adding a patched object to bypass auth

Author: laura-codess

packages/amazonq/test/e2e_new/amazonq/utils/authUtils.ts

@@ -2,11 +2,9 @@
  * Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved.
  * SPDX-License-Identifier: Apache-2.0
  */
-import { Workbench, By, WebviewView } from 'vscode-extension-tester'
-import { findItemByText, printElementHTML, sleep, waitForElements } from './generalUtils'
+import { Workbench, WebviewView, By } from 'vscode-extension-tester'
+import { printElementHTML, sleep } from './generalUtils'
 import { testContext } from './testContext'
-import { isRunningInGitHubActionsE2E } from './ciUtils'
-import { authenticateForCI } from './ciOidcClient'
 
 /* Completes the entire Amazon Q login flow
 
@@ -18,34 +16,78 @@ Currently, the function will
 
 TO-DO: Currently this signInToAmazonQ is not fully autonomous as we ran into a blocker when the browser window pops up */
 export async function signInToAmazonQ(): Promise<void> {
-    if (isRunningInGitHubActionsE2E()) {
-        console.log('CI Environment detected: Using automated authentication')
-        await authenticateForCI()
-
-        // Set up minimal test context for CI
-        const workbench = new Workbench()
-        testContext.workbench = workbench
-        // Skip webview setup for CI as authentication is handled by Lambda
-        await workbench.executeCommand('Amazon Q: Open Chat')
-        console.log('THIS WORKED 1')
-        const editorView = workbench.getEditorView()
-        console.log('THIS WORKED 2')
-        await editorView.closeAllEditors()
-        console.log('THIS WORKED 3')
-        const webviewView = new WebviewView()
-        console.log('THIS WORKED 4')
-        await webviewView.switchToFrame()
-        console.log('THIS WORKED 5')
-
-        testContext.webviewView = webviewView
-        console.log('IT WORKED')
-        const body = webviewView.findElement(By.css('*'))
-        const body2 = workbench.findElement(By.css('*'))
-        await printElementHTML(body)
-        await printElementHTML(body2)
-        //if were not getting the print that we're expecting josh's registerhook works the moment the browser popup happens so we can probs use that
-        return
-    }
+    // if (isRunningInGitHubActionsE2E()) {
+    //     console.log('CI Environment detected: Using automated authentication')
+    //     const workbench = new Workbench()
+    //     await workbench.executeCommand('Amazon Q: Open Chat')
+
+    //     await sleep(5000)
+    //     let webviewView = new WebviewView()
+    //     await webviewView.switchToFrame()
+
+    //     const selectableItems = await waitForElements(webviewView, By.css('.selectable-item'))
+    //     if (selectableItems.length === 0) {
+    //         throw new Error('No selectable login options found')
+    //     }
+
+    //     // find the button / input + click the button / input
+    //     const companyItem = await findItemByText(selectableItems, 'Company account')
+    //     await companyItem.click()
+
+    //     const signInContinue = await webviewView.findWebElement(By.css('#connection-selection-continue-button'))
+    //     await signInContinue.click()
+
+    //     const startUrlInput = await webviewView.findWebElement(By.id('startUrl'))
+    //     await startUrlInput.clear()
+    //     await startUrlInput.sendKeys('https://amzn.awsapps.com/start')
+
+    //     const UrlContinue = await webviewView.findWebElement(By.css('button.continue-button.topMargin'))
+    //     await UrlContinue.click()
+
+    //     await sleep(3000)
+    //     await authenticateForCI()
+    //     console.log('Waiting for manual authentication...')
+    //     await sleep(12000)
+    //     console.log('Manual authentication should be done')
+
+    //     await webviewView.switchBack()
+
+    //     const editorView = workbench.getEditorView()
+    //     await editorView.closeAllEditors()
+    //     webviewView = new WebviewView()
+    //     await webviewView.switchToFrame()
+    //     const body = webviewView.findElement(By.css('*'))
+    //     const body2 = workbench.findElement(By.css('*'))
+    //     await printElementHTML(body)
+    //     await printElementHTML(body2)
+
+    //     testContext.workbench = workbench
+    //     testContext.webviewView = webviewView
+
+    //     // // Set up minimal test context for CI
+    //     // const workbench = new Workbench()
+    //     // testContext.workbench = workbench
+    //     // // Skip webview setup for CI as authentication is handled by Lambda
+    //     // await workbench.executeCommand('Amazon Q: Open Chat')
+    //     // console.log('THIS WORKED 1')
+    //     // const editorView = workbench.getEditorView()
+    //     // console.log('THIS WORKED 2')
+    //     // await editorView.closeAllEditors()
+    //     // console.log('THIS WORKED 3')
+    //     // const webviewView = new WebviewView()
+    //     // console.log('THIS WORKED 4')
+    //     // await webviewView.switchToFrame()
+    //     // console.log('THIS WORKED 5')
+
+    //     // testContext.webviewView = webviewView
+    //     // console.log('IT WORKED')
+    //     // const body = webviewView.findElement(By.css('*'))
+    //     // const body2 = workbench.findElement(By.css('*'))
+    //     // await printElementHTML(body)
+    //     // await printElementHTML(body2)
+    //     //if were not getting the print that we're expecting josh's registerhook works the moment the browser popup happens so we can probs use that
+    //     return
+    // }
 
