Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Support cancel rendering requests on client cancellation #588

Merged
merged 9 commits into from
Jan 10, 2025
+247 −165
Merged

Support cancel rendering requests on client cancellation #588

Changes from 1 commit
Commits
Show all changes
9 commits
Select commit Hold shift + click to select a range
1258fcc
start adding abortcontroller
AgnesToulet Dec 17, 2024
dfa3cdf
refactor
AgnesToulet Dec 17, 2024
e13ecad
fix default rendering mode
AgnesToulet Dec 17, 2024
0eff67d
fix plugin mode
AgnesToulet Dec 17, 2024
85adb73
fix abortController usage for csv
AgnesToulet Jan 9, 2025
e81cfad
improve log
AgnesToulet Jan 9, 2025
76f61a7
fix csv download + improve logs
AgnesToulet Jan 9, 2025
7797ee5
remove duplicated code to removePageListeneres
AgnesToulet Jan 9, 2025
3864992
remove duplicated cleanup
AgnesToulet Jan 9, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
Prev Previous commit
Next Next commit
refactor
@AgnesToulet
AgnesToulet committed Dec 17, 2024
commit dfa3cdfe6f831af3bc36a8b3594f60ec8d39c4d4
219 changes: 112 additions & 107 deletions src/browser/browser.ts
View file
Original file line number Diff line number Diff line change
@@ -9,7 +9,7 @@ import * as Jimp from 'jimp';
import { Logger } from '../logger';
import { RenderingConfig } from '../config/rendering';
import { ImageRenderOptions, RenderOptions } from '../types';
import { TimeoutError } from './error';
import { StepTimeoutError } from './error';
import { getPDFOptionsFromURL } from './pdf';

export interface Metrics {
@@ -267,15 +267,15 @@ export class Browser {
let page: puppeteer.Page | undefined = undefined;

try {
browser = await this.withTimingMetrics<puppeteer.Browser>(() => {
browser = await this.withTimingMetrics<puppeteer.Browser>('launch', () => {
this.validateImageOptions(options);
const launcherOptions = this.getLauncherOptions(options);
return puppeteer.launch(launcherOptions);
}, 'launch');
});

page = await this.withTimingMetrics<puppeteer.Page>(() => {
page = await this.withTimingMetrics<puppeteer.Page>('newPage', () => {
return browser!.newPage();
}, 'newPage');
});

signal.addEventListener('abort', () => {
if (page) {
@@ -310,103 +310,71 @@ export class Browser {
};

async takeScreenshot(page: puppeteer.Page, options: ImageRenderOptions, signal: AbortSignal): Promise<RenderResponse> {
try {
await this.withTimingMetrics(async () => {
if (this.config.verboseLogging) {
this.log.debug(
'Setting viewport for page',
'width',
options.width.toString(),
'height',
options.height.toString(),
'deviceScaleFactor',
options.deviceScaleFactor
);
}

await this.setViewport(page, options);
await this.preparePage(page, options);
await this.setTimezone(page, options);
await this.performStep('prepare', options.url, signal, async () => {
if (this.config.verboseLogging) {
this.log.debug(
'Setting viewport for page',
'width',
options.width.toString(),
'height',
options.height.toString(),
'deviceScaleFactor',
options.deviceScaleFactor
);
}

if (this.config.verboseLogging) {
this.log.debug('Moving mouse on page', 'x', options.width, 'y', options.height);
}
return page.mouse.move(+options.width, +options.height);
}, 'prepare');
await this.setViewport(page, options);
await this.preparePage(page, options);
await this.setTimezone(page, options);

