Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Cypress began to inject additional markup into the downloaded csv, tsv & txt files (after v. 10.9.0) #24297

Closed
kryshenp opened this issue Oct 18, 2022 · 10 comments · Fixed by #24414
Assignees
Labels
Reproducible Can be reproduced type: bug type: unexpected behavior User expected result, but got another

Comments

@kryshenp
Copy link

kryshenp commented Oct 18, 2022

Current behavior

Downloaded or opened in the new tab csv, tsv or txt file contains a very long markup code before the actual content of the file, for example

<head> <script type='text/javascript'> document.domain = 'mydomain.us'; const cypressConfig = { modifyObstructiveThirdPartyCode: false, modifyObstructiveCode: true }; !function(a){var o={};function e(i){if(o[i])return o......(178000 more characters).....,0:function(a,o,e){a.exports=e("./injection/cross-origin.js")}}); </script> </head>
column_name table_name value_type encoding_id ordaunits notes
ins_index deatch 11 0 1 A numerical index used to distinguish the cases where we have multiple death records for a participant.
date_of_death death 51 0 4 Date of death
dsource death 41 1970 2 The data source is either E/W for England & Wales or SCOT for Scotland.
eid death 11 0 0 This identifier is the same encoded id used in the main dataset.
source death 11 261 3 The particular data format in which this record was received.

Desired behavior

Downloaded file should not contain any <script></script> markup.

It should contain actual csv/tsv/txt content, for example:

column_name	table_name	value_type	encoding_id	orda	units	notes
ins_index	deatch	11	0	1		A numerical index used to distinguish the cases where we have multiple death records for a participant.
date_of_death	death	51	0	4		Date of death
dsource	death	41	1970	2		The data source is either E/W for England & Wales or SCOT for Scotland.
eid	death	11	0	0		This identifier is the same encoded id used in the main dataset.
source	death	11	261	3		The particular data format in which this record was received.

The issue started to happen after we updated Cypress from 10.8.0 to 10.9.0. Also occurs in Cypress 10.10.0

Test code to reproduce

cy.readFile("downloads/record_column.csv").then((text) => {
      cy.readFile("./fixtures/bencmarkFiles/record_column.csv").should("eq", text);
});

Cypress Version

^10.8.0

Node version

16.13.1

Operating System

macOS 12.5.1

Debug Logs

No response

Other

Sadly, the issue is not reproducible when we're trying to download sample CSVs from here: https://www.sample-videos.com/download-sample-csv.php , it happens only on our product, which is closed to the public :(

@kryshenp kryshenp changed the title Cypress started to inject additional markup into the downloaded csv, tsv & txt files Cypress began to inject additional markup into the downloaded csv, tsv & txt files (after v. 10.9.0) Oct 18, 2022
@kryshenp
Copy link
Author

My issue looks quite similar to this unanswered issue:
https://stackoverflow.com/questions/70956204/csv-file-downloaded-with-cypress-has-additional-markup-in-it

@AtofStryker
Copy link
Contributor

Hi @kryshenp . Thank you for opening an issue. I am working on putting together a reproduction repository here but am unable to reproduce the issue. are you downloading CSV's inside the origin command and would you mind helping me fill in the blanks to get this repo to be reproducible? It sounds like a bug with the injection logic, which with a reproduction I can likely narrow down fairly easily 😃

@AtofStryker
Copy link
Contributor

AtofStryker commented Oct 20, 2022

@kryshenp @MateuszKobiera If you could, can you run your test with DEBUG=cypress-verbose:proxy:http npx cypress open and place the debug logs here with sensitive information omitted?

