borrowed resources to the CQ.

Thanks @kittaakos . Reminder: please click the Issues addresses, return CQ to IPTeam button, on the CQ.

[kittaakos]

please click the Issues addresses, return CQ to IPTeam button, on the CQ.

Thanks! 👍

[kittaakos]

@marcdumais-work, did I get this correctly, we have the green lights with the CQ, right? Thanks!

[marcdumais-work]

The CQ registered for this PR is now "license-certified": http://dev.eclipse.org/ipzilla/show_bug.cgi?id=18131. Check-in can proceed when otherwise ready - thanks for your patience @kittaakos

[kittaakos]

I have verified it once more on Windows, I am merging this PR.