     // Normal manual authentication flow for local development
     const workbench = new Workbench()
@@ -55,25 +97,26 @@ export async function signInToAmazonQ(): Promise<void> {
     let webviewView = new WebviewView()
     await webviewView.switchToFrame()
 
-    const selectableItems = await waitForElements(webviewView, By.css('.selectable-item'))
-    if (selectableItems.length === 0) {
-        throw new Error('No selectable login options found')
-    }
+    // const selectableItems = await waitForElements(webviewView, By.css('.selectable-item'))
+    // if (selectableItems.length === 0) {
+    //     throw new Error('No selectable login options found')
+    // }
 
-    // find the button / input + click the button / input
-    const companyItem = await findItemByText(selectableItems, 'Company account')
-    await companyItem.click()
+    // // find the button / input + click the button / input
+    // const companyItem = await findItemByText(selectableItems, 'Company account')
+    // await companyItem.click()
 
-    const signInContinue = await webviewView.findWebElement(By.css('#connection-selection-continue-button'))
-    await signInContinue.click()
+    // const signInContinue = await webviewView.findWebElement(By.css('#connection-selection-continue-button'))
+    // await signInContinue.click()
 
-    const startUrlInput = await webviewView.findWebElement(By.id('startUrl'))
-    await startUrlInput.clear()
-    await startUrlInput.sendKeys('https://amzn.awsapps.com/start')
-
-    const UrlContinue = await webviewView.findWebElement(By.css('button.continue-button.topMargin'))
-    await UrlContinue.click()
+    // const startUrlInput = await webviewView.findWebElement(By.id('startUrl'))
+    // await startUrlInput.clear()
+    // await startUrlInput.sendKeys('https://amzn.awsapps.com/start')
 
+    // const UrlContinue = await webviewView.findWebElement(By.css('button.continue-button.topMargin'))
+    // await UrlContinue.click()
+    const body = webviewView.findElement(By.css('*'))
+    await printElementHTML(body)
     console.log('Waiting for manual authentication...')
     await sleep(12000)
     console.log('Manual authentication should be done')

packages/amazonq/test/e2e_new/amazonq/utils/ciUtils.ts

@@ -59,44 +59,21 @@ export async function invokeAuthLambda(userCode: string, verificationUri: string
         .promise()
 }
 
