https-githubsup-com
diff --git a/‎extensions/github-authentication/src/github.ts‎
Lines changed: 12 additions & 29 deletions b/‎extensions/github-authentication/src/github.ts‎
Lines changed: 12 additions & 29 deletions
diff --git a/‎extensions/microsoft-authentication/src/AADHelper.ts‎
Lines changed: 69 additions & 68 deletions b/‎extensions/microsoft-authentication/src/AADHelper.ts‎
Lines changed: 69 additions & 68 deletions
diff --git a/‎extensions/microsoft-authentication/src/extension.ts‎
Lines changed: 2 additions & 3 deletions b/‎extensions/microsoft-authentication/src/extension.ts‎
Lines changed: 2 additions & 3 deletions
diff --git a/‎src/vs/editor/common/modes.ts‎
Lines changed: 1 addition & 1 deletion b/‎src/vs/editor/common/modes.ts‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎src/vs/vscode.proposed.d.ts‎
Lines changed: 38 additions & 3 deletions b/‎src/vs/vscode.proposed.d.ts‎
Lines changed: 38 additions & 3 deletions
@@ -34,7 +34,7 @@ function isOldSessionData(x: any): x is OldSessionData {
 }
 
 export class GitHubAuthenticationProvider {
-	private _sessions: vscode.AuthenticationSession[] = [];
+	private _sessions: vscode.AuthenticationSession2[] = [];
 	private _githubServer = new GitHubServer();
 
 	public async initialize(): Promise<void> {
@@ -51,7 +51,7 @@ export class GitHubAuthenticationProvider {
 
 	private pollForChange() {
 		setTimeout(async () => {
-			let storedSessions: vscode.AuthenticationSession[];
+			let storedSessions: vscode.AuthenticationSession2[];
 			try {
 				storedSessions = await this.readSessions();
 			} catch (e) {
@@ -94,12 +94,12 @@ export class GitHubAuthenticationProvider {
 		}, 1000 * 30);
 	}
 
-	private async readSessions(): Promise<vscode.AuthenticationSession[]> {
+	private async readSessions(): Promise<vscode.AuthenticationSession2[]> {
 		const storedSessions = await keychain.getToken();
 		if (storedSessions) {
 			try {
 				const sessionData: (SessionData | OldSessionData)[] = JSON.parse(storedSessions);
-				const sessionPromises = sessionData.map(async (session: SessionData | OldSessionData): Promise<vscode.AuthenticationSession> => {
+				const sessionPromises = sessionData.map(async (session: SessionData | OldSessionData): Promise<vscode.AuthenticationSession2> => {
 					const needsUserInfo = isOldSessionData(session) || !session.account;
 					let userInfo: { id: string, accountName: string };
 					if (needsUserInfo) {
@@ -117,7 +117,7 @@ export class GitHubAuthenticationProvider {
 								: session.account?.id ?? userInfo!.id
 						},
 						scopes: session.scopes,
-						getAccessToken: () => Promise.resolve(session.accessToken)
+						accessToken: session.accessToken
 					};
 				});
 
@@ -136,24 +136,14 @@ export class GitHubAuthenticationProvider {
 	}
 
 	private async storeSessions(): Promise<void> {
-		const sessionData: SessionData[] = await Promise.all(this._sessions.map(async session => {
-			const resolvedAccessToken = await session.getAccessToken();
-			return {
-				id: session.id,
-				account: session.account,
-				scopes: session.scopes,
-				accessToken: resolvedAccessToken
-			};
-		}));
-
-		await keychain.setToken(JSON.stringify(sessionData));
+		await keychain.setToken(JSON.stringify(this._sessions));
 	}
 
-	get sessions(): vscode.AuthenticationSession[] {
+	get sessions(): vscode.AuthenticationSession2[] {
 		return this._sessions;
 	}
 
-	public async login(scopes: string): Promise<vscode.AuthenticationSession> {
+	public async login(scopes: string): Promise<vscode.AuthenticationSession2> {
 		const token = scopes === 'vso' ? await this.loginAndInstallApp(scopes) : await this._githubServer.login(scopes);
 		const session = await this.tokenToSession(token, scopes.split(' '));
 		await this.setToken(session);
@@ -174,19 +164,12 @@ export class GitHubAuthenticationProvider {
 		this._githubServer.manuallyProvideToken();
 	}
 
