Flank proxy support using proxy auto config(pac) #776
Comments
|
Hey, thanks for filing an issue! Is it possible for you to provide steps to reproduce the problem? That'd be super helpful to validate potential fixes. |
|
We are using an http proxy with authentication and Mac devices running macOS 10.14 - 10.15. The Mac devices are configured to use a .pac file that lays out where the proxies are, what to use for dns and what proxy exceptions there are. We then have a script that builds the apk file and the flank.yml before sending it off using "/usr/bin/env java -jar ~./flank/flank-8.1.0.jar firebase test android run --smart-flank-disable-upload=true --config ./flank.yml". When using the auto config .pac file the proxy does not see any traffic initiated after the build portion of the script, it appears to fail during the part of the flank operation just prior to when it would normally start uploading the apk file. Now if we manually configure the proxy into the mac system preferences then it works fine, although we did have to whitelist some www.googleapis.com locations. if you do a packet capture during the process to use flank to run firebase tests you should see a call to oauth2.googleapis.com using a browser user agent in the http header. This call is using the system proxy setting and does not appear to support proxy auto config but does respect manually configured proxies. I am hoping this helps, I am not incredibly versed in Flank/Firebase. |
|
Please let me know if there is any additional info you need or if I can assist in any way. |
|
I talked with @inktomi, to help we'll need a specific set of steps to follow. You've provided a great description of the use case at Amex. That doesn't help us create a similar environment to reproduce the problem. Ideal outcome is there's a reduced test case, maybe some sort of script, we can run that sets up a proxy, runs flank, and triggers the issue. |
*Currently we are only testing on local network, unable to produce positive results currently on VPN |
|
Thank you! |
|
Let me know if you need more, we are still testing and trying to narrow down as much as we can. We did verify that if we run a test apk to Firebase directly it works. |
|
How is the testing going? Is there any additional information you need from us, or is there anything we can do to help? |
|
@apolloniusoftyana Hey, thanks for checking in! We have this in our ranked column. A few higher priority issues are being worked on first (FTL rate limits which block execution). You can install https://www.zenhub.com/extension to see the ZenHub board on the Flank issue tracker. |
|
@apolloniusoftyana Square contributed proxy support. That might help with your use case? #2176 |
We have added some googleapis.com urls to our proxy to support Flank, but it appears that during the Auth process (oauth2.googleapis.com) it is using a browser user agent. The browser appears to be using the OS proxy configuration in this case the proxy settings in macOS under System Preferences. Typically we use a proxy auto config file there, which currently with that file in place we don't see the traffic initiated by the flank script. But if we switch to a manual proxy config we can hit the proxy and the rules we put in place for Flank and Firebase allow the communication forward. Do you know why it would not accept the auto config if it is looking at the OS settings for this part of the communication. Note: we also have the proxy set as environment variables in Terminal and in our gcloud config, but like mentioned it appears like the auth process is using a browser user agent in the background which is utilizing the System Preference proxy settings.
The text was updated successfully, but these errors were encountered: