aspera-cli 4.0.0.pre1

data/lib/aspera/fasp/aoc.rb

@@ -0,0 +1,24 @@
+require 'aspera/fasp/node'
+require 'aspera/log'
+require 'aspera/on_cloud.rb'
+
+module Aspera
+  module Fasp
+    class Aoc < Node
+      def initialize(on_cloud_options)
+        @app=on_cloud_options[:app] || OnCloud::FILES_APP
+        @api_oncloud=OnCloud.new(on_cloud_options)
+        Log.log.warn("Under Development")
+        server_node_file = @api_oncloud.resolve_node_file(server_home_node_file,server_folder)
+        # force node as transfer agent
+        node_api=Fasp::Node.new(@api_oncloud.get_node_api(client_node_file[:node_info],OnCloud::SCOPE_NODE_USER))
+        super(node_api)
+        # additional node to node TS info
+        @add_ts={
+          'remote_access_key'   => server_node_file[:node_info]['access_key'],
+          'destination_root_id' => server_node_file[:file_id]
+        }
+      end
+    end
+  end
+end

data/lib/aspera/fasp/connect.rb

@@ -0,0 +1,99 @@
+require 'aspera/fasp/manager'
+require 'aspera/rest'
+require 'aspera/open_application'
+require 'securerandom'
+require 'tty-spinner'
+
+module Aspera
+  module Fasp
+    class Connect < Manager
+      MAX_CONNECT_START_RETRY=3
+      SLEEP_SEC_BETWEEN_RETRY=2
+      private_constant :MAX_CONNECT_START_RETRY,:SLEEP_SEC_BETWEEN_RETRY
+      def initialize
+        super
+        @connect_app_id=SecureRandom.uuid
+        # TODO: start here and create monitor
+      end
+
+      def start_transfer(transfer_spec,options=nil)
+        raise 'Using connect requires a graphical environment' if !OpenApplication.default_gui_mode.eql?(:graphical)
+        trynumber=0
+        begin
+          connect_url=Installation.instance.connect_uri
+          Log.log.debug("found: #{connect_url}")
+          @connect_api=Rest.new({base_url: "#{connect_url}/v5/connect",headers: {'Origin'=>Rest.user_agent}}) # could use v6 also now
+          cinfo=@connect_api.read('info/version')[:data]
+        rescue => e # Errno::ECONNREFUSED
+          raise StandardError,"Unable to start connect after #{trynumber} try" if trynumber >= MAX_CONNECT_START_RETRY
+          Log.log.warn("connect is not started. Retry ##{trynumber}, err=#{e}")
+          trynumber+=1
+          if !OpenApplication.uri_graphical('fasp://initialize')
+            OpenApplication.uri_graphical('https://downloads.asperasoft.com/connect2/')
+            raise StandardError,'Connect is not installed'
+          end
+          sleep SLEEP_SEC_BETWEEN_RETRY
+          retry
+        end
+        if transfer_spec['direction'] == 'send'
+          Log.log.warn("Connect requires upload selection using GUI, ignoring #{transfer_spec['paths']}".red)
+          transfer_spec.delete('paths')
+          resdata=@connect_api.create('windows/select-open-file-dialog/',{'title'=>'Select Files','suggestedName'=>'','allowMultipleSelection'=>true,'allowedFileTypes'=>'','aspera_connect_settings'=>{'app_id'=>@connect_app_id}})[:data]
+          transfer_spec['paths']=resdata['dataTransfer']['files'].map { |i| {'source'=>i['name']}}
+        end
+        @request_id=SecureRandom.uuid
+        # if there is a token, we ask connect client to use well known ssh private keys
+        # instead of asking password
+        transfer_spec['authentication']='token' if transfer_spec.has_key?('token')
+        connect_transfer_args={
+          'transfer_specs'=>[{
+          'transfer_spec'=>transfer_spec,
+          'aspera_connect_settings'=>{
+          'allow_dialogs'=>true,
+          'app_id'=>@connect_app_id,
+          'request_id'=>@request_id
+          }}]}
+        # asynchronous anyway
+        @connect_api.create('transfers/start',connect_transfer_args)
+      end
+
+      def wait_for_transfers_completion
+        connect_activity_args={'aspera_connect_settings'=>{'app_id'=>@connect_app_id}}
+        started=false
+        spinner=nil
+        loop do
+          result=@connect_api.create('transfers/activity',connect_activity_args)[:data]
+          if result['transfers']
+            trdata=result['transfers'].select{|i| i['aspera_connect_settings'] and i['aspera_connect_settings']['request_id'].eql?(@request_id)}.first
+            raise 'problem with connect, please kill it' unless trdata
+            # TODO: get session id
+            case trdata['status']
+            when 'completed'
+              notify_listeners('emulated',{Manager::LISTENER_SESSION_ID_B=>@connect_app_id,'Type'=>'DONE'})
+              break
+            when 'initiating'
+              if spinner.nil?