@AtofStryker
Copy link
Contributor

Actually got a working reproduction here. I think this is the suspected area of code https://github.com/cypress-io/cypress/blob/develop/packages/proxy/lib/http/response-middleware.ts#L97. Likely needs to be fixed to check html like mime types over not javascript 😅

@AtofStryker AtofStryker added type: bug type: unexpected behavior User expected result, but got another Reproducible Can be reproduced and removed Needs Reproduction labels Oct 20, 2022
@AtofStryker
Copy link
Contributor

the injection type here should NOT be fullCrossOrigin and instead false
Screen Shot 2022-10-20 at 12 25 31 PM

@kryshenp
Copy link
Author

Hi @AtofStryker, thanks for reply.
Here is my output:

cypress-verbose:proxy:http POST https://stagingapi.dnanexus.com/file-Fp64Y1j00GvvpzF73623YqGJ/download IncomingRequest proxying request { req: { method: 'POST', proxiedUrl: 'https://stagingapi.dnanexus.com/file-Fp64Y1j00GvvpzF73623YqGJ/download', headers: { host: 'stagingapi.dnanexus.com', connection: 'keep-alive', 'content-length': '101', accept: '*/*', authorization: 'Bearer SOZpLGolhkNvz7EvQCUgPkSf67MxRumg', 'content-type': 'application/json', cookie: 'access_token=SOZpLGolhkNvz7EvQCUgPkSf67MxRumg; token_signature=e5e79f2f4d77d82ff09173d14000780575cbcf188efec2540ff0d1e6e5773287; token_type=bearer; user_id=user-qa_tester_ui_1; _session.cookiesCompliance=opt-in', 'user-agent': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/105.0.0.0 Safari/537.36', 'sec-ch-ua': '"Google Chrome";v="105", "Not)A;Brand";v="8", "Chromium";v="105"', 'sec-ch-ua-mobile': '?0', 'sec-ch-ua-platform': '"macOS"', 'x-cypress-is-xhr-or-fetch': 'xhr', 'sec-fetch-site': 'same-site', 'sec-fetch-mode': 'cors', 'sec-fetch-dest': 'empty', referer: 'https://staging.dnanexus.com/panx/project-FfQ4z7000GvgVZGPGk7kZPKF/file-Fp64Y1j00GvvpzF73623YqGJ/view?viewer=true', 'accept-encoding': 'gzip, deflate, br', 'accept-language': 'en-GB,en-US;q=0.9,en;q=0.8' } } } +163m
  cypress-verbose:proxy:http POST https://stagingapi.dnanexus.com/file-Fp64Y1j00GvvpzF73623YqGJ/download IncomingRequest found x-cypress-is-xhr-or-fetch header. Deleting x-cypress-is-xhr-or-fetch header. +1ms
  cypress-verbose:proxy:http POST https://stagingapi.dnanexus.com/file-Fp64Y1j00GvvpzF73623YqGJ/download IncomingRequest waiting for prerequest +0ms
  cypress-verbose:proxy:http POST https://stagingapi.dnanexus.com/file-Fp64Y1j00GvvpzF73623YqGJ/download IncomingRequest Incoming request POST-https://stagingapi.dnanexus.com/file-Fp64Y1j00GvvpzF73623YqGJ/download matches known pre-request: { browserPreRequest: { requestId: '8933.235', method: 'POST', url: 'https://stagingapi.dnanexus.com/file-Fp64Y1j00GvvpzF73623YqGJ/download', headers: { 'sec-ch-ua': '"Google Chrome";v="105", "Not)A;Brand";v="8", "Chromium";v="105"', Authorization: 'Bearer SOZpLGolhkNvz7EvQCUgPkSf67MxRumg', Referer: 'https://staging.dnanexus.com/panx/project-FfQ4z7000GvgVZGPGk7kZPKF/file-Fp64Y1j00GvvpzF73623YqGJ/view?viewer=true', 'Content-Type': 'application/json', 'sec-ch-ua-mobile': '?0', 'User-Agent': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/105.0.0.0 Safari/537.36', 'sec-ch-ua-platform': '"macOS"' }, resourceType: 'fetch', originalResourceType: 'Fetch' }, timestamp: 1666287123992 } +0ms
