[Cookie Compliance] Stabilize the pipeline (#8256)

* Revert "Revert "[Cookie Compliance] Revert revert and fix the functional test (#8236)""

This reverts commit 7e70a21.

* Expire GA's cookie in one year

* Revert "Expire GA's cookie in one year"

This reverts commit ddf978f.

Expire GA's cookie in another PR

Author: zhhyu

src/NuGetGallery.Core/Cookies/CookieComplianceService.cs

@@ -0,0 +1,20 @@
+// Copyright (c) .NET Foundation. All rights reserved.
+// Licensed under the Apache License, Version 2.0. See License.txt in the project root for license information.
+
+using System;
+using Microsoft.Extensions.Logging;
+
+namespace NuGetGallery.Cookies
+{
+    public static class CookieComplianceService
+    {
+        public static ICookieComplianceService Instance;
+        public static ILogger Logger;
+
+        public static void Initialize(ICookieComplianceService cookieComplianceService, ILogger logger)
+        {
+            Instance = cookieComplianceService ?? throw new ArgumentNullException(nameof(cookieComplianceService));
+            Logger = logger ?? throw new ArgumentNullException(nameof(logger));
+        }
+    }
+}

src/NuGetGallery.Core/Cookies/CookieComplianceServiceBase.cs

@@ -0,0 +1,105 @@
+// Copyright (c) .NET Foundation. All rights reserved.
+// Licensed under the Apache License, Version 2.0. See License.txt in the project root for license information.
+
+using System;
+using System.Web;
+using System.Linq;
+using System.Collections.Generic;
+
+namespace NuGetGallery.Cookies
+{
+    public class CookieExpirationService : ICookieExpirationService
+    {
+        private static readonly DateTime CookieExpirationTime = new DateTime(2010, 1, 1);
+
+        // Google Analytics cookies
+        private static readonly IReadOnlyList<string> GoogleAnalyticsCookies = new[]
+        {
+            "_ga",
+            "_gid",
+            "_gat",
+        };
+
+        // Application Insights cookies
+        private static readonly IReadOnlyList<string> ApplicationInsightsCookies = new[]
+        {
+            "ai_user",
+            "ai_session",
+        };
+
+        private readonly string _domain;
+        private readonly string _rootDomain;
+
+        public CookieExpirationService(string domain)
+        {
+            if (string.IsNullOrEmpty(domain))
+            {
+                throw new ArgumentException(CoreStrings.ArgumentCannotBeNullOrEmpty, nameof(domain));
+            }
+
+            _domain = domain;
+            _rootDomain = GetRootDomain(_domain);
+        }
+
+        public void ExpireAnalyticsCookies(HttpContextBase httpContext)
+        {
+            if (httpContext == null)
+            {
+                throw new ArgumentNullException(nameof(httpContext));
+            }
+
+            GoogleAnalyticsCookies.ToList().ForEach(cookieName => ExpireCookieByName(httpContext, cookieName, _rootDomain));
+            ApplicationInsightsCookies.ToList().ForEach(cookieName => ExpireCookieByName(httpContext, cookieName));
+        }
+
+        public void ExpireSocialMediaCookies(HttpContextBase httpContext) { }
+        public void ExpireAdvertisingCookies(HttpContextBase httpContext) { }
+
+        public void ExpireCookieByName(HttpContextBase httpContext, string cookieName, string domain = null)
+        {
+            if (httpContext == null)
+            {
+                throw new ArgumentNullException(nameof(httpContext));
+            }
+
+            if (string.IsNullOrEmpty(cookieName))
+            {
+                throw new ArgumentException(CoreStrings.ArgumentCannotBeNullOrEmpty, nameof(cookieName));
+            }
+
+            var request = httpContext.Request;
+            var response = httpContext.Response;
+            if (request == null || response == null || request.Cookies == null || response.Cookies == null)
+            {
+                return;
+            }
+
+            if (request.Cookies[cookieName] != null)
+            {
+                response.Cookies[cookieName].Expires = CookieExpirationTime;
+
+                if (domain != null)
+                {
+                    response.Cookies[cookieName].Domain = domain;
+                }
+            }
+        }
+
+        private string GetRootDomain(string domain)
+        {
+            var index1 = domain.LastIndexOf('.');
+            if (index1 < 0)
+            {
+                return domain;
+            }
+
+            var index2 = domain.LastIndexOf('.', index1 - 1);
+            if (index2 < 0)
+            {
+                return domain;
+            }
+
+            return domain.Substring(index2 + 1);
+        }
+    }
+}