+                spinner = TTY::Spinner.new('[:spinner] :title', format: :classic)
+                spinner.start
+              end
+              spinner.update(title: trdata['status'])
+              spinner.spin
+            when 'running'
+              #puts "running: sessions:#{trdata['sessions'].length}, #{trdata['sessions'].map{|i| i['bytes_transferred']}.join(',')}"
+              if !started and trdata['bytes_expected'] != 0
+                notify_listeners('emulated',{Manager::LISTENER_SESSION_ID_B=>@connect_app_id,'Type'=>'NOTIFICATION','PreTransferBytes'=>trdata['bytes_expected']})
+                started=true
+              else
+                notify_listeners('emulated',{Manager::LISTENER_SESSION_ID_B=>@connect_app_id,'Type'=>'STATS','Bytescont'=>trdata['bytes_written']})
+              end
+            else
+              raise Fasp::Error.new("#{trdata['status']}: #{trdata['error_desc']}")
+            end
+          end
+          sleep 1
+        end
+        return [] #TODO
+      end # wait
+    end # Connect
+  end
+end

data/lib/aspera/fasp/error.rb

@@ -0,0 +1,21 @@
+require 'aspera/fasp/error_info'
+
+module Aspera
+  module Fasp
+    # error raised if transfer fails
+    class Error < StandardError
+      attr_reader :err_code
+      def initialize(message,err_code=nil)
+        super(message)
+        @err_code = err_code
+      end
+
+      def info
+        r=Fasp::ERROR_INFO[@err_code] || {r: false , c: 'UNKNOWN', m: 'unknown', a: 'unknown'}
+        return r.merge({i: @err_code})
+      end
+
+      def retryable?; info[:r];end
+    end
+  end
+end

data/lib/aspera/fasp/error_info.rb

@@ -0,0 +1,60 @@
+module Aspera
+  module Fasp
+    # from https://www.google.com/search?q=FASP+error+codes
+    # Note that the fact that an error is retryable is not internally defined by protocol, it's client responsibility
+    ERROR_INFO = {
+      # id    retryable mnemo                      message                                             additional info
+      1 =>  { r: false , c: 'FASP_PROTO',            m: 'Generic fasp(tm) protocol error',                a: 'fasp(tm) error'},
+      2 =>  { r: false , c: 'ASCP',                  m: 'Generic SCP error',                              a: 'ASCP error'},
+      3 =>  { r: false , c: 'AMBIGUOUS_TARGET',      m: 'Target incorrectly specified',                   a: 'Ambiguous target'},
+      4 =>  { r: false , c: 'NO_SUCH_FILE',          m: 'No such file or directory',                      a: 'No such file or directory'},
+      5 =>  { r: false , c: 'NO_PERMS',              m: 'Insufficient permission to read or write',       a: 'Insufficient permissions'},
+      6 =>  { r: false , c: 'NOT_DIR',               m: 'Target is not a directory',                      a: 'Target must be a directory'},
+      7 =>  { r: false , c: 'IS_DIR',                m: 'File is a directory - expected regular file',    a: 'Expected regular file'},
+      8 =>  { r: false , c: 'USAGE',                 m: 'Incorrect usage of scp command',                 a: 'Incorrect usage of Aspera scp command'},
+      9 =>  { r: false , c: 'LIC_DUP',               m: 'Duplicate license',                              a: 'Duplicate license'},
+      10 => { r: false , c: 'LIC_RATE_EXCEEDED',     m: 'Rate exceeds the cap imposed by license',        a: 'Rate exceeds cap imposed by license'},