// await new Promise((resolve) => setTimeout(resolve, 8000));
// this.log.error('signal status', 'is aborted', signal.aborted);
if (this.config.verboseLogging) {
this.log.debug('Moving mouse on page', 'x', options.width, 'y', options.height);
}
return page.mouse.move(+options.width, +options.height);
});

const res = await this.withTimingMetrics(() => {
if (this.config.verboseLogging) {
this.log.debug('Navigating and waiting for all network requests to finish', 'url', options.url);
}
await this.performStep('navigate', options.url, signal, async () => {
if (this.config.verboseLogging) {
this.log.debug('Navigating and waiting for all network requests to finish', 'url', options.url);
}

return page.goto(options.url, { waitUntil: 'networkidle0', timeout: options.timeout * 1000, signal });
}, 'navigate');
this.log.error('signal status', 'is aborted', signal.aborted, 'res', res?.url);
} catch (err) {
this.log.error('Error while trying to prepare page for screenshot', 'url', options.url, 'err', err.stack);
throw new TimeoutError('navigate');
}
await page.goto(options.url, { waitUntil: 'networkidle0', timeout: options.timeout * 1000, signal });

Check failure

Code scanning / CodeQL

Server-side request forgery Critical

The
URL
Loading
of this request depends on a
user-provided value
Loading
.

Copilot Autofix AI about 2 months ago

To fix the problem, we need to ensure that the user input is validated and sanitized before being used in the page.goto method. One effective way to do this is to use an allow-list of acceptable URLs or domains. This way, we can ensure that only trusted URLs are used in the request.

  1. Create an allow-list of acceptable URLs or domains.
  2. Validate the user input against this allow-list.
  3. If the input is valid, proceed with the request; otherwise, reject the request with an appropriate error message.
Suggested changeset 1
src/service/http-server.ts
Outside changed files

Autofix patch

Autofix patch
Run the following command in your local git repository to apply this patch
cat << 'EOF' | git apply
diff --git a/src/service/http-server.ts b/src/service/http-server.ts
--- a/src/service/http-server.ts
+++ b/src/service/http-server.ts
@@ -181,2 +181,3 @@
 
+    const allowedUrls = ['https://example.com', 'https://another-example.com'];
     if (!req.query.url) {
@@ -184,2 +185,5 @@
     }
+    if (!allowedUrls.includes(req.query.url)) {
+      throw boom.badRequest('Invalid url parameter');
+    }
 
EOF
@@ -181,2 +181,3 @@

const allowedUrls = ['https://example.com', 'https://another-example.com'];
if (!req.query.url) {
@@ -184,2 +185,5 @@
}
if (!allowedUrls.includes(req.query.url)) {
throw boom.badRequest('Invalid url parameter');
}

Copilot is powered by AI and may make mistakes. Always verify output.

Provide additional feedback

Please help us improve GitHub Copilot by sharing more details about this comment.
});

let scrollResult: DashboardScrollingResult = {
scrolled: false,
};

if (options.fullPageImage) {
try {
scrollResult = await this.withTimingMetrics(() => {
return this.scrollToLoadAllPanels(page, options, signal);
}, 'dashboardScrolling');
} catch (err) {
this.log.error('Error while scrolling to load all panels', 'url', options.url, 'err', err.stack);
throw new TimeoutError('dashboardScrolling');
const res = await this.performStep<DashboardScrollingResult>('dashboardScrolling', options.url, signal, () => {
return this.scrollToLoadAllPanels(page, options, signal);
});

if (res) {
scrollResult = res;
}
}

const isPDF = options.encoding === 'pdf';
await this.performStep('panelsRendered', options.url, signal, async () => {
if (this.config.verboseLogging) {
this.log.debug('Waiting for dashboard/panel to load', 'timeout', `${options.timeout}s`);
}

try {
await this.withTimingMetrics(async () => {
if (this.config.verboseLogging) {
this.log.debug('Waiting for dashboard/panel to load', 'timeout', `${options.timeout}s`);
}