src/NuGetGallery.Core/Cookies/CookieConsentMessage.cs

@@ -1,8 +1,8 @@
 // Copyright (c) .NET Foundation. All rights reserved.
 // Licensed under the Apache License, Version 2.0. See License.txt in the project root for license information.
 
-using System.Collections.Generic;
 using System.Web;
+using System.Threading.Tasks;
 
 namespace NuGetGallery.Cookies
 {
@@ -12,40 +12,21 @@ namespace NuGetGallery.Cookies
     public interface ICookieComplianceService
     {
         /// <summary>
-        /// Determine if consent is still needed for writing non-essential cookies.
+        /// Determine whether it's allowed to write analytics cookies.
         /// </summary>
-        /// <returns>True if consent is needed, false if consent is already provided or not required.</returns>
-        bool NeedsConsentForNonEssentialCookies(HttpRequestBase request);
+        /// <returns>True if it's allowed.</returns>
+        Task<bool> CanWriteAnalyticsCookiesAsync(HttpRequestBase request);
 
         /// <summary>
-        /// Determine if non-essential cookies can be written.
+        /// Determine whether it's allowed to write social media cookies.
         /// </summary>
-        /// <returns>True if non-essential cookies can be written, false otherwise.</returns>
-        bool CanWriteNonEssentialCookies(HttpRequestBase request);
+        /// <returns>True if it's allowed</returns>
+        Task<bool> CanWriteSocialMediaCookiesAsync(HttpRequestBase request);
 
         /// <summary>
-        /// Get the cookie consent banner message and resources. This API is an alternative to the default
-        /// rendering APIs below and can be used to customize the UI. Note that the messaging must remain intact.
+        /// Determine whether it's allowed to write advertising cookies.
         /// </summary>
-        CookieConsentMessage GetConsentMessage(HttpRequestBase request, string locale = null);
-
-        #region Default CookieConsent rendering
-
-        /// <summary>
-        /// Get the default HTML markup for the cookie consent banner.
-        /// </summary>
-        string GetConsentMarkup(HttpRequestBase request, string locale = null);
-
-        /// <summary>
-        /// Get the default CSS links for the cookie consent banner.
-        /// </summary>
-        IEnumerable<string> GetConsentStylesheets(HttpRequestBase request, string locale = null);
-
-        /// <summary>
-        /// Get the default Javascript links for the cookie consent banner.
-        /// </summary>
-        IEnumerable<string> GetConsentScripts(HttpRequestBase request, string locale = null);
-
-        #endregion
+        /// <returns>True if it's allowed.</returns>
+        Task<bool> CanWriteAdvertisingCookiesAsync(HttpRequestBase request);
     }
-}
+}

src/NuGetGallery.Core/Cookies/CookieExpirationService.cs

@@ -0,0 +1,31 @@
+// Copyright (c) .NET Foundation. All rights reserved.
+// Licensed under the Apache License, Version 2.0. See License.txt in the project root for license information.
+
+using System.Web;
+
+namespace NuGetGallery.Cookies
+{
+    /// <summary>
+    /// Cookie expiration service, used to expire cookies.
+    /// </summary>
+    public interface ICookieExpirationService
+    {
+        /// <summary>
+        /// The function is used to expire analytics cookies.
+        /// </summary>
+        /// <param name="httpContext">The httpContext.</param>
+        void ExpireAnalyticsCookies(HttpContextBase httpContext);
+
+        /// <summary>
+        /// The function is used to expire social media cookies.
+        /// </summary>
+        /// <param name="httpContext">The httpContext.</param>
+        void ExpireSocialMediaCookies(HttpContextBase httpContext);
+
+        /// <summary>
+        /// The function is used to expire advertising cookies.
+        /// </summary>
+        /// <param name="httpContext">The httpContext.</param>
+        void ExpireAdvertisingCookies(HttpContextBase httpContext);
+    }
+}

src/NuGetGallery.Core/Cookies/ICookieComplianceService.cs

@@ -1,32 +1,20 @@
 // Copyright (c) .NET Foundation. All rights reserved.
 // Licensed under the Apache License, Version 2.0. See License.txt in the project root for license information.
 
