Legg til vitest browser mode #6429

tor-nav · 2025-06-10T09:14:13Z

mswTest må no brukast for testar som krev msw-handlers. Denne wrappar applyRequestHandlers som blir brukt av jsdom-testar, og setupWorker som må brukast for browser-mode.

Det er rundt 20-30 testar som feilar av ukjent årsak. Mange av desse køyrer ok om ein rekøyrer dei, så usikker på årsak. Håpar det ligg i vitest, men skal få sett meir på det etterkvart. Per no brukar me ikkje browser-mode i CI så det er ikkje krise at nokre testar feilar.

Så får me sjå om browser-mode blir nyttig. Forhåpentlegvis så vil det komme forbedringar i UI'et og kanskje ein bedre integrasjon i storybook. Evt bør me kanskje heller sjå på playwright eller play-funksjonaliteten i storybook

public/mockServiceWorker.js

  event.waitUntil(self.clients.claim())
 })

-self.addEventListener('message', async function (event) {
-  const clientId = event.source.id
+addEventListener('message', async function (event) {


To fix the issue, we need to verify the origin of the incoming message event to ensure it comes from a trusted source. This involves adding a check for the event.origin property against a list of allowed origins. If the origin is not trusted, the handler should return early without processing the message.

The fix will involve:

Defining a list of trusted origins (e.g., const TRUSTED_ORIGINS = ['https://www.example.com'];).

Adding a conditional check at the beginning of the message event handler to verify the event.origin against the trusted origins.

If the origin is not in the trusted list, the handler will return early.

sonarqubecloud · 2025-06-13T09:23:12Z

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.2% Duplication on New Code

See analysis details on SonarQube Cloud

tor-nav requested a review from a team as a code owner June 10, 2025 09:14

tor-nav marked this pull request as draft June 10, 2025 09:14

tor-nav added 2 commits June 10, 2025 15:18

Legg til vitest browser mode

f281229

fix

95029c7

tor-nav force-pushed the browser-mode branch from a725409 to 95029c7 Compare June 10, 2025 13:19

FIX

00f2e0f

github-advanced-security bot found potential problems Jun 10, 2025

View reviewed changes

tor-nav marked this pull request as ready for review June 13, 2025 09:21

Merge branch 'master' into browser-mode

8b2f2a1

tor-nav requested a review from sirimykland June 13, 2025 09:29

@@ -23,2 +23,7 @@
             addEventListener('message', async function (event) {
+              const TRUSTED_ORIGINS = ['https://www.example.com'];
+              if (!TRUSTED_ORIGINS.includes(event.origin)) {
+                return;
+              }
               const clientId = Reflect.get(event.source || {}, 'id')

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Legg til vitest browser mode #6429

Legg til vitest browser mode #6429

Uh oh!

tor-nav commented Jun 10, 2025 •

edited

Loading

Uh oh!

Check warning

Copilot Autofix

sonarqubecloud bot commented Jun 13, 2025

Uh oh!

Uh oh!

Legg til vitest browser mode #6429

Are you sure you want to change the base?

Legg til vitest browser mode #6429

Uh oh!

Conversation

tor-nav commented Jun 10, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

Check warning

Copilot Autofix

sonarqubecloud bot commented Jun 13, 2025

Quality Gate passed

Uh oh!

Uh oh!

tor-nav commented Jun 10, 2025 •

edited

Loading