  cypress-verbose:proxy:http POST https://stagingapi.dnanexus.com/file-Fp64Y1j00GvvpzF73623YqGJ/download IncomingResponse received response { req: { method: 'POST', proxiedUrl: 'https://stagingapi.dnanexus.com/file-Fp64Y1j00GvvpzF73623YqGJ/download', headers: { host: 'stagingapi.dnanexus.com', connection: 'keep-alive', 'content-length': '101', accept: '*/*', authorization: 'Bearer SOZpLGolhkNvz7EvQCUgPkSf67MxRumg', 'content-type': 'application/json', cookie: 'access_token=SOZpLGolhkNvz7EvQCUgPkSf67MxRumg; token_signature=e5e79f2f4d77d82ff09173d14000780575cbcf188efec2540ff0d1e6e5773287; token_type=bearer; user_id=user-qa_tester_ui_1; _session.cookiesCompliance=opt-in', 'user-agent': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/105.0.0.0 Safari/537.36', 'sec-ch-ua': '"Google Chrome";v="105", "Not)A;Brand";v="8", "Chromium";v="105"', 'sec-ch-ua-mobile': '?0', 'sec-ch-ua-platform': '"macOS"', 'sec-fetch-site': 'same-site', 'sec-fetch-mode': 'cors', 'sec-fetch-dest': 'empty', referer: 'https://staging.dnanexus.com/panx/project-FfQ4z7000GvgVZGPGk7kZPKF/file-Fp64Y1j00GvvpzF73623YqGJ/view?viewer=true', 'accept-encoding': 'gzip', 'accept-language': 'en-GB,en-US;q=0.9,en;q=0.8' } }, incomingRes: { headers: { server: 'nginx', date: 'Thu, 20 Oct 2022 17:32:04 GMT', 'content-type': 'application/json; charset=utf-8', 'content-length': '119', connection: 'keep-alive', 'x-powered-by': 'Express', 'x-request-id': '1666287124113-394426', 'x-content-type-options': 'nosniff' }, statusCode: 200 } } +45ms
  cypress-verbose:proxy:http POST https://stagingapi.dnanexus.com/file-Fp64Y1j00GvvpzF73623YqGJ/download IncomingResponse determine injection +1ms
  cypress-verbose:proxy:http POST https://stagingapi.dnanexus.com/file-Fp64Y1j00GvvpzF73623YqGJ/download IncomingResponse - no injection (not html) +0ms
  cypress-verbose:proxy:http POST https://stagingapi.dnanexus.com/file-Fp64Y1j00GvvpzF73623YqGJ/download IncomingResponse injection levels: { isInitial: false, wantsInjection: false, wantsSecurityRemoved: false } +0ms
POST /file-Fp64Y1j00GvvpzF73623YqGJ/download 200 47.796 ms - -
  cypress-verbose:proxy:http POST https://safesearch.googleapis.com/v1:classify IncomingRequest proxying request { req: { method: 'POST', proxiedUrl: 'https://safesearch.googleapis.com/v1:classify', headers: { host: 'safesearch.googleapis.com', connection: 'keep-alive', 'content-length': '133', 'content-type': 'application/x-www-form-urlencoded', 'sec-fetch-site': 'none', 'sec-fetch-mode': 'no-cors', 'sec-fetch-dest': 'empty', 'user-agent': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/105.0.0.0 Safari/537.36', 'accept-encoding': 'gzip, deflate, br', 'accept-language': 'en-GB,en-US;q=0.9,en;q=0.8' } } } +15ms
  cypress-verbose:proxy:http POST https://safesearch.googleapis.com/v1:classify IncomingRequest waiting for prerequest +0ms