-	private async tokenToSession(token: string, scopes: string[]): Promise<vscode.AuthenticationSession> {
+	private async tokenToSession(token: string, scopes: string[]): Promise<vscode.AuthenticationSession2> {
 		const userInfo = await this._githubServer.getUserInfo(token);
-		return {
-			id: uuid(),
-			getAccessToken: () => Promise.resolve(token),
-			account: {
-				displayName: userInfo.accountName,
-				id: userInfo.id
-			},
-			scopes: scopes
-		};
+		return new vscode.AuthenticationSession2(uuid(), token, { displayName: userInfo.accountName, id: userInfo.id }, scopes);
 	}
-	private async setToken(session: vscode.AuthenticationSession): Promise<void> {
+
+	private async setToken(session: vscode.AuthenticationSession2): Promise<void> {
 		const sessionIndex = this._sessions.findIndex(s => s.id === session.id);
 		if (sessionIndex > -1) {
 			this._sessions.splice(sessionIndex, 1, session);
 
@@ -204,13 +204,9 @@ export class AzureActiveDirectoryService {
 		}, 1000 * 30);
 	}
 
-	private convertToSession(token: IToken): vscode.AuthenticationSession {
-		return {
-			id: token.sessionId,
-			getAccessToken: () => this.resolveAccessToken(token),
-			account: token.account,
-			scopes: token.scope.split(' ')
-		};
+	private async convertToSession(token: IToken): Promise<vscode.AuthenticationSession2> {
+		const resolvedToken = await this.resolveAccessToken(token);
+		return new vscode.AuthenticationSession2(token.sessionId, resolvedToken, token.account, token.scope.split(' '));
 	}
 
 	private async resolveAccessToken(token: IToken): Promise<string> {
@@ -243,77 +239,81 @@ export class AzureActiveDirectoryService {
 		}
 	}
 
-	get sessions(): vscode.AuthenticationSession[] {
-		return this._tokens.map(token => this.convertToSession(token));
+	get sessions(): Promise<vscode.AuthenticationSession2[]> {
+		return Promise.all(this._tokens.map(token => this.convertToSession(token)));
 	}
 
-	public async login(scope: string): Promise<void> {
+	public async login(scope: string): Promise<vscode.AuthenticationSession2> {
 		Logger.info('Logging in...');
+		return new Promise(async (resolve, reject) => {
+			if (vscode.env.uiKind === vscode.UIKind.Web) {
+				resolve(this.loginWithoutLocalServer(scope));
+				return;
+			}
 
-		if (vscode.env.uiKind === vscode.UIKind.Web) {
-			await this.loginWithoutLocalServer(scope);
-			return;
-		}
+			const nonce = crypto.randomBytes(16).toString('base64');
+			const { server, redirectPromise, codePromise } = createServer(nonce);
 
-		const nonce = crypto.randomBytes(16).toString('base64');
-		const { server, redirectPromise, codePromise } = createServer(nonce);
+			let token: IToken | undefined;
+			try {
+				const port = await startServer(server);
+				vscode.env.openExternal(vscode.Uri.parse(`http://localhost:${port}/signin?nonce=${encodeURIComponent(nonce)}`));
+
+				const redirectReq = await redirectPromise;
+				if ('err' in redirectReq) {
+					const { err, res } = redirectReq;
+					res.writeHead(302, { Location: `/?error=${encodeURIComponent(err && err.message || 'Unknown error')}` });
+					res.end();
+					throw err;
+				}
 
-		let token: IToken | undefined;
-		try {
-			const port = await startServer(server);
-			vscode.env.openExternal(vscode.Uri.parse(`http://localhost:${port}/signin?nonce=${encodeURIComponent(nonce)}`));
-
-			const redirectReq = await redirectPromise;
-			if ('err' in redirectReq) {
-				const { err, res } = redirectReq;
-				res.writeHead(302, { Location: `/?error=${encodeURIComponent(err && err.message || 'Unknown error')}` });
-				res.end();
-				throw err;
-			}
+				const host = redirectReq.req.headers.host || '';
+				const updatedPortStr = (/^[^:]+:(\d+)$/.exec(Array.isArray(host) ? host[0] : host) || [])[1];
+				const updatedPort = updatedPortStr ? parseInt(updatedPortStr, 10) : port;
 
-			const host = redirectReq.req.headers.host || '';
-			const updatedPortStr = (/^[^:]+:(\d+)$/.exec(Array.isArray(host) ? host[0] : host) || [])[1];
-			const updatedPort = updatedPortStr ? parseInt(updatedPortStr, 10) : port;
+				const state = `${updatedPort},${encodeURIComponent(nonce)}`;
 