+      11 => { r: false , c: 'INTERNAL_ERROR',        m: 'Internal error (unexpected error)',              a: 'Internal error'},
+      12 => { r: true  , c: 'TRANSFER_ERROR',        m: 'Error establishing control connection',          a: 'Error establishing SSH connection (check SSH port and firewall)'},
+      13 => { r: true  , c: 'TRANSFER_TIMEOUT',      m: 'Timeout establishing control connection',        a: 'Timeout establishing SSH connection (check SSH port and firewall)'},
+      14 => { r: true  , c: 'CONNECTION_ERROR',      m: 'Error establishing data connection',             a: 'Error establishing UDP connection (check UDP port and firewall)'},
+      15 => { r: true  , c: 'CONNECTION_TIMEOUT',    m: 'Timeout establishing data connection',           a: 'Timeout establishing UDP connection (check UDP port and firewall)'},
+      16 => { r: true  , c: 'CONNECTION_LOST',       m: 'Connection lost',                                a: 'Connection lost'},
+      17 => { r: true  , c: 'RCVR_SEND_ERROR',       m: 'Receiver fails to send feedback',                a: 'Network failure (receiver can\'t send feedback)'},
+      18 => { r: true  , c: 'RCVR_RECV_ERROR',       m: 'Receiver fails to receive data packets',         a: 'Network failure (receiver can\'t receive UDP data)'},
+      19 => { r: false , c: 'AUTH',                  m: 'Authentication failure',                         a: 'Authentication failure'},
+      20 => { r: false , c: 'NOTHING',               m: 'Nothing to transfer',                            a: 'Nothing to transfer'},
+      21 => { r: false , c: 'NOT_REGULAR',           m: 'Not a regular file (special file)',              a: 'Not a regular file'},
+      22 => { r: false , c: 'FILE_TABLE_OVR',        m: 'File table overflow',                            a: 'File table overflow'},
+      23 => { r: true  , c: 'TOO_MANY_FILES',        m: 'Too many files open',                            a: 'Too many files open'},
+      24 => { r: false , c: 'FILE_TOO_BIG',          m: 'File too big for file system',                   a: 'File too big for filesystem'},
+      25 => { r: false , c: 'NO_SPACE_LEFT',         m: 'No space left on disk',                          a: 'No space left on disk'},
+      26 => { r: false , c: 'READ_ONLY_FS',          m: 'Read only file system',                          a: 'Read only filesystem'},
+      27 => { r: false , c: 'SOME_FILE_ERRS',        m: 'Some individual files failed',                   a: 'One or more files failed'},
+      28 => { r: false , c: 'USER_CANCEL',           m: 'Cancelled by user',                              a: 'Cancelled by user'},
+      29 => { r: false , c: 'LIC_NOLIC',             m: 'License not found or unable to access',          a: 'Unable to access license info'},
+      30 => { r: false , c: 'LIC_EXPIRED',           m: 'License expired',                                a: 'License expired'},
+      31 => { r: false , c: 'SOCK_SETUP',            m: 'Unable to setup socket (create, bind, etc ...)', a: 'Unable to set up socket'},
+      32 => { r: true  , c: 'OUT_OF_MEMORY',         m: 'Out of memory, unable to allocate',              a: 'Out of memory'},
+      33 => { r: true  , c: 'THREAD_SPAWN',          m: 'Can\'t spawn thread',                            a: 'Unable to spawn thread'},