-using System.Collections.Generic;
 using System.Web;
+using System.Threading.Tasks;
 
 namespace NuGetGallery.Cookies
 {
     /// <summary>
     /// Default, no-op instance of the cookie compliance service, used when no shim is registered.
     /// </summary>
-    public class NullCookieComplianceService: CookieComplianceServiceBase
+    public class NullCookieComplianceService : ICookieComplianceService
     {
-        private static readonly string[] EmptyStringArray = new string[0];
+        public Task<bool> CanWriteAnalyticsCookiesAsync(HttpRequestBase request) => Task.FromResult(false);
 
-        // Consent is not necessary and cookies can be written.
+        public Task<bool> CanWriteSocialMediaCookiesAsync(HttpRequestBase request) => Task.FromResult(false);
 
-        public override bool NeedsConsentForNonEssentialCookies(HttpRequestBase request) => false;
-
-        public override bool CanWriteNonEssentialCookies(HttpRequestBase request) => true;
-
-        // No markdown or scripts will be included.
-
-        public override CookieConsentMessage GetConsentMessage(HttpRequestBase request, string locale = null) => null;
-
-        public override string GetConsentMarkup(HttpRequestBase request, string locale = null) => string.Empty;
-
-        public override IEnumerable<string> GetConsentScripts(HttpRequestBase request, string locale = null) => EmptyStringArray;
-
-        public override IEnumerable<string> GetConsentStylesheets(HttpRequestBase request, string locale = null) => EmptyStringArray;
+        public Task<bool> CanWriteAdvertisingCookiesAsync(HttpRequestBase request) => Task.FromResult(false);
     }
-}
+}

src/NuGetGallery.Core/Cookies/ICookieExpirationService.cs

@@ -107,9 +107,10 @@
     <Compile Include="Authentication\CredentialTypeInfo.cs" />
     <Compile Include="Authentication\MicrosoftClaims.cs" />
     <Compile Include="Certificates\CertificateFile.cs" />
-    <Compile Include="Cookies\CookieComplianceServiceBase.cs" />
-    <Compile Include="Cookies\CookieConsentMessage.cs" />
+    <Compile Include="Cookies\CookieComplianceService.cs" />
+    <Compile Include="Cookies\CookieExpirationService.cs" />
     <Compile Include="Cookies\ICookieComplianceService.cs" />
+    <Compile Include="Cookies\ICookieExpirationService.cs" />
     <Compile Include="Cookies\NullCookieComplianceService.cs" />
     <Compile Include="CoreConstants.cs" />
     <Compile Include="CredentialTypes.cs" />

src/NuGetGallery.Core/Cookies/NullCookieComplianceService.cs

@@ -31,4 +31,4 @@
 // The build will automatically inject the following attributes:
 // AssemblyVersion, AssemblyFileVersion, AssemblyInformationalVersion, AssemblyMetadata (for Branch, CommitId, and BuildDateUtc)
 
-[assembly: AssemblyMetadata("RepositoryUrl", "https://www.github.com/NuGet/NuGetGallery")]
+[assembly: AssemblyMetadata("RepositoryUrl", "https://www.github.com/NuGet/NuGetGallery")]

src/NuGetGallery.Core/NuGetGallery.Core.csproj

@@ -46,6 +46,11 @@ public static class ServicesConstants
 
         public const string ApiKeyHeaderName = "X-NuGet-ApiKey";
 
+        /// <summary>
+        /// Parameter for passing the cookie compliance permission.
+        /// </summary>
+        public const string CookieComplianceCanWriteAnalyticsCookies = "CanWriteAnalyticsCookies";
+
         public static class ContentNames
         {
             public static readonly string LoginDiscontinuationConfiguration = "Login-Discontinuation-Configuration";