mirror of
https://github.com/cypress-io/cypress.git
synced 2026-01-05 05:59:49 -06:00
eab801ae3f
* chore(deps): Update eslint to 6.8.0 🌟 * fix missing dangling commas for linter * fix missing dangling commas for linter * more lint fixes * yarn lock Co-authored-by: WhiteSource Renovate <renovatebot@gmail.com> Co-authored-by: Jennifer Shehane <shehane.jennifer@gmail.com>
346 lines
9.3 KiB
JavaScript
346 lines
9.3 KiB
JavaScript
process.env.NODE_TLS_REJECT_UNAUTHORIZED = '0'
|
|
|
|
const { request, expect } = require('../spec_helper')
|
|
const DebugProxy = require('@cypress/debugging-proxy')
|
|
const https = require('https')
|
|
const net = require('net')
|
|
const network = require('@packages/network')
|
|
const Promise = require('bluebird')
|
|
const proxy = require('../helpers/proxy')
|
|
const httpServer = require('../helpers/http_server')
|
|
const httpsServer = require('../helpers/https_server')
|
|
|
|
describe('Proxy', () => {
|
|
beforeEach(function () {
|
|
return Promise.join(
|
|
httpServer.start(),
|
|
|
|
httpsServer.start(8443),
|
|
|
|
httpsServer.start(8444),
|
|
|
|
proxy.start(3333)
|
|
.then((proxy1) => {
|
|
this.proxy = proxy1
|
|
}),
|
|
)
|
|
})
|
|
|
|
afterEach(() => {
|
|
return Promise.join(
|
|
httpServer.stop(),
|
|
httpsServer.stop(),
|
|
proxy.stop(),
|
|
)
|
|
})
|
|
|
|
it('can request the googles', function () {
|
|
// give some padding to external
|
|
// network request
|
|
this.timeout(10000)
|
|
|
|
return Promise.all([
|
|
request({
|
|
strictSSL: false,
|
|
proxy: 'http://localhost:3333',
|
|
url: 'https://www.google.com',
|
|
}),
|
|
|
|
request({
|
|
strictSSL: false,
|
|
proxy: 'http://localhost:3333',
|
|
url: 'https://mail.google.com',
|
|
}),
|
|
|
|
request({
|
|
strictSSL: false,
|
|
proxy: 'http://localhost:3333',
|
|
url: 'https://google.com',
|
|
}),
|
|
])
|
|
})
|
|
|
|
it('can call the httpsDirectly without a proxy', () => {
|
|
return request({
|
|
strictSSL: false,
|
|
url: 'https://localhost:8443',
|
|
})
|
|
})
|
|
|
|
it('can boot the httpsServer', () => {
|
|
return request({
|
|
strictSSL: false,
|
|
url: 'https://localhost:8443/',
|
|
proxy: 'http://localhost:3333',
|
|
})
|
|
.then((html) => {
|
|
expect(html).to.include('https server')
|
|
})
|
|
})
|
|
|
|
it('yields the onRequest callback', () => {
|
|
return request({
|
|
strictSSL: false,
|
|
url: 'https://localhost:8443/replace',
|
|
proxy: 'http://localhost:3333',
|
|
})
|
|
.then((html) => {
|
|
expect(html).to.include('replaced content')
|
|
})
|
|
})
|
|
|
|
// this will fail due to dynamic cert
|
|
// generation when strict ssl is true
|
|
it('can pass directly through', () => {
|
|
return request({
|
|
strictSSL: false,
|
|
url: 'https://localhost:8444/replace',
|
|
proxy: 'http://localhost:3333',
|
|
})
|
|
.then((html) => {
|
|
expect(html).to.include('https server')
|
|
})
|
|
})
|
|
|
|
it('retries 5 times', function () {
|
|
this.sandbox.spy(net, 'connect')
|
|
|
|
return request({
|
|
strictSSL: false,
|
|
url: 'https://localhost:12344',
|
|
proxy: 'http://localhost:3333',
|
|
})
|
|
.then(() => {
|
|
throw new Error('should not reach')
|
|
}).catch(() => {
|
|
expect(net.connect).to.have.callCount(5)