+      34 => { r: false , c: 'UNAUTHORIZED',          m: 'Unauthorized by external auth server',           a: 'Unauthorized'},
+      35 => { r: true  , c: 'DISK_READ',             m: 'Error reading source file from disk',            a: 'Disk read error'},
+      36 => { r: true  , c: 'DISK_WRITE',            m: 'Error writing to disk',                          a: 'Disk write error'},
+      37 => { r: true  , c: 'AUTHORIZATION',         m: 'Used interchangeably with ERR_UNAUTHORIZED',     a: 'Authorization failure'},
+      38 => { r: false , c: 'LIC_ILLEGAL',           m: 'Operation not permitted by license',             a: 'Operation not permitted by license'},
+      39 => { r: true  , c: 'PEER_ABORTED_SESSION',  m: 'Remote peer terminated session',                 a: 'Peer aborted session'},
+      40 => { r: true  , c: 'DATA_TRANSFER_TIMEOUT', m: 'Transfer stalled, timed out',                    a: 'Data transfer stalled, timed out'},
+      41 => { r: false , c: 'BAD_PATH',              m: 'Path violates docroot containment',              a: 'File location is outside \'docroot\' hierarchy'},
+      42 => { r: false , c: 'ALREADY_EXISTS',        m: 'File or directory already exists',               a: 'File or directory already exists'},
+      43 => { r: false , c: 'STAT_FAILS',            m: 'Cannot stat file',                               a: 'Cannot collect details about file or directory'},
+      44 => { r: true  , c: 'PMTU_BRTT_ERROR',       m: 'UDP session initiation fatal error',             a: 'UDP session initiation fatal error'},
+      45 => { r: true  , c: 'BWMEAS_ERROR',          m: 'Bandwidth measurement fatal error',              a: 'Bandwidth measurement fatal error'},
+      46 => { r: false , c: 'VLINK_ERROR',           m: 'Virtual link error',                             a: 'Virtual link error'},
+      47 => { r: false , c: 'CONNECTION_ERROR_HTTP', m: 'Error establishing HTTP connection',             a: 'Error establishing HTTP connection (check HTTP port and firewall)'},
+      48 => { r: false , c: 'FILE_ENCRYPTION_ERROR', m: 'File encryption error, e.g. corrupt file',       a: 'File encryption/decryption error, e.g. corrupt file'},
+      49 => { r: false , c: 'FILE_DECRYPTION_PASS',  m: 'File encryption/decryption error, e.g. corrupt file', a: 'File decryption error, bad passphrase'},
+      50 => { r: false , c: 'BAD_CONFIGURATION',     m: 'Aspera.conf contains invalid data and was rejected',  a: 'Invalid configuration'},
+      51 => { r: false , c: 'UNDEFINED',             m: 'Should never happen, report to Aspera',          a: 'Undefined error'},
+    }
+  end
+end

data/lib/aspera/fasp/http_gw.rb

@@ -0,0 +1,81 @@
+#!/bin/echo this is a ruby class:
+require 'aspera/fasp/manager'
+require 'aspera/log'
+require 'aspera/rest'
+
+# ref: https://api.ibm.com/explorer/catalog/aspera/product/ibm-aspera/api/http-gateway-api/doc/guides-toc
+module Aspera
+  module Fasp
+    # executes a local "ascp", connects mgt port, equivalent of "Fasp Manager"
+    class HttpGW < Manager
+      # start FASP transfer based on transfer spec (hash table)
+      # note that it is asynchronous
+      # HTTP download only supports file list
+      def start_transfer(transfer_spec,options={})
+        raise "GW URL must be set" unless !@gw_api.nil?
