revert plainHTTP defaulting to true

src/spec-configuration/containerCollectionsOCI.ts

@@ -226,7 +226,7 @@ async function getBasicAuthCredential(output: Log, registry: string, env: NodeJS
 
 	let userToken: string | undefined = undefined;
 	if (!!env['GITHUB_TOKEN'] && registry === 'ghcr.io') {
-		userToken = env['GITHUB_TOKEN'];
+		userToken = `USERNAME:${env['GITHUB_TOKEN']}`;
 	} else if (!!env['DEVCONTAINERS_OCI_AUTH']) {
 		// eg: DEVCONTAINERS_OCI_AUTH=domain1|user1|token1,domain2|user2|token2
 		const authContexts = env['DEVCONTAINERS_OCI_AUTH'].split(',');
@@ -268,7 +268,7 @@ async function generateScopeTokenCredential(output: Log, registry: string, ociRe
 	const authServer = registry === 'docker.io' ? 'auth.docker.io' : registry;
 	const registryServer = registry === 'docker.io' ? 'registry.docker.io' : registry;
 	const url = `https://${authServer}/token?scope=repository:${ociRepoPath}:${operationScopes}&service=${registryServer}`;
-	output.write(`url: ${url}`, LogLevel.Trace);
+	output.write(`Fetching scope token from: ${url}`, LogLevel.Trace);
 
 	const options = {
 		type: 'GET',
@@ -299,7 +299,6 @@ async function generateScopeTokenCredential(output: Log, registry: string, ociRe
 		output.write('Failed to parse registry auth token response', LogLevel.Error);
 		return undefined;
 	}
-
 	return scopeToken;
 }
 
@@ -308,7 +307,7 @@ async function generateScopeTokenCredential(output: Log, registry: string, ociRe
 // Will attempt to generate/fetch the correct authorization header for subsequent requests (Bearer or Basic)
 export async function fetchAuthorization(output: Log, registry: string, ociRepoPath: string, env: NodeJS.ProcessEnv, operationScopes: string): Promise<string | undefined> {
 	const basicAuthTokenBase64 = await getBasicAuthCredential(output, registry, env);
-	const scopeToken = generateScopeTokenCredential(output, registry, ociRepoPath, env, operationScopes, basicAuthTokenBase64);
+	const scopeToken = await generateScopeTokenCredential(output, registry, ociRepoPath, env, operationScopes, basicAuthTokenBase64);
 
 	if (scopeToken) {
 		output.write(`Using scope token for registry '${registry}'`, LogLevel.Trace);

src/spec-utils/httpRequest.ts

@@ -9,7 +9,7 @@ import ProxyAgent from 'proxy-agent';
 import * as url from 'url';
 import { Log, LogLevel } from './log';
 
-export function request(options: { type: string; url: string; headers: Record<string, string>; data?: Buffer }, output?: Log, plainHTTP = true) {
+export function request(options: { type: string; url: string; headers: Record<string, string>; data?: Buffer }, output?: Log, plainHTTP = false) {
 	return new Promise<Buffer>((resolve, reject) => {
 		const parsed = new url.URL(options.url);
 		const reqOptions: RequestOptions = {
@@ -42,7 +42,7 @@ export function request(options: { type: string; url: string; headers: Record<st
 }
 
 // HTTP HEAD request that returns status code.
-export function headRequest(options: { url: string; headers: Record<string, string> }, output?: Log, plainHTTP = true) {
+export function headRequest(options: { url: string; headers: Record<string, string> }, output?: Log, plainHTTP = false) {
 	return new Promise<number>((resolve, reject) => {
 		const parsed = new url.URL(options.url);
 		const reqOptions: RequestOptions = {
@@ -68,7 +68,7 @@ export function headRequest(options: { url: string; headers: Record<string, stri
 
 // Send HTTP Request.
 // Does not throw on status code, but rather always returns 'statusCode', 'resHeaders', and 'resBody'.
-export function requestResolveHeaders(options: { type: string; url: string; headers: Record<string, string>; data?: Buffer }, _output?: Log, plainHTTP = true) {
+export function requestResolveHeaders(options: { type: string; url: string; headers: Record<string, string>; data?: Buffer }, _output?: Log, plainHTTP = false) {
 	return new Promise<{ statusCode: number; resHeaders: Record<string, string>; resBody: Buffer }>((resolve, reject) => {
 		const parsed = new url.URL(options.url);
 		const reqOptions: RequestOptions = {