-// export function registerAuthHook(secret: string, lambdaId = process.env['AUTH_UTIL_LAMBDA_ARN']) {
-//     return getTestWindow().onDidShowMessage((message: { items: string | any[] }) => {
-//         if (message.items.length > 0 && message.items[0].title.match(new RegExp(proceedToBrowser))) {
-//             if (!lambdaId) {
-//                 const baseMessage = 'Browser login flow was shown during testing without an authorizer function'
-//                 if (process.env['AWS_TOOLKIT_AUTOMATION'] === 'local') {
-//                     throw new Error(`${baseMessage}. You may need to login manually before running tests.`)
-//                 } else {
-//                     throw new Error(`${baseMessage}. Check that environment variables are set correctly.`)
-//                 }
-//             }
+// export async function registerAuthHook(secret: string, lambdaId = process.env['AUTH_UTIL_LAMBDA_ARN']) {
+//     // Latest eg: 'https://nkomonen.awsapps.com/start/#/device?user_code=JXZC-NVRK'
+//     const urlString = 'https://oidc.us-east-1.amazonaws.com/authorize?response_type=code&client_id=-yit8OUGd-Hnuxi-wde3dHVzLWVhc3QtMQ&redirect_uri=http://127.0.0.1:53085/oauth/callback&scopes=codewhisperer:completions,codewhisperer:analysis,codewhisperer:conversations,codewhisperer:transformations,codewhisperer:taskassist&state=2f35c7c1-0398-489d-8839-26323587cab6&code_challenge=iL8MZPd_SldEB3B4Y0tKrPjHGRlFt5_r3FYziVNbm9g&code_challenge_method=S256'
 
-//             const openStub = patchObject(vscode.env, 'openExternal', async (target: { toString: (arg0: boolean) => any }) => {
-//                 try {
-//                     // Latest eg: 'https://nkomonen.awsapps.com/start/#/device?user_code=JXZC-NVRK'
-//                     const urlString = target.toString(true)
+//     // Drop the user_code parameter since the auth lambda does not support it yet, and keeping it
+//     // would trigger a slightly different UI flow which breaks the automation.
+//     // TODO: If the auth lambda supports user_code in the parameters then we can skip this step
+//     const verificationUri = urlString.split('?')[0]
 
-//                     // Drop the user_code parameter since the auth lambda does not support it yet, and keeping it
-//                     // would trigger a slightly different UI flow which breaks the automation.
-//                     // TODO: If the auth lambda supports user_code in the parameters then we can skip this step
-//                     const verificationUri = urlString.split('?')[0]
+//     const params = urlString.split('?')[1]
+//     const userCode = new URLSearchParams(params).get('user_code')
 
-//                     const params = urlString.split('?')[1]
-//                     const userCode = new URLSearchParams(params).get('user_code')
-
-//                     await invokeLambda(lambdaId, {
-//                         secret,
-//                         userCode,
-//                         verificationUri,
-//                     })
-//                 } finally {
-//                     openStub.dispose()
-//                 }
-
-//                 return true
-//             })
-
-//             message.items[0].select()
-//         }
+//     await invokeLambda(lambdaId, {
+//         secret,
+//         userCode,
+//         verificationUri,
 //     })
 // }

packages/amazonq/test/e2e_new/amazonq/utils/setup.ts

@@ -5,20 +5,13 @@
 import { signInToAmazonQ } from './authUtils'
 import { testContext } from './testContext'
 import { closeAllTabs } from './cleanupUtils'
-import { isRunningInGitHubActionsE2E } from './ciUtils'
 
 before(async function () {
     this.timeout(60000)
 
-    if (isRunningInGitHubActionsE2E()) {
-        console.log('\n\n*** CI AUTHENTICATION MODE ***')
-        console.log('Using Lambda function for automated authentication\n\n')
-        // CI authentication will be handled during the auth flow
-    } else {
-        console.log('\n\n*** MANUAL INTERVENTION REQUIRED ***')
-        console.log('When prompted, you must manually click to open the browser and complete authentication')
-        console.log('You have 60 seconds to complete this step\n\n')
-    }
+    console.log('\n\n*** MANUAL INTERVENTION REQUIRED ***')
+    console.log('When prompted, you must manually click to open the browser and complete authentication')
+    console.log('You have 60 seconds to complete this step\n\n')
 