+        raise "option: must be hash (or nil)" unless options.is_a?(Hash)
+        raise "paths: must be Array" unless transfer_spec['paths'].is_a?(Array)
+        case transfer_spec['direction']
+        when 'send'
+          # this is a websocket
+          raise "error, not implemented"
+        when 'receive'
+          transfer_spec['zip_required']||=false
+          transfer_spec['authentication']||='token'
+          transfer_spec['source_root']||='/'
+          # is normally provided by application, like package name
+          if !transfer_spec.has_key?('download_name')
+            # by default it is the name of first file
+            dname=File.basename(transfer_spec['paths'].first['source'])
+            # we remove extension
+            dname=dname.gsub(/\.@gw_api.*$/,'')
+            # ands add indication of number of files if there is more than one
+            if transfer_spec['paths'].length > 1
+              dname=dname+" #{transfer_spec['paths'].length} Files"
+            end
+            transfer_spec['download_name']=dname
+          end
+          creation=@gw_api.create('download',{'transfer_spec'=>transfer_spec})[:data]
+          transfer_uuid=creation['url'].split('/').last
+          if transfer_spec['zip_required'] or transfer_spec['paths'].length > 1
+            # it is a zip file if zip is required or there is more than 1 file
+            file_dest=transfer_spec['download_name']+'.zip'
+          else
+            # it is a plain file if we don't require zip and there is only one file
+            file_dest=File.basename(transfer_spec['paths'].first['source'])
+          end
+          file_dest=File.join(transfer_spec['destination_root'],file_dest)
+          @gw_api.call({:operation=>'GET',:subpath=>"download/#{transfer_uuid}",:save_to_file=>file_dest})
+        else
+          raise "error"
+        end
+      end # start_transfer
+
+      # wait for completion of all jobs started
+      # @return list of :success or error message
+      def wait_for_transfers_completion
+        return [:success]
+      end
+
+      # terminates monitor thread
+      def shutdown
+      end
+
+      def url=(api_url)
+      end
+
+      private
+
+      def initialize(params)
+        raise "params must be Hash" unless params.is_a?(Hash)
+        params=params.symbolize_keys
+        raise "must have only one param: url" unless params.keys.eql?([:url])
+        super()
+        @gw_api=Rest.new({:base_url => params[:url]})
+        api_info = @gw_api.read('info')[:data]
+        Log.log.info("#{api_info}")
+      end
+
+    end # LocalHttp
+  end
+end

data/lib/aspera/fasp/installation.rb

@@ -0,0 +1,240 @@
+require 'singleton'
+require 'aspera/log'
+require 'aspera/open_application' # current_os_type
+
+require 'xmlsimple'
+require 'zlib'
+require 'base64'
+
+module Aspera
+  module Fasp
+    # Singleton that tells where to find ascp and other local resources (keys..) , using the "path(symb)" method.
+    # It is used by object : Fasp::Local to find necessary resources
+    # By default it takes the first Aspera product found specified in product_locations
+    # but the user can specify ascp location by calling:
+    # Installation.instance.use_ascp_from_product(product_name)
+    # or
+    # Installation.instance.ascp_path=ascp_path
+    class Installation
+      include Singleton
+      # currently used ascp executable
+      attr_accessor :ascp_path
+      # where key files are generated and used
+      attr_accessor :config_folder
+      # find ascp in named product (use value : FIRST_FOUND='FIRST' to just use first one)
+      # or select one from installed_products()
+      def use_ascp_from_product(product_name)
+        if product_name.eql?(FIRST_FOUND)
+          pl=installed_products.first
+          raise "no FASP installation found\nPlease check manual on how to install FASP." if pl.nil?
+        else
+          pl=installed_products.select{|i|i[:name].eql?(product_name)}.first
+          raise "no such product installed: #{product_name}" if pl.nil?
+        end
+        @ascp_path=pl[:ascp_path]
+        Log.log.debug("ascp_path=#{@ascp_path}")
+      end
+
+      # @return the list of installed products in format of product_locations
+      def installed_products
+        if @found_products.nil?
+          @found_products=product_locations.select do |pl|
+            next false unless Dir.exist?(pl[:app_root])
+            Log.log.debug("found #{pl[:app_root]}")
+            sub_bin = pl[:sub_bin] || BIN_SUBFOLDER
+            exec_ext = OpenApplication.current_os_type.eql?(:windows) ? '.exe' : ''
+            pl[:ascp_path]=File.join(pl[:app_root],sub_bin,'ascp')+exec_ext
+            next false unless File.exist?(pl[:ascp_path])
+            product_info_file="#{pl[:app_root]}/#{PRODUCT_INFO}"
+            if File.exist?(product_info_file)
+              res_s=XmlSimple.xml_in(File.read(product_info_file),{"ForceArray"=>false})
+              pl[:name]=res_s['name']
+              pl[:version]=res_s['version']
+            else
+              pl[:name]=pl[:expected]
+            end
+            true # select this version
+          end
+        end
+        return @found_products
+      end
+
+      FILES=[:ascp,:ascp4,:ssh_bypass_key_dsa,:ssh_bypass_key_rsa,:fallback_cert,:fallback_key]
+
+      # get path of one resource file of currently activated product
+      # keys and certs are generated locally... (they are well known values, arch. independant)
+      def path(k)
+        case k
+        when :ascp,:ascp4
+          use_ascp_from_product(FIRST_FOUND) if @ascp_path.nil?