  cypress-verbose:proxy:http GET https://content-autofill.googleapis.com/v1/pages/ChVDaHJvbWUvMTA1LjAuNTE5NS4xMjU... IncomingRequest proxying request { req: { method: 'GET', proxiedUrl: 'https://content-autofill.googleapis.com/v1/pages/ChVDaHJvbWUvMTA1LjAuNTE5NS4xMjUSEAmXltQwspL6IBIFDZFhlU4=?alt=proto', headers: { host: 'content-autofill.googleapis.com', connection: 'keep-alive', 'x-goog-encode-response-if-executable': 'base64', 'x-goog-api-key': 'AIzaSyBOti4mM-6x9WDnZIjIeyEU21OpBXqWBgw', 'x-client-data': 'CIq2yQEIpbbJAQjEtskBCKmdygEItorLAQiWocsBCP6czAEIl7zMAQjFvMwBCOLLzAEIqtzMAQjE4cwBCMfmzAEI/ubMAQjY6MwB', 'sec-fetch-site': 'none', 'sec-fetch-mode': 'no-cors', 'sec-fetch-dest': 'empty', 'user-agent': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/105.0.0.0 Safari/537.36', 'accept-encoding': 'gzip, deflate, br', 'accept-language': 'en-GB,en-US;q=0.9,en;q=0.8' } } } +151ms
  cypress-verbose:proxy:http GET https://content-autofill.googleapis.com/v1/pages/ChVDaHJvbWUvMTA1LjAuNTE5NS4xMjU... IncomingRequest waiting for prerequest +1ms
  cypress-verbose:proxy:http POST https://safesearch.googleapis.com/v1:classify IncomingRequest Never received pre-request for request POST-https://safesearch.googleapis.com/v1:classify after waiting 500ms. Continuing without one. +351ms
  cypress-verbose:proxy:http POST https://safesearch.googleapis.com/v1:classify IncomingResponse received response { req: { method: 'POST', proxiedUrl: 'https://safesearch.googleapis.com/v1:classify', headers: { host: 'safesearch.googleapis.com', connection: 'keep-alive', 'content-length': '133', 'content-type': 'application/x-www-form-urlencoded', 'sec-fetch-site': 'none', 'sec-fetch-mode': 'no-cors', 'sec-fetch-dest': 'empty', 'user-agent': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/105.0.0.0 Safari/537.36', 'accept-encoding': 'gzip', 'accept-language': 'en-GB,en-US;q=0.9,en;q=0.8' } }, incomingRes: { headers: { 'content-type': 'application/json; charset=UTF-8', vary: 'Origin, X-Origin, Referer', 'content-encoding': 'gzip', date: 'Thu, 20 Oct 2022 17:32:04 GMT', server: 'ESF', 'cache-control': 'private', 'x-xss-protection': '0', 'x-frame-options': 'SAMEORIGIN', 'x-content-type-options': 'nosniff', 'alt-svc': 'h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"', 'transfer-encoding': 'chunked' }, statusCode: 200 } } +43ms
  cypress-verbose:proxy:http POST https://safesearch.googleapis.com/v1:classify IncomingResponse determine injection +0ms
  cypress-verbose:proxy:http POST https://safesearch.googleapis.com/v1:classify IncomingResponse - no injection (not html) +1ms
  cypress-verbose:proxy:http POST https://safesearch.googleapis.com/v1:classify IncomingResponse injection levels: { isInitial: false, wantsInjection: false, wantsSecurityRemoved: false } +0ms
POST /v1:classify 200 549.417 ms - -
  cypress-verbose:proxy:http GET https://stagingdl.dnanex.us/F/D/52f423Q4Y5Vzbg48Pz2g4yf5XJbqz30G2Kpjzv7Y?inline&... IncomingRequest proxying request { req: { method: 'GET', proxiedUrl: 'https://stagingdl.dnanex.us/F/D/52f423Q4Y5Vzbg48Pz2g4yf5XJbqz30G2Kpjzv7Y?inline&dxDomain=https://staging.dnanexus.com', headers: { host: 'stagingdl.dnanex.us', connection: 'keep-alive', accept: 'text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9', 'upgrade-insecure-requests': '1', 'user-agent': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/105.0.0.0 Safari/537.36', 'sec-ch-ua': '"Google Chrome";v="105", "Not)A;Brand";v="8", "Chromium";v="105"', 'sec-ch-ua-mobile': '?0', 'sec-ch-ua-platform': '"macOS"', 'x-cypress-is-aut-frame': 'true', 'sec-fetch-site': 'cross-site', 'sec-fetch-mode': 'navigate', 'sec-fetch-dest': 'iframe', referer: 'https://staging.dnanexus.com/panx/project-FfQ4z7000GvgVZGPGk7kZPKF/file-Fp64Y1j00GvvpzF73623YqGJ/view?viewer=true', 'accept-encoding': 'gzip, deflate, br', 'accept-language': 'en-GB,en-US;q=0.9,en;q=0.8' } } } +10ms