-			const state = `${updatedPort},${encodeURIComponent(nonce)}`;
+				const codeVerifier = toBase64UrlEncoding(crypto.randomBytes(32).toString('base64'));
+				const codeChallenge = toBase64UrlEncoding(crypto.createHash('sha256').update(codeVerifier).digest('base64'));
+				const loginUrl = `${loginEndpointUrl}${tenant}/oauth2/v2.0/authorize?response_type=code&response_mode=query&client_id=${encodeURIComponent(clientId)}&redirect_uri=${encodeURIComponent(redirectUrl)}&state=${state}&scope=${encodeURIComponent(scope)}&prompt=select_account&code_challenge_method=S256&code_challenge=${codeChallenge}`;
 
-			const codeVerifier = toBase64UrlEncoding(crypto.randomBytes(32).toString('base64'));
-			const codeChallenge = toBase64UrlEncoding(crypto.createHash('sha256').update(codeVerifier).digest('base64'));
-			const loginUrl = `${loginEndpointUrl}${tenant}/oauth2/v2.0/authorize?response_type=code&response_mode=query&client_id=${encodeURIComponent(clientId)}&redirect_uri=${encodeURIComponent(redirectUrl)}&state=${state}&scope=${encodeURIComponent(scope)}&prompt=select_account&code_challenge_method=S256&code_challenge=${codeChallenge}`;
+				await redirectReq.res.writeHead(302, { Location: loginUrl });
+				redirectReq.res.end();
 
-			await redirectReq.res.writeHead(302, { Location: loginUrl });
-			redirectReq.res.end();
+				const codeRes = await codePromise;
+				const res = codeRes.res;
 
-			const codeRes = await codePromise;
-			const res = codeRes.res;
+				try {
+					if ('err' in codeRes) {
+						throw codeRes.err;
+					}
+					token = await this.exchangeCodeForToken(codeRes.code, codeVerifier, scope);
+					this.setToken(token, scope);
+					Logger.info('Login successful');
+					res.writeHead(302, { Location: '/' });
+					const session = await this.convertToSession(token);
+					resolve(session);
+					res.end();
+				} catch (err) {
+					res.writeHead(302, { Location: `/?error=${encodeURIComponent(err && err.message || 'Unknown error')}` });
+					res.end();
+					reject(err.message);
+				}
+			} catch (e) {
+				Logger.error(e.message);
 
-			try {
-				if ('err' in codeRes) {
-					throw codeRes.err;
+				// If the error was about starting the server, try directly hitting the login endpoint instead
+				if (e.message === 'Error listening to server' || e.message === 'Closed' || e.message === 'Timeout waiting for port') {
+					await this.loginWithoutLocalServer(scope);
 				}
-				token = await this.exchangeCodeForToken(codeRes.code, codeVerifier, scope);
-				this.setToken(token, scope);
-				Logger.info('Login successful');
-				res.writeHead(302, { Location: '/' });
-				res.end();
-			} catch (err) {
-				res.writeHead(302, { Location: `/?error=${encodeURIComponent(err && err.message || 'Unknown error')}` });
-				res.end();
-				throw new Error(err.message);
-			}
-		} catch (e) {
-			Logger.error(e.message);
 
-			// If the error was about starting the server, try directly hitting the login endpoint instead
-			if (e.message === 'Error listening to server' || e.message === 'Closed' || e.message === 'Timeout waiting for port') {
-				await this.loginWithoutLocalServer(scope);
+				reject(e.message);
+			} finally {
+				setTimeout(() => {
+					server.close();
+				}, 5000);
 			}
-			throw new Error(e.message);
-		} finally {
-			setTimeout(() => {
-				server.close();
-			}, 5000);
-		}
+		});
 	}
 
 	private getCallbackEnvironment(callbackUri: vscode.Uri): string {
@@ -333,7 +333,7 @@ export class AzureActiveDirectoryService {
 		}
 	}
 
-	private async loginWithoutLocalServer(scope: string): Promise<IToken> {
+	private async loginWithoutLocalServer(scope: string): Promise<vscode.AuthenticationSession2> {
 		const callbackUri = await vscode.env.asExternalUri(vscode.Uri.parse(`${vscode.env.uriScheme}://vscode.microsoft-authentication`));
 		const nonce = crypto.randomBytes(16).toString('base64');
 		const port = (callbackUri.authority.match(/:([0-9]*)$/) || [])[1] || (callbackUri.scheme === 'https' ? 443 : 80);
@@ -348,7 +348,7 @@ export class AzureActiveDirectoryService {
 		});
 		vscode.env.openExternal(uri);
 
