Mm 16694 master validate urls (#1000)

* validate urls before deeplink or link click

* tests for isValidURL utility function

* review change - invert condition

* add validation for loaded files

bounds-info.json, app-state.json, config.json

* further validation and tweaks

certificate.json, permission.json

* add 2 more files for validation

* parse and validate deeplinks

- includes fix for windows deeplink when app is open

* disable auto-updator when in dev

* Squirrel is not used anymore

* fix validating allowedProtocols

* discard any args following a deeplink url

* tweaks

* update test

* support scheme’s with and without slashes

* stop after finding the first occurance of a deep link

* test updates

* updates to run tests successfully

* port updates to validation from 4.2

* url validation updates

changed validation package to better support internal domains and punycode domains

src/main/certificateStore.js

@@ -6,6 +6,8 @@
 import fs from 'fs';
 import url from 'url';
 
+import * as Validator from './Validator';
+
 function comparableCertificate(certificate) {
   return {
     data: certificate.data.toString(),
@@ -32,6 +34,10 @@ function CertificateStore(storeFile) {
   let storeStr;
   try {
     storeStr = fs.readFileSync(storeFile, 'utf-8');
+    storeStr = Validator.validateCertificateStore(storeStr);
+    if (!storeStr) {
+      throw new Error('Provided certificate store file does not validate, using defaults instead.');
+    }
   } catch (e) {
     storeStr = '{}';
   }