     await signInToAmazonQ()
     const webviewView = testContext.webviewView

packages/core/src/auth/activation.ts

@@ -11,34 +11,97 @@ import { initializeCredentialsProviderManager } from './utils'
 import { isAmazonQ, isSageMaker } from '../shared/extensionUtilities'
 import { getLogger } from '../shared/logger/logger'
 import { getErrorMsg } from '../shared/errors'
+import { invokeLambda, patchObject } from '../test/setupUtil'
 
 export interface SagemakerCookie {
     authMode?: 'Sso' | 'Iam'
 }
 
+// when the extension starts up, it runs this code, have it isolated here
+// first, verify with logs before or after auth, if thats true, if all those environment variables
+// once
+/**
+ * Based on the debugging messages, this code gets activated the moment i press opne
+ *
+ *
+ */
 export async function initialize(loginManager: LoginManager): Promise<void> {
+    console.log('INITIALIZATION START')
+    getLogger().info('[DEBUG] Auth activation initialize() called')
+
+    if (true) {
+        console.log('AUTH LAMBDA HAS BEEN TRIGGERED')
+        registerAuthHook('amazonq-test-account')
+        return
+    }
+
     if (isAmazonQ() && isSageMaker()) {
+        getLogger().info('[DEBUG] Running in Amazon Q + SageMaker environment')
         try {
+            getLogger().info('[DEBUG] Attempting to parse SageMaker cookies')
             // The command `sagemaker.parseCookies` is registered in VS Code Sagemaker environment.
             const result = (await vscode.commands.executeCommand('sagemaker.parseCookies')) as SagemakerCookie
+            getLogger().info('[DEBUG] SageMaker cookie result:', result)
             if (result.authMode !== 'Sso') {
+                getLogger().info('[DEBUG] Initializing credentials provider manager for IAM mode')
                 initializeCredentialsProviderManager()
+            } else {
+                getLogger().info('[DEBUG] Using SSO mode, skipping credentials provider manager')
             }
         } catch (e) {
+            getLogger().info('[DEBUG] Error parsing SageMaker cookies:', e)
             const errMsg = getErrorMsg(e as Error)
             if (errMsg?.includes("command 'sagemaker.parseCookies' not found")) {
                 getLogger().warn(`Failed to execute command "sagemaker.parseCookies": ${e}`)
             } else {
                 throw e
             }
         }
+    } else {
+        getLogger().info('[DEBUG] Not in Amazon Q + SageMaker environment')
     }
+    getLogger().info('[DEBUG] Setting up Auth connection change listener')
     Auth.instance.onDidChangeActiveConnection(async (conn) => {
+        getLogger().info('[DEBUG] Auth connection changed:', conn)
         // This logic needs to be moved to `Auth.useConnection` to correctly record `passive`
         if (conn?.type === 'iam' && conn.state === 'valid') {
+            getLogger().info('[DEBUG] Logging in with IAM connection')
             await loginManager.login({ passive: true, providerId: fromString(conn.id) })
         } else {
+            getLogger().info('[DEBUG] Logging out - connection invalid or not IAM')
             await loginManager.logout()
         }
     })
+
+    getLogger().info('[DEBUG] Auth activation initialize() completed')
+}
+
+export function registerAuthHook(secret: string, lambdaId = process.env['AUTH_UTIL_LAMBDA_ARN']) {
+    const openStub = patchObject(vscode.env, 'openExternal', async (target) => {
+        try {
+            if (!lambdaId) {
+                return false
+            }
+
+            // Latest eg: 'https://nkomonen.awsapps.com/start/#/device?user_code=JXZC-NVRK'
+            const urlString = target.toString(true)
+
+            // Drop the user_code parameter since the auth lambda does not support it yet, and keeping it
+            // would trigger a slightly different UI flow which breaks the automation.
+            // TODO: If the auth lambda supports user_code in the parameters then we can skip this step
+            const verificationUri = urlString.split('?')[0]
+
+            const params = urlString.split('?')[1]
+            const userCode = new URLSearchParams(params).get('user_code')
+
+            await invokeLambda(lambdaId, {
+                secret,
+                userCode,
+                verificationUri,
+            })
+        } finally {
+            openStub.dispose()
+        }
+        return true
+    })
 }