-		const timeoutPromise = new Promise((_: (value: IToken) => void, reject) => {
+		const timeoutPromise = new Promise((_: (value: vscode.AuthenticationSession2) => void, reject) => {
 			const wait = setTimeout(() => {
 				clearTimeout(wait);
 				reject('Login timed out.');
@@ -358,9 +358,9 @@ export class AzureActiveDirectoryService {
 		return Promise.race([this.handleCodeResponse(state, codeVerifier, scope), timeoutPromise]);
 	}
 
-	private async handleCodeResponse(state: string, codeVerifier: string, scope: string) {
+	private async handleCodeResponse(state: string, codeVerifier: string, scope: string): Promise<vscode.AuthenticationSession2> {
 		let uriEventListener: vscode.Disposable;
-		return new Promise((resolve: (value: IToken) => void, reject) => {
+		return new Promise((resolve: (value: vscode.AuthenticationSession2) => void, reject) => {
 			uriEventListener = this._uriHandler.event(async (uri: vscode.Uri) => {
 				try {
 					const query = parseQuery(uri);
@@ -374,7 +374,8 @@ export class AzureActiveDirectoryService {
 					const token = await this.exchangeCodeForToken(code, codeVerifier, scope);
 					this.setToken(token, scope);
 
-					resolve(token);
+					const session = await this.convertToSession(token);
+					resolve(session);
 				} catch (err) {
 					reject(err);
 				}
 
@@ -26,10 +26,9 @@ export async function activate(context: vscode.ExtensionContext) {
 		login: async (scopes: string[]) => {
 			try {
 				telemetryReporter.sendTelemetryEvent('login');
-				await loginService.login(scopes.sort().join(' '));
-				const session = loginService.sessions[loginService.sessions.length - 1];
+				const session = await loginService.login(scopes.sort().join(' '));
 				onDidChangeSessions.fire({ added: [session.id], removed: [], changed: [] });
-				return loginService.sessions[0]!;
+				return session;
 			} catch (e) {
 				telemetryReporter.sendTelemetryEvent('loginFailed');
 				throw e;
 
@@ -1411,7 +1411,7 @@ export interface RenameProvider {
  */
 export interface AuthenticationSession {
 	id: string;
-	getAccessToken(): Thenable<string>;
+	accessToken: string;
 	account: {
 		displayName: string;
 		id: string;
 
@@ -28,6 +28,41 @@ declare module 'vscode' {
 		scopes: string[];
 	}
 
+	export class AuthenticationSession2 {
+		/**
+		 * The identifier of the authentication session.
+		 */
+		readonly id: string;
+
+		/**
+		 * The access token.
+		 */
+		readonly accessToken: string;
+
+		/**
+		 * The account associated with the session.
+		 */
+		readonly account: {
+			/**
+			 * The human-readable name of the account.
+			 */
+			readonly displayName: string;
+
+			/**
+			 * The unique identifier of the account.
+			 */
+			readonly id: string;
+		};
+
+		/**
+		 * The permissions granted by the session's access token. Available scopes
+		 * are defined by the authentication provider.
+		 */
+		readonly scopes: string[];
+
+		constructor(id: string, accessToken: string, account: { displayName: string, id: string }, scopes: string[]);
+	}
+
 	/**
 	 * An [event](#Event) which fires when an [AuthenticationProvider](#AuthenticationProvider) is added or removed.
 	 */
@@ -112,12 +147,12 @@ declare module 'vscode' {
 		/**
 		 * Returns an array of current sessions.
 		 */
-		getSessions(): Thenable<ReadonlyArray<AuthenticationSession>>;
+		getSessions(): Thenable<ReadonlyArray<AuthenticationSession2>>;
 
 		/**
 		 * Prompts a user to login.
 		 */
-		login(scopes: string[]): Thenable<AuthenticationSession>;
+		login(scopes: string[]): Thenable<AuthenticationSession2>;
 
 		/**
 		 * Removes the session corresponding to session id.
@@ -170,7 +205,7 @@ declare module 'vscode' {
 		 * @returns A thenable that resolves to an authentication session if available, or undefined if there are no sessions and
 		 * `createIfNone` was not specified.
 		 */
-		export function getSession(providerId: string, scopes: string[], options: AuthenticationGetSessionOptions): Thenable<AuthenticationSession | undefined>;
+		export function getSession(providerId: string, scopes: string[], options: AuthenticationGetSessionOptions): Thenable<AuthenticationSession2 | undefined>;
 
 		/**
 		 * @deprecated