Improve our CI and local failures (#9932)

* reduce flakes on worker-app fixture tests

* Cleanup remote-mode bindings fixtures so that they work nicely locally

* Add GITHUB token for begit to clone the solid-start template repo in the c3 e2e tests

Author: petebacondarwin

.github/workflows/c3-e2e.yml

@@ -87,6 +87,7 @@ jobs:
           E2E_TEST_PM: ${{ matrix.pm.name }}
           E2E_TEST_PM_VERSION: ${{ matrix.pm.version }}
           CI_OS: ${{ runner.os }}
+          GITHUB_TOKEN: ${{ github.token }} # Needed for begit to clone the repo in the e2e tests for solid-start
 
       - name: Upload Logs
         uses: actions/upload-artifact@v4

fixtures/get-platform-proxy-remote-bindings/tests/index.test.ts

@@ -1,144 +1,159 @@
 import { execSync } from "child_process";
 import { randomUUID } from "crypto";
+import assert from "node:assert";
 import { mkdirSync, rmSync, writeFileSync } from "node:fs";
 import { Fetcher, KVNamespace } from "@cloudflare/workers-types/experimental";
-import { afterAll, beforeAll, describe, expect, test } from "vitest";
+import { afterAll, beforeAll, describe, expect, test, vi } from "vitest";
 import { getPlatformProxy } from "wrangler";
 
-if (
-	!process.env.TEST_CLOUDFLARE_API_TOKEN ||
-	!process.env.TEST_CLOUDFLARE_ACCOUNT_ID
-) {
-	console.warn("No credentials provided, skipping test...");
-	process.exit(0);
-}
-
-describe("getPlatformProxy - remote bindings", () => {
-	const remoteWorkerName = `tmp-e2e-worker-test-${randomUUID().split("-")[0]}`;
-	const remoteKvName = `tmp-e2e-remote-kv-test-${randomUUID().split("-")[0]}`;
-	let remoteKvId = "";
-
-	beforeAll(async () => {
-		// Note: ideally we pass the auth data to `getPlatformProxy`, that currently is not
-		//       possible (DEVX-1857) so we need to make sure that the CLOUDFLARE_ACCOUNT_ID
-		//       and CLOUDFLARE_API_TOKEN env variables are set so that `getPlatformProxy`
-		//       can establish the remote proxy connection
-		process.env.CLOUDFLARE_ACCOUNT_ID = process.env.TEST_CLOUDFLARE_ACCOUNT_ID;
-		process.env.CLOUDFLARE_API_TOKEN = process.env.TEST_CLOUDFLARE_API_TOKEN;
-
-		const deployOut = execSync(
-			`pnpm dlx wrangler deploy remote-worker.js --name ${remoteWorkerName} --compatibility-date 2025-06-19`,
-			{
-				stdio: "pipe",
+const auth = getAuthenticatedEnv();
+const execOptions = {
+	encoding: "utf8",
+	env: { ...process.env, ...auth },
+} as const;
+const remoteWorkerName = `tmp-e2e-worker-test-remote-bindings-${randomUUID().split("-")[0]}`;
+const remoteKvName = `tmp-e2e-remote-kv-test-remote-bindings-${randomUUID().split("-")[0]}`;
+
+if (auth) {
+	describe("getPlatformProxy - remote bindings", () => {
+		let remoteKvId: string;
+		beforeAll(async () => {
+			const deployOut = execSync(
+				`pnpm dlx wrangler deploy remote-worker.js --name ${remoteWorkerName} --compatibility-date 2025-06-19`,
+				execOptions
+			);
+
+			if (!new RegExp(`Deployed\\s+${remoteWorkerName}\\b`).test(deployOut)) {
+				throw new Error(`Failed to deploy ${remoteWorkerName}`);
 			}
-		);
-
-		if (
-			!new RegExp(`Deployed\\s+${remoteWorkerName}\\b`).test(`${deployOut}`)
-		) {
-			throw new Error(`Failed to deploy ${remoteWorkerName}`);
-		}
-
-		const kvAddOut = execSync(
-			`pnpm dlx wrangler kv namespace create ${remoteKvName}`,
-			{
-				stdio: "pipe",
-			}
-		);
-
-		const createdKvRegexMatch = `${kvAddOut}`.match(/"id": "(?<id>[^"]*?)"/);
-		const maybeRemoteKvId = createdKvRegexMatch?.groups?.["id"];
-
-		if (!maybeRemoteKvId) {
-			throw new Error(`Failed to create remote kv ${remoteKvName}`);
-		}
-
-		remoteKvId = maybeRemoteKvId;
-
-		execSync(
-			`pnpm dlx wrangler kv key put test-key remote-kv-value --namespace-id=${remoteKvId} --remote`
-		);
-
-		rmSync("./.tmp", { recursive: true, force: true });
-
-		mkdirSync("./.tmp");
-
-		writeFileSync(
-			"./.tmp/wrangler.json",
-			JSON.stringify(
-				{
-					name: "get-platform-proxy-fixture-test",
-					compatibility_date: "2025-06-01",
-					services: [
-						{
-							binding: "MY_WORKER",
-							service: remoteWorkerName,
-							experimental_remote: true,
-						},
-					],
-					kv_namespaces: [
-						{
-							binding: "MY_KV",
-							id: remoteKvId,
-							experimental_remote: true,
-						},
-					],
-				},
-				undefined,
-				2
-			),
-			"utf8"
-		);
-	}, 25_000);
-
-	afterAll(async () => {
-		execSync(`pnpm dlx wrangler delete --name ${remoteWorkerName}`);
-		execSync(
-			`pnpm dlx wrangler kv namespace delete --namespace-id=${remoteKvId}`
-		);
-		rmSync("./.tmp", { recursive: true, force: true });
-	}, 25_000);
-
-	test("getPlatformProxy works with remote bindings", async () => {
-		const { env, dispose } = await getPlatformProxy<{
-			MY_WORKER: Fetcher;
-			MY_KV: KVNamespace;
-		}>({
-			configPath: "./.tmp/wrangler.json",
-			experimental: { remoteBindings: true },
-		});
-
-		const workerText = await (
-			await env.MY_WORKER.fetch("http://example.com")
-		).text();
-		expect(workerText).toEqual(
-			"Hello from a remote Worker part of the getPlatformProxy remote bindings fixture!"
-		);
-
-		const kvValue = await env.MY_KV.get("test-key");
-		expect(kvValue).toEqual("remote-kv-value");
-
-		await dispose();
-	});
 