  cypress-verbose:proxy:http GET https://stagingdl.dnanex.us/F/D/52f423Q4Y5Vzbg48Pz2g4yf5XJbqz30G2Kpjzv7Y?inline&... IncomingRequest should cookies be attached to request?: true +0ms
  cypress-verbose:proxy:http GET https://stagingdl.dnanex.us/F/D/52f423Q4Y5Vzbg48Pz2g4yf5XJbqz30G2Kpjzv7Y?inline&... IncomingRequest existing cookies on request from cookie jar:  +2ms
  cypress-verbose:proxy:http GET https://stagingdl.dnanex.us/F/D/52f423Q4Y5Vzbg48Pz2g4yf5XJbqz30G2Kpjzv7Y?inline&... IncomingRequest add cookies to request from header:  +0ms
  cypress-verbose:proxy:http GET https://stagingdl.dnanex.us/F/D/52f423Q4Y5Vzbg48Pz2g4yf5XJbqz30G2Kpjzv7Y?inline&... IncomingRequest cookies being sent with request: undefined +0ms
  cypress-verbose:proxy:http GET https://stagingdl.dnanex.us/F/D/52f423Q4Y5Vzbg48Pz2g4yf5XJbqz30G2Kpjzv7Y?inline&... IncomingRequest waiting for prerequest +0ms
  cypress-verbose:proxy:http GET https://stagingdl.dnanex.us/F/D/52f423Q4Y5Vzbg48Pz2g4yf5XJbqz30G2Kpjzv7Y?inline&... IncomingRequest Incoming request GET-https://stagingdl.dnanex.us/F/D/52f423Q4Y5Vzbg48Pz2g4yf5XJbqz30G2Kpjzv7Y?inline&dxDomain=https://staging.dnanexus.com matches known pre-request: { browserPreRequest: { requestId: '7904B995D162E67F7E448567B119DF4C', method: 'GET', url: 'https://stagingdl.dnanex.us/F/D/52f423Q4Y5Vzbg48Pz2g4yf5XJbqz30G2Kpjzv7Y?inline&dxDomain=https://staging.dnanexus.com', headers: { Referer: 'https://staging.dnanexus.com/panx/project-FfQ4z7000GvgVZGPGk7kZPKF/file-Fp64Y1j00GvvpzF73623YqGJ/view?viewer=true', 'Upgrade-Insecure-Requests': '1', 'User-Agent': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/105.0.0.0 Safari/537.36', 'sec-ch-ua': '"Google Chrome";v="105", "Not)A;Brand";v="8", "Chromium";v="105"', 'sec-ch-ua-mobile': '?0', 'sec-ch-ua-platform': '"macOS"' }, resourceType: 'other', originalResourceType: 'Document' }, timestamp: 1666287124669 } +0ms
  cypress-verbose:proxy:http GET https://content-autofill.googleapis.com/v1/pages/ChVDaHJvbWUvMTA1LjAuNTE5NS4xMjU... IncomingRequest Never received pre-request for request GET-https://content-autofill.googleapis.com/v1/pages/ChVDaHJvbWUvMTA1LjAuNTE5NS4xMjUSEAmXltQwspL6IBIFDZFhlU4=?alt=proto after waiting 500ms. Continuing without one. +95ms
  cypress-verbose:proxy:http GET https://stagingdl.dnanex.us/F/D/52f423Q4Y5Vzbg48Pz2g4yf5XJbqz30G2Kpjzv7Y?inline&... IncomingResponse received response { req: { method: 'GET', proxiedUrl: 'https://stagingdl.dnanex.us/F/D/52f423Q4Y5Vzbg48Pz2g4yf5XJbqz30G2Kpjzv7Y?inline&dxDomain=https://staging.dnanexus.com', headers: { host: 'stagingdl.dnanex.us', connection: 'keep-alive', accept: 'text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9', 'upgrade-insecure-requests': '1', 'user-agent': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/105.0.0.0 