|
|
})
|
|
})
|
|
|
|
it('closes outgoing connections when client disconnects', function () {
|
|
this.sandbox.spy(net, 'connect')
|
|
|
|
return request({
|
|
strictSSL: false,
|
|
url: 'https://localhost:8444/replace',
|
|
proxy: 'http://localhost:3333',
|
|
resolveWithFullResponse: true,
|
|
})
|
|
.then((res) => {
|
|
// ensure client has disconnected
|
|
expect(res.socket.destroyed).to.be.true
|
|
// ensure the outgoing socket created for this connection was destroyed
|
|
const socket = net.connect.getCalls()
|
|
.find((call) => {
|
|
return (call.args[0].port === '8444') && (call.args[0].host === 'localhost')
|
|
}).returnValue
|
|
|
|
expect(socket.destroyed).to.be.true
|
|
})
|
|
})
|
|
|
|
it('can boot the httpServer', () => {
|
|
return request({
|
|
strictSSL: false,
|
|
url: 'http://localhost:8080/',
|
|
proxy: 'http://localhost:3333',
|
|
})
|
|
|
|
.then((html) => {
|
|
expect(html).to.include('http server')
|
|
})
|
|
})
|
|
|
|
context('generating certificates', () => {
|
|
it('reuses existing certificates', function () {
|
|
return request({
|
|
strictSSL: false,
|
|
url: 'https://localhost:8443/',
|
|
proxy: 'http://localhost:3333',
|
|
})
|
|
.then(() => {
|
|
proxy.reset()
|
|
|
|
// force this to reject if its called
|
|
this.sandbox.stub(this.proxy, '_generateMissingCertificates').rejects(new Error('should not call'))
|
|
|
|
return request({
|
|
strictSSL: false,
|
|
url: 'https://localhost:8443/',
|
|
proxy: 'http://localhost:3333',
|
|
})
|
|
})
|
|
})
|
|
|
|
// https://github.com/cypress-io/cypress/issues/771
|
|
it('generates certs and can proxy requests for HTTPS requests to IPs', function () {
|
|
this.sandbox.spy(this.proxy, '_generateMissingCertificates')
|
|
this.sandbox.spy(this.proxy, '_getServerPortForIp')
|
|
|
|
return Promise.all([
|
|
httpsServer.start(8445),
|
|
this.proxy._ca.removeAll(),
|
|
])
|
|
.then(() => {
|
|
return request({
|
|
strictSSL: false,
|
|
url: 'https://127.0.0.1:8445/',
|
|
proxy: 'http://localhost:3333',
|
|
})
|
|
}).then(() => {
|
|
// this should not stand up its own https server
|
|
return request({
|
|
strictSSL: false,
|
|
url: 'https://localhost:8443/',
|
|
proxy: 'http://localhost:3333',
|
|
})
|
|
}).then(() => {
|
|
expect(this.proxy._ipServers['127.0.0.1']).to.be.an.instanceOf(https.Server)
|
|
expect(this.proxy._getServerPortForIp).to.be.calledWith('127.0.0.1').and.be.calledOnce
|
|
|
|
expect(this.proxy._generateMissingCertificates).to.be.calledTwice
|
|
})
|
|
})
|
|
})
|
|
|
|
context('closing', () => {
|
|
it('resets sslServers and can reopen', function () {
|
|
return request({
|
|
strictSSL: false,
|
|
url: 'https://localhost:8443/',
|
|
proxy: 'http://localhost:3333',
|
|
})
|
|
.then(() => {
|
|
return proxy.stop()
|
|
}).then(() => {
|
|
return proxy.start(3333)
|
|
}).then(() => {
|
|
// force this to reject if its called
|
|
this.sandbox.stub(this.proxy, '_generateMissingCertificates').rejects(new Error('should not call'))
|
|
|
|
return request({
|
|
strictSSL: false,
|
|
url: 'https://localhost:8443/',
|
|
proxy: 'http://localhost:3333',
|
|
})
|
|
})
|
|
})
|
|
})
|
|
|
|
context('with an upstream proxy', () => {
|
|