-	test("getPlatformProxy does not work with remote bindings if the experimental remoteBindings flag is not turned on", async () => {
-		const { env, dispose } = await getPlatformProxy<{
-			MY_WORKER: Fetcher;
-			MY_KV: KVNamespace;
-		}>({
-			configPath: "./.tmp/wrangler.json",
+			const kvAddOut = execSync(
+				`pnpm dlx wrangler kv namespace create ${remoteKvName}`,
+				execOptions
+			);
+
+			const createdKvRegexMatch = kvAddOut.match(/"id": "(?<id>[^"]*?)"/);
+			const maybeRemoteKvId = createdKvRegexMatch?.groups?.["id"];
+			assert(maybeRemoteKvId, `Failed to create remote kv ${remoteKvName}`);
+			remoteKvId = maybeRemoteKvId;
+
+			execSync(
+				`pnpm dlx wrangler kv key put test-key remote-kv-value --namespace-id=${remoteKvId} --remote`,
+				execOptions
+			);
+
+			rmSync("./.tmp", { recursive: true, force: true });
+
+			mkdirSync("./.tmp");
+
+			writeFileSync(
+				"./.tmp/wrangler.json",
+				JSON.stringify(
+					{
+						name: "get-platform-proxy-fixture-test",
+						compatibility_date: "2025-06-01",
+						services: [
+							{
+								binding: "MY_WORKER",
+								service: remoteWorkerName,
+								experimental_remote: true,
+							},
+						],
+						kv_namespaces: [
+							{
+								binding: "MY_KV",
+								id: remoteKvId,
+								experimental_remote: true,
+							},
+						],
+					},
+					undefined,
+					2
+				),
+				"utf8"
+			);
+		}, 25_000);
+
+		afterAll(() => {
+			execSync(
+				`pnpm dlx wrangler delete --name ${remoteWorkerName}`,
+				execOptions
+			);
+			execSync(
+				`pnpm dlx wrangler kv namespace delete --namespace-id=${remoteKvId}`,
+				execOptions
+			);
+			rmSync("./.tmp", { recursive: true, force: true });
+		}, 25_000);
+
+		test("getPlatformProxy works with remote bindings", async () => {
+			vi.stubEnv("CLOUDFLARE_ACCOUNT_ID", auth.CLOUDFLARE_ACCOUNT_ID);
+			vi.stubEnv("CLOUDFLARE_API_TOKEN", auth.CLOUDFLARE_API_TOKEN);
+			const { env, dispose } = await getPlatformProxy<{
+				MY_WORKER: Fetcher;
+				MY_KV: KVNamespace;
+			}>({
+				configPath: "./.tmp/wrangler.json",
+				experimental: { remoteBindings: true },
+			});
+
+			const workerText = await (
+				await env.MY_WORKER.fetch("http://example.com")
+			).text();
+			expect(workerText).toEqual(
+				"Hello from a remote Worker part of the getPlatformProxy remote bindings fixture!"
+			);
+
+			const kvValue = await env.MY_KV.get("test-key");
+			expect(kvValue).toEqual("remote-kv-value");
+
+			await dispose();
 		});
 