Safari/537.36', 'sec-ch-ua': '"Google Chrome";v="105", "Not)A;Brand";v="8", "Chromium";v="105"', 'sec-ch-ua-mobile': '?0', 'sec-ch-ua-platform': '"macOS"', 'sec-fetch-site': 'cross-site', 'sec-fetch-mode': 'navigate', 'sec-fetch-dest': 'iframe', referer: 'https://staging.dnanexus.com/panx/project-FfQ4z7000GvgVZGPGk7kZPKF/file-Fp64Y1j00GvvpzF73623YqGJ/view?viewer=true', 'accept-encoding': 'gzip', 'accept-language': 'en-GB,en-US;q=0.9,en;q=0.8', cookie: undefined } }, incomingRes: { headers: { date: 'Thu, 20 Oct 2022 17:32:04 GMT', 'content-type': 'text/plain', 'content-length': '125', connection: 'keep-alive', 'last-modified': 'Thu, 09 Sep 2021 10:45:27 GMT', 'accept-ranges': 'bytes', 'access-control-allow-credentials': 'true', 'content-disposition': 'inline', 'cache-control': 'private, max-age=31536000' }, statusCode: 200 } } +40ms
  cypress-verbose:proxy:http GET https://stagingdl.dnanex.us/F/D/52f423Q4Y5Vzbg48Pz2g4yf5XJbqz30G2Kpjzv7Y?inline&... IncomingResponse determine injection +0ms
  cypress-verbose:proxy:http GET https://stagingdl.dnanex.us/F/D/52f423Q4Y5Vzbg48Pz2g4yf5XJbqz30G2Kpjzv7Y?inline&... IncomingResponse - cross origin injection +0ms
  cypress-verbose:proxy:http GET https://stagingdl.dnanex.us/F/D/52f423Q4Y5Vzbg48Pz2g4yf5XJbqz30G2Kpjzv7Y?inline&... IncomingResponse injection levels: { isInitial: false, wantsInjection: 'fullCrossOrigin', wantsSecurityRemoved: true } +0ms
  cypress-verbose:proxy:http GET https://stagingdl.dnanex.us/F/D/52f423Q4Y5Vzbg48Pz2g4yf5XJbqz30G2Kpjzv7Y?inline&... IncomingResponse injecting into HTML +1ms
  cypress-verbose:proxy:http GET https://stagingdl.dnanex.us/F/D/52f423Q4Y5Vzbg48Pz2g4yf5XJbqz30G2Kpjzv7Y?inline&... IncomingResponse ensuring resStream is plaintext +0ms
  cypress-verbose:proxy:http GET https://stagingdl.dnanex.us/F/D/52f423Q4Y5Vzbg48Pz2g4yf5XJbqz30G2Kpjzv7Y?inline&... IncomingResponse inferred charset from response { httpCharset: '' } +0ms
  cypress-verbose:proxy:http GET https://content-autofill.googleapis.com/v1/pages/ChVDaHJvbWUvMTA1LjAuNTE5NS4xMjU... IncomingResponse received response { req: { method: 'GET', proxiedUrl: 'https://content-autofill.googleapis.com/v1/pages/ChVDaHJvbWUvMTA1LjAuNTE5NS4xMjUSEAmXltQwspL6IBIFDZFhlU4=?alt=proto', headers: { host: 'content-autofill.googleapis.com', connection: 'keep-alive', 'x-goog-encode-response-if-executable': 'base64', 'x-goog-api-key': 'AIzaSyBOti4mM-6x9WDnZIjIeyEU21OpBXqWBgw', 'x-client-data': 'CIq2yQEIpbbJAQjEtskBCKmdygEItorLAQiWocsBCP6czAEIl7zMAQjFvMwBCOLLzAEIqtzMAQjE4cwBCMfmzAEI/ubMAQjY6MwB', 'sec-fetch-site': 'none', 'sec-fetch-mode': 'no-cors', 'sec-fetch-dest': 'empty', 'user-agent': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/105.0.0.0 Safari/537.36', 'accept-encoding': 'gzip', 'accept-language': 'en-GB,en-US;q=0.9,en;q=0.8' } }, incomingRes: { headers: { 'cache-control': 'private,max-age=604800', 'content-type': 'text/plain', 'x-goog-safety-encoding': 'base64', 'x-goog-safety-content-type': 'application/x-protobuf', vary: 'Origin, X-Origin, Referer', 'content-encoding': 'gzip', date: 'Thu, 20 Oct 2022 17:32:04 GMT', server: 'ESF', 'content-length': '36', 'x-xss-protection': '0', 'x-frame-options': 'SAMEORIGIN', 'x-content-type-options': 'nosniff', 'alt-svc': 'h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"' }, statusCode: 200 } } +14ms
