mirror/cypress
1
0
Fork 0
mirror of https://github.com/cypress-io/cypress.git synced 2025-12-30 11:09:49 -06:00
Code Issues Packages Projects Releases Wiki Activity
Files
f7e684174cbf738e90e0c393a145dca214d3bfae
cypress/packages/server/lib/cloud/auth.ts
Bill Glesias f7e684174c chore: refactor server files to TypeScript (#32838) 
* convert file_server to TypeScript

* chore: convert random to TypeScript

* convert a handful of files to TypeScript
2025-10-31 12:39:02 -04:00

235 lines
5.7 KiB
TypeScript
Raw Blame History

const _ = require('lodash')
const debug = require('debug')('cypress:server:cloud:auth')
const express = require('express')
const os = require('os')
const pkg = require('@packages/root')
const Promise = require('bluebird')
const url = require('url')
// tslint:disable-next-line no-implicit-dependencies - electron dep needs to be defined
const { shell } = require('electron')
const machineId = require('./machine_id')
import { id as randomId } from '../util/random'
const user = require('./user')
let app
let authCallback
let authState
let openExternalAttempted = false
let authRedirectReached = false
let server
const buildLoginRedirectUrl = (server) => {
const { port } = server.address()
return `http://127.0.0.1:${port}/redirect-to-auth`
}
const buildFullLoginUrl = (baseLoginUrl, server, utmSource, utmMedium, utmContent) => {
const { port } = server.address()
if (!authState) {
authState = randomId(32)
}
const authUrl = url.parse(baseLoginUrl)
return machineId.machineId()
.then((id) => {
authUrl.query = {
port,
state: authState,
machineId: id,
cypressVersion: pkg.version,
platform: os.platform(),
}
if (utmMedium) {
authUrl.query = {
utm_source: utmSource,
utm_medium: utmMedium,
utm_campaign: 'Log In',
utm_content: utmContent,
...authUrl.query,
}
}
return authUrl.format()
})
}
const getOriginFromUrl = (originalUrl) => {
const parsedUrl = url.parse(originalUrl)
return url.format(_.pick(parsedUrl, ['protocol', 'slashes', 'hostname', 'port']))
}
/**
* @returns the currently running auth server instance, launches one if there is not one
*/
const launchServer = (baseLoginUrl, sendMessage, utmSource, utmMedium, utmContent) => {
if (!server) {
// launch an express server to listen for the auth callback from Cypress Cloud
const origin = getOriginFromUrl(baseLoginUrl)
debug('Launching auth server with origin', origin)
app = express()
app.get('/redirect-to-auth', (req, res) => {
authRedirectReached = true
buildFullLoginUrl(baseLoginUrl, server, utmSource, utmMedium, utmContent)
.then((fullLoginUrl) => {
debug('Received GET to /redirect-to-auth, redirecting: %o', { fullLoginUrl })
res.redirect(303, fullLoginUrl)
sendMessage('AUTH_BROWSER_LAUNCHED')
})
})
app.get('/auth', (req, res) => {
debug('Received GET to /auth with query params %o', req.query)
const redirectToStatus = (status) => {
res.redirect(`${baseLoginUrl}?status=${status}`)
}
/**
* Cypress Cloud can redirect to us with an error; or, if Electron's shell.openExternal
* is bugging out, `authCallback` can be undefined and reaching this point makes no sense.
* @see https://github.com/cypress-io/cypress/pull/5243
*/
if (_.get(req.query, 'status') === 'error' || !authCallback) {
if (authCallback) {
authCallback(new Error('There was an error authenticating to Cypress Cloud.'))
}
return redirectToStatus('error')
}
const { state, name, email, access_token } = req.query
if (state === authState && access_token) {
const userObj = {
name,
email,
authToken: access_token,
}
return user.set(userObj)
.then(() => {
authCallback(undefined, userObj)
redirectToStatus('success')
})
.catch((err) => {
authCallback(err)
redirectToStatus('error')
})
}
redirectToStatus('error')
})
return new Promise.fromCallback((cb) => {
server = app.listen(0, '127.0.0.1', cb)
})
}
return Promise.resolve()
}
const stopServer = () => {
debug('Closing auth server')
if (server) {
server.close()
server = undefined
}
app = undefined
authState = undefined
authCallback = undefined
openExternalAttempted = false
authRedirectReached = false
}
const launchNativeAuth = Promise.method((loginUrl, sendMessage) => {
const warnCouldNotLaunch = () => {
if (openExternalAttempted && !authRedirectReached) {
sendMessage('AUTH_COULD_NOT_LAUNCH_BROWSER', loginUrl)
}
}
warnCouldNotLaunch()
setTimeout(warnCouldNotLaunch, 4000)
openExternalAttempted = true
return shell.openExternal(loginUrl)
.catch((err) => {
debug('Error launching native auth: %o', { err })
warnCouldNotLaunch()
})
})
/**
* Grouping internal APIs under separate export to allow for stubbing
* in public API tests.
*/
const _internal = {
buildLoginRedirectUrl,
buildFullLoginUrl,
getOriginFromUrl,
launchServer,
stopServer,
launchNativeAuth,
}
/**
* @returns a promise that is resolved with a user when auth is complete or rejected when it fails
*/
const start = (onMessage, utmSource, utmMedium, utmContent) => {
function sendMessage (name, message) {
onMessage({
name,
message,
browserOpened: authRedirectReached,
})
}
authRedirectReached = false
return user.getBaseLoginUrl()
.then((baseLoginUrl) => {
return _internal.launchServer(baseLoginUrl, sendMessage, utmSource, utmMedium, utmContent)
})
.then(() => {
return _internal.buildLoginRedirectUrl(server)
})
.then((loginRedirectUrl) => {
debug('Trying to open native auth to URL %s', loginRedirectUrl)
return _internal.launchNativeAuth(loginRedirectUrl, sendMessage)
.then(() => {
debug('successfully opened native auth url')
})
})
.then(() => {
return Promise.fromCallback((cb) => {
authCallback = cb
})
})
.catch((err: Error) => {
sendMessage('AUTH_ERROR_DURING_LOGIN', err.message)
})
.finally(() => {
_internal.stopServer()
})
}
export = {
start,
stopServer,
_internal,
}
Reference in New Issue View Git Blame Copy Permalink