-		const workerText = await (
-			await env.MY_WORKER.fetch("http://example.com")
-		).text();
-		expect(workerText).toEqual(
-			`[wrangler] Couldn\'t find \`wrangler dev\` session for service "${remoteWorkerName}" to proxy to`
-		);
-
-		const kvValue = await env.MY_KV.get("test-key");
-		expect(kvValue).toEqual(null);
-
-		await dispose();
+		test("getPlatformProxy does not work with remote bindings if the experimental remoteBindings flag is not turned on", async () => {
+			const { env, dispose } = await getPlatformProxy<{
+				MY_WORKER: Fetcher;
+				MY_KV: KVNamespace;
+			}>({
+				configPath: "./.tmp/wrangler.json",
+			});
+
+			const workerText = await (
+				await env.MY_WORKER.fetch("http://example.com")
+			).text();
+			expect(workerText).toEqual(
+				`[wrangler] Couldn\'t find \`wrangler dev\` session for service "${remoteWorkerName}" to proxy to`
+			);
+
+			const kvValue = await env.MY_KV.get("test-key");
+			expect(kvValue).toEqual(null);
+
+			await dispose();
+		});
 	});
-});
+} else {
+	test.skip("getPlatformProxy - remote bindings (no auth credentials)");
+}
+
+/**
+ * Gets an env object containing Cloudflare credentials or undefined if not authenticated.
+ *
+ * In the Github actions we convert the TEST_CLOUDFLARE_ACCOUNT_ID and TEST_CLOUDFLARE_API_TOKEN env variables.
+ * In local development we can rely on CLOUDFLARE_ACCOUNT_ID and CLOUDFLARE_API_TOKEN env variables directly.
+ */
+function getAuthenticatedEnv() {
+	const CLOUDFLARE_ACCOUNT_ID =
+		process.env.TEST_CLOUDFLARE_ACCOUNT_ID || process.env.CLOUDFLARE_ACCOUNT_ID;
+	const CLOUDFLARE_API_TOKEN =
+		process.env.TEST_CLOUDFLARE_API_TOKEN || process.env.CLOUDFLARE_API_TOKEN;
+
+	if (CLOUDFLARE_ACCOUNT_ID && CLOUDFLARE_API_TOKEN) {
+		return {
+			CLOUDFLARE_API_TOKEN,
+			CLOUDFLARE_ACCOUNT_ID,
+		};
+	}
+	console.warn(
+		"Skipping vitest-pool-workers remote bindings tests because the environment is not authenticated with Cloudflare."
+	);
+}

fixtures/get-platform-proxy-remote-bindings/turbo.json

@@ -0,0 +1,21 @@
+{
+	"$schema": "http://turbo.build/schema.json",
+	"extends": ["//"],
+	"tasks": {
+		"test:ci": {
+			"env": [
+				"VITEST",
+				"NODE_DEBUG",
+				"MINIFLARE_WORKERD_PATH",
+				"WRANGLER",
+				"WRANGLER_IMPORT",
+				"MINIFLARE_IMPORT",
+				"CLOUDFLARE_ACCOUNT_ID",
+				"CLOUDFLARE_API_TOKEN",
+				"TEST_CLOUDFLARE_ACCOUNT_ID",
+				"TEST_CLOUDFLARE_API_TOKEN",
+				"WRANGLER_E2E_TEST_FILE"
+			]
+		}
+	}
+}