  cypress-verbose:proxy:http GET https://content-autofill.googleapis.com/v1/pages/ChVDaHJvbWUvMTA1LjAuNTE5NS4xMjU... IncomingResponse determine injection +0ms
  cypress-verbose:proxy:http GET https://content-autofill.googleapis.com/v1/pages/ChVDaHJvbWUvMTA1LjAuNTE5NS4xMjU... IncomingResponse - no injection (not html) +1ms
  cypress-verbose:proxy:http GET https://content-autofill.googleapis.com/v1/pages/ChVDaHJvbWUvMTA1LjAuNTE5NS4xMjU... IncomingResponse injection levels: { isInitial: false, wantsInjection: false, wantsSecurityRemoved: false } +0ms
GET /v1/pages/ChVDaHJvbWUvMTA1LjAuNTE5NS4xMjUSEAmXltQwspL6IBIFDZFhlU4=?alt=proto 200 559.900 ms - -
GET /F/D/52f423Q4Y5Vzbg48Pz2g4yf5XJbqz30G2Kpjzv7Y?inline&dxDomain=https://staging.dnanexus.com 200 150.257 ms - -
GET /__/assets/FiraCode-VariableFont_wght.16865a4d.ttf 200 1.847 ms - -
  cypress-verbose:proxy:http POST https://play.google.com/log?format=json&hasfast=true&authuser=0 IncomingRequest proxying request { req: { method: 'POST', proxiedUrl: 'https://play.google.com/log?format=json&hasfast=true&authuser=0', headers: { host: 'play.google.com', connection: 'keep-alive', 'content-length': '426', 'sec-ch-ua': '"Google Chrome";v="105", "Not)A;Brand";v="8", "Chromium";v="105"', 'content-type': 'application/x-www-form-urlencoded;charset=UTF-8', 'x-goog-authuser': '0', 'sec-ch-ua-mobile': '?0', 'user-agent': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/105.0.0.0 Safari/537.36', 'sec-ch-ua-platform': '"macOS"', accept: '*/*', 'x-client-data': 'CIq2yQEIpbbJAQjEtskBCKmdygEIlqHLAQj+nMwBCJe8zAEIxbzMAQjH5swB', 'sec-fetch-site': 'none', 'sec-fetch-mode': 'cors', 'sec-fetch-dest': 'empty', 'accept-encoding': 'gzip, deflate, br', 'accept-language': 'en-GB,en-US;q=0.9,en;q=0.8' } } } +14s
  cypress-verbose:proxy:http POST https://play.google.com/log?format=json&hasfast=true&authuser=0 IncomingRequest should cookies be attached to request?: false +1ms
  cypress-verbose:proxy:http POST https://play.google.com/log?format=json&hasfast=true&authuser=0 IncomingRequest waiting for prerequest +0ms
  cypress-verbose:proxy:http POST https://play.google.com/log?format=json&hasfast=true&authuser=0 IncomingRequest Never received pre-request for request POST-https://play.google.com/log?format=json&hasfast=true&authuser=0 after waiting 500ms. Continuing without one. +504ms
  cypress-verbose:proxy:http POST https://play.google.com/log?format=json&hasfast=true&authuser=0 IncomingResponse received response { req: { method: 'POST', proxiedUrl: 'https://play.google.com/log?format=json&hasfast=true&authuser=0', headers: { host: 'play.google.com', connection: 'keep-alive', 'content-length': '426', 'sec-ch-ua': '"Google Chrome";v="105", "Not)A;Brand";v="8", "Chromium";v="105"', 'content-type': 'application/x-www-form-urlencoded;charset=UTF-8', 'x-goog-authuser': '0', 'sec-ch-ua-mobile': '?0', 'user-agent': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/105.0.0.0 Safari/537.36', 'sec-ch-ua-platform': '"macOS"', accept: '*/*', 'x-client-data': 