+          file=@ascp_path
+          # note that there might be a .exe at the end
+          file=file.gsub('ascp','ascp4') if k.eql?(:ascp4)
+        when :ssh_bypass_key_dsa
+          file=File.join(@config_folder,'aspera_bypass_dsa.pem')
+          File.write(file,Zlib::Inflate.inflate(Base64.decode64(SSH_BYPASS_DSA))) unless File.exist?(file)
+          File.chmod(0400,file)
+        when :ssh_bypass_key_rsa
+          file=File.join(@config_folder,'aspera_bypass_rsa.pem')
+          File.write(file,Zlib::Inflate.inflate(Base64.decode64(SSH_BYPASS_RSA))) unless File.exist?(file)
+          File.chmod(0400,file)
+        when :fallback_cert,:fallback_key
+          file_key=File.join(@config_folder,'aspera_fallback_key.pem')
+          file_cert=File.join(@config_folder,'aspera_fallback_cert.pem')
+          if !File.exist?(file_key) or !File.exist?(file_cert)
+            require 'openssl'
+            # create new self signed certificate forhttp fallback
+            private_key = OpenSSL::PKey::RSA.new(1024)
+            cert = OpenSSL::X509::Certificate.new
+            cert.subject = cert.issuer = OpenSSL::X509::Name.parse("/C=US/ST=California/L=Emeryville/O=Aspera Inc./OU=Corporate/CN=Aspera Inc./emailAddress=info@asperasoft.com")
+            cert.not_before = Time.now
+            cert.not_after = Time.now + 365 * 24 * 60 * 60
+            cert.public_key = private_key.public_key
+            cert.serial = 0x0
+            cert.version = 2
+            cert.sign(private_key, OpenSSL::Digest::SHA1.new)
+            File.write(file_key,private_key.to_pem)
+            File.write(file_cert,cert.to_pem)
+            File.chmod(0400,file_key)
+            File.chmod(0400,file_cert)
+          end
+          file = k.eql?(:fallback_cert) ? file_cert : file_key
+        else
+          raise "INTERNAL ERROR: #{k}"
+        end
+        raise "no such file: #{file}" unless File.exist?(file)
+        return file
+      end
+
+      # @returns the file path of local connect where API's URI can be read
+      def connect_uri
+        connect=get_product_folders('Aspera Connect')
+        folder=File.join(connect[:run_root],VARRUN_SUBFOLDER)
+        ['','s'].each do |ext|
+          uri_file=File.join(folder,"http#{ext}.uri")
+          Log.log.debug("checking connect port file: #{uri_file}")
+          if File.exist?(uri_file)
+            return File.open(uri_file){|f|f.gets}.strip
+          end
+        end
+        raise "no connect uri file found in #{folder}"
+      end
+
+      # @ return path to configuration file of aspera CLI
+      def cli_conf_file
+        connect=get_product_folders('Aspera CLI')
+        return File.join(connect[:app_root],BIN_SUBFOLDER,'.aspera_cli_conf')
+      end
+
+      # add Aspera private keys for web access, token based authorization
+      def bypass_keys
+        return [ "%08x-%04x-%04x-%04x-%04x%08x" % "t1(\xBF;\xF3E\xB5\xAB\x14F\x02\xC6\x7F)P".unpack("NnnnnN"),
+          Installation.instance.path(:ssh_bypass_key_dsa),
+          Installation.instance.path(:ssh_bypass_key_rsa) ]
+      end
+
+      # DEPRECATED ZONE
+
+      def activated;Log.log.warn("deprecated, use ascp_path accessor");nil;end
+
+      def activated=(product_name);Log.log.warn("deprecated, use method use_ascp_from_product");use_ascp_from_product(product_name);end
+
+      def paths;Log.log.warn("deprecated, no replacement");raise "deprecated";end
+
+      def paths=(res_paths)
+        raise "must be a hash" unless res_paths.is_a?(Hash)
+        raise "must have :ascp key" unless res_paths.has_key?(:ascp)
+        Log.log.warn("deprecated, use method: ascp_path=")
+        @ascp_path=res_paths[:ascp]
+      end
+
+      private
+
+      BIN_SUBFOLDER='bin'
+      ETC_SUBFOLDER='etc'
+      VARRUN_SUBFOLDER=File.join('var','run')
+      # product information manifest: XML (part of aspera product)
+      PRODUCT_INFO='product-info.mf'
+      # policy for product selection
+      FIRST_FOUND='FIRST'
+
+      private_constant :BIN_SUBFOLDER,:ETC_SUBFOLDER,:VARRUN_SUBFOLDER,:PRODUCT_INFO
+
+      # get some specific folder from specific applications: Connect or CLI
+      def get_product_folders(name)
+        found=installed_products.select{|i|i[:expected].eql?(name) or i[:name].eql?(name)}
+        raise "Product: #{name} not found, please install." if found.empty?