beforeEach(function () {
|
|
process.env.NO_PROXY = ''
|
|
process.env.HTTP_PROXY = (process.env.HTTPS_PROXY = 'http://localhost:9001')
|
|
|
|
this.upstream = new DebugProxy({
|
|
keepRequests: true,
|
|
})
|
|
|
|
return this.upstream.start(9001)
|
|
})
|
|
|
|
it('passes a request to an https server through the upstream', function () {
|
|
this.upstream._onConnect = function (domain, port) {
|
|
expect(domain).to.eq('localhost')
|
|
expect(port).to.eq('8444')
|
|
|
|
return true
|
|
}
|
|
|
|
return request({
|
|
strictSSL: false,
|
|
url: 'https://localhost:8444/',
|
|
proxy: 'http://localhost:3333',
|
|
}).then((res) => {
|
|
expect(res).to.contain('https server')
|
|
})
|
|
})
|
|
|
|
it('uses HTTP basic auth when provided', function () {
|
|
this.upstream.setAuth({
|
|
username: 'foo',
|
|
password: 'bar',
|
|
})
|
|
|
|
this.upstream._onConnect = function (domain, port) {
|
|
expect(domain).to.eq('localhost')
|
|
expect(port).to.eq('8444')
|
|
|
|
return true
|
|
}
|
|
|
|
process.env.HTTP_PROXY = (process.env.HTTPS_PROXY = 'http://foo:bar@localhost:9001')
|
|
|
|
return request({
|
|
strictSSL: false,
|
|
url: 'https://localhost:8444/',
|
|
proxy: 'http://localhost:3333',
|
|
}).then((res) => {
|
|
expect(res).to.contain('https server')
|
|
})
|
|
})
|
|
|
|
it('closes outgoing connections when client disconnects', function () {
|
|
this.sandbox.spy(net, 'connect')
|
|
|
|
return request({
|
|
strictSSL: false,
|
|
url: 'https://localhost:8444/replace',
|
|
proxy: 'http://localhost:3333',
|
|
resolveWithFullResponse: true,
|
|
forever: false,
|
|
})
|
|
.then((res) => {
|
|
// ensure client has disconnected
|
|
expect(res.socket.destroyed).to.be.true
|
|
|
|
// ensure the outgoing socket created for this connection was destroyed
|
|
const socket = net.connect.getCalls()
|
|
.find((call) => {
|
|
return (call.args[0].port === 9001) && (call.args[0].host === 'localhost')
|
|
}).returnValue
|
|
|
|
return new Promise((resolve) => {
|
|
return socket.on('close', () => {
|
|
expect(socket.destroyed).to.be.true
|
|
|
|
resolve()
|
|
})
|
|
})
|
|
})
|
|
})
|
|
|
|
// https://github.com/cypress-io/cypress/issues/4257
|
|
it('passes through to SNI when it is intercepted and not through proxy', function () {
|
|
const createSocket = this.sandbox.stub(network.connect, 'createRetryingSocket').callsArgWith(1, new Error('stub'))
|
|
const createProxyConn = this.sandbox.spy(network.agent.httpsAgent, 'createUpstreamProxyConnection')
|
|
|
|
return request({
|
|
strictSSL: false,
|
|
url: 'https://localhost:8443',
|
|
proxy: 'http://localhost:3333',
|
|
resolveWithFullResponse: true,
|
|
forever: false,
|
|
})
|
|
.then(() => {
|
|
throw new Error('should not succeed')
|
|
}).catch({ message: 'Error: Client network socket disconnected before secure TLS connection was established' }, () => {
|
|
expect(createProxyConn).to.not.be.called
|
|
|
|
expect(createSocket).to.be.calledWith({
|
|
port: this.proxy._sniPort,
|
|
host: 'localhost',
|
|
})
|
|
})
|
|
})
|
|
|
|
return afterEach(function () {
|
|
this.upstream.stop()
|
|
delete process.env.HTTP_PROXY
|
|
delete process.env.HTTPS_PROXY
|
|
|
|
delete process.env.NO_PROXY
|
|
})
|
|
})
|
|
})
|