'CIq2yQEIpbbJAQjEtskBCKmdygEIlqHLAQj+nMwBCJe8zAEIxbzMAQjH5swB', 'sec-fetch-site': 'none', 'sec-fetch-mode': 'cors', 'sec-fetch-dest': 'empty', 'accept-encoding': 'gzip', 'accept-language': 'en-GB,en-US;q=0.9,en;q=0.8' } }, incomingRes: { headers: { p3p: 'CP="This is not a P3P policy! See g.co/p3phelp for more info."', 'access-control-allow-origin': 'http://play.google.com', 'cross-origin-resource-policy': 'cross-origin', 'access-control-allow-credentials': 'true', 'access-control-allow-headers': 'X-Playlog-Web', 'content-type': 'text/plain; charset=UTF-8', 'content-encoding': 'gzip', date: 'Thu, 20 Oct 2022 17:32:19 GMT', server: 'Playlog', 'cache-control': 'private', 'x-xss-protection': '0', 'x-frame-options': 'SAMEORIGIN', 'set-cookie': [Array], 'alt-svc': 'h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"', expires: 'Thu, 20 Oct 2022 17:32:19 GMT', 'transfer-encoding': 'chunked' }, statusCode: 200 } } +142ms
  cypress-verbose:proxy:http POST https://play.google.com/log?format=json&hasfast=true&authuser=0 IncomingResponse determine injection +1ms
  cypress-verbose:proxy:http POST https://play.google.com/log?format=json&hasfast=true&authuser=0 IncomingResponse - no injection (not html) +0ms
  cypress-verbose:proxy:http POST https://play.google.com/log?format=json&hasfast=true&authuser=0 IncomingResponse injection levels: { isInitial: false, wantsInjection: false, wantsSecurityRemoved: false } +1ms
  cypress-verbose:proxy:http POST https://play.google.com/log?format=json&hasfast=true&authuser=0 IncomingResponse not setting cookie for https://play.google.com/log?format=json&hasfast=true&authuser=0 with simulated top https://stagingdl.dnanex.us/F/D/52f423Q4Y5Vzbg48Pz2g4yf5XJbqz30G2Kpjzv7Y?inline&dxDomain=https://staging.dnanexus.com for undefined:undefined, cookie: NID=511=WYliJpW5Kq49DGk-MvVEa5r3fJBnw1zLHfpybaj9bBXhJJYMwEX1Q87tmwSlWeoIYNzyMZJ3VM5S6CBQItdxrXGXBNtCitxT-eOtFaWtbjXclYhZDK53gYcVoiy8Gc3Jx9VJyksFKgetIc252q5K4VGAtMTMk8ZNr3cp07GxSu0; Expires=Fri, 21 Apr 2023 17:32:19 GMT; Domain=google.com; Path=/; Secure; HttpOnly +3ms
POST /log?format=json&hasfast=true&authuser=0 200 652.728 ms - -

@kryshenp
Copy link
Author

Yeah, I see the "fullCrossOrigin" in my output.

@AtofStryker
Copy link
Contributor

@kryshenp looks like it is injection on text/plain, which doesn't seem right. Thank you for sending those over!

@cypress-bot
Copy link
Contributor

cypress-bot bot commented Nov 1, 2022

The code for this is done in cypress-io/cypress#24414, but has yet to be released.
We'll update this issue and reference the changelog when it's released.

@cypress-bot
Copy link
Contributor

cypress-bot bot commented Nov 10, 2022

Released in 11.0.0.

This comment thread has been locked. If you are still experiencing this issue after upgrading to
Cypress v11.0.0, please open a new issue.

@cypress-bot cypress-bot bot locked as resolved and limited conversation to collaborators Nov 10, 2022
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Labels
Reproducible Can be reproduced type: bug type: unexpected behavior User expected result, but got another
Projects
None yet
Development

Successfully merging a pull request may close this issue.

2 participants