+        return found.first
+      end
+
+      def initialize
+        @ascp_path=nil
+        @config_folder='.'
+        @found_products=nil
+      end
+
+      # returns product folders depending on OS
+      # fields
+      # :expected  M app name is taken from the manifest if present, else defaults to this value
+      # :app_root  M main forlder for the application
+      # :log_root  O location of log files (Linux uses syslog)
+      # :run_root  O only for Connect Client, location of http port file
+      # :sub_bin   O subfolder with executables, default : bin
+      def product_locations
+        case OpenApplication.current_os_type
+        when :windows; return [{
+            :expected =>'Aspera Connect',
+            :app_root =>File.join(ENV['LOCALAPPDATA'],'Programs','Aspera','Aspera Connect'),
+            :log_root =>File.join(ENV['LOCALAPPDATA'],'Aspera','Aspera Connect','var','log'),
+            :run_root =>File.join(ENV['LOCALAPPDATA'],'Aspera','Aspera Connect')
+            },{
+            :expected =>'Aspera CLI',
+            :app_root =>File.join('C:','Program Files','Aspera','cli'),
+            :log_root =>File.join('C:','Program Files','Aspera','cli','var','log'),
+            },{
+            :expected =>'Enterprise Server',
+            :app_root =>File.join('C:','Program Files','Aspera','Enterprise Server'),
+            :log_root =>File.join('C:','Program Files','Aspera','Enterprise Server','var','log'),
+            }]
+        when :mac; return [{
+            :expected =>'Aspera Connect',
+            :app_root =>File.join(Dir.home,'Applications','Aspera Connect.app'),
+            :log_root =>File.join(Dir.home,'Library','Logs','Aspera_Connect'),
+            :run_root =>File.join(Dir.home,'Library','Application Support','Aspera','Aspera Connect'),
+            :sub_bin  =>File.join('Contents','Resources'),
+            },{
+            :expected =>'Aspera CLI',
+            :app_root =>File.join(Dir.home,'Applications','Aspera CLI'),
+            :log_root =>File.join(Dir.home,'Library','Logs','Aspera')
+            },{
+            :expected =>'Enterprise Server',
+            :app_root =>File.join('','Library','Aspera'),
+            :log_root =>File.join(Dir.home,'Library','Logs','Aspera'),
+            },{
+            :expected =>'Aspera Drive',
+            :app_root =>File.join('','Applications','Aspera Drive.app'),
+            :log_root =>File.join(Dir.home,'Library','Logs','Aspera_Drive'),
+            :sub_bin  =>File.join('Contents','Resources'),
+            }]
+        else; return [{  # other: Linux and unix family
+            :expected =>'Aspera Connect',
+            :app_root =>File.join(Dir.home,'.aspera','connect'),
+            :run_root =>File.join(Dir.home,'.aspera','connect')
+            },{
+            :expected =>'Aspera CLI',
+            :app_root =>File.join(Dir.home,'.aspera','cli'),
+            },{
+            :expected =>'Enterprise Server',
+            :app_root =>File.join('','opt','aspera'),
+            }]
+        end
+      end
+
+      # not pass protected
+      SSH_BYPASS_DSA='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'
+      # pass protected (but not fips compliant)
+      SSH_BYPASS_RSA='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'
+      private_constant :SSH_BYPASS_DSA,:SSH_BYPASS_RSA
+    end # Installation
+  end
+end