await waitForQueriesAndVisualizations(page, options, signal);
}, 'panelsRendered');
} catch (err) {
const windowInfo = await page.evaluate(() => {
return {
usingScenes: window.__grafanaSceneContext !== null,
queryCount: window.__grafanaRunningQueryCount,
};
});
this.log.error(
'Error while waiting for the panels to load',
'url',
options.url,
'usingScenes',
windowInfo.usingScenes,
'queryCount',
windowInfo.queryCount,
'err',
err.stack
);
throw new TimeoutError('panelsRendered');
}
await waitForQueriesAndVisualizations(page, options, signal);
});

if (!options.filePath) {
options.filePath = uniqueFilename(os.tmpdir()) + (isPDF ? '.pdf' : '.png');
}

await this.setPageZoomLevel(page, this.config.pageZoomLevel);

if (this.config.verboseLogging) {
this.log.debug('Taking screenshot', 'filePath', options.filePath);
}
await this.performStep('screenshot', options.url, signal, async () => {
if (this.config.verboseLogging) {
this.log.debug('Taking screenshot', 'filePath', options.filePath);
}

await this.withTimingMetrics(async () => {
if (scrollResult.scrolled) {
await this.setViewport(page, {
...options,
@@ -437,14 +405,14 @@ export class Browser {
}

return page.screenshot({ path: options.filePath, fullPage: options.fullPageImage, captureBeyondViewport: false });
}, 'screenshot');
});

if (options.scaleImage && !isPDF) {
const scaled = `${options.filePath}_${Date.now()}_scaled.png`;
const w = +options.width / options.scaleImage;
const h = +options.height / options.scaleImage;
await this.performStep('imageResize', options.url, signal, async () => {
const scaled = `${options.filePath}_${Date.now()}_scaled.png`;
const w = +options.width / options.scaleImage!;
const h = +options.height / options.scaleImage!;

await this.withTimingMetrics(async () => {
const file = await Jimp.read(options.filePath);
await file
.resize(w, h)
@@ -454,7 +422,7 @@ export class Browser {
.writeAsync(scaled);

fs.renameSync(scaled, options.filePath);
}, 'imageResize');
});
}

return { filePath: options.filePath };
@@ -495,42 +463,51 @@ export class Browser {
}

async exportCSV(page: any, options: RenderOptions, signal: AbortSignal): Promise<RenderCSVResponse> {
await this.preparePage(page, options);
await this.setTimezone(page, options);
await this.performStep('prepare', options.url, signal, async () => {
await this.preparePage(page, options);
await this.setTimezone(page, options);

await page._client().send('Page.setDownloadBehavior', { behavior: 'allow', downloadPath: downloadPath });
});

let downloadFilePath = '';
const downloadPath = uniqueFilename(os.tmpdir());
fs.mkdirSync(downloadPath);
const watcher = chokidar.watch(downloadPath);
let downloadFilePath = '';
watcher.on('add', (file) => {
if (!file.endsWith('.crdownload')) {
downloadFilePath = file;
}
});

await page._client().send('Page.setDownloadBehavior', { behavior: 'allow', downloadPath: downloadPath });

if (this.config.verboseLogging) {
this.log.debug('Navigating and waiting for all network requests to finish', 'url', options.url);
}
await this.performStep('navigateCSV', options.url, signal, async () => {
if (this.config.verboseLogging) {
this.log.debug('Navigating and waiting for all network requests to finish', 'url', options.url);
}

await page.goto(options.url, { waitUntil: 'networkidle0', timeout: options.timeout * 1000, signal });
await page.goto(options.url, { waitUntil: 'networkidle0', timeout: options.timeout * 1000, signal });

Check failure

Code scanning / CodeQL

Server-side request forgery Critical

The
URL
Loading
of this request depends on a
user-provided value
Loading
.
});

if (this.config.verboseLogging) {
this.log.debug('Waiting for download to end');
}
await this.performStep('downloadCSV', options.url, signal, async () => {
if (this.config.verboseLogging) {
this.log.debug('Waiting for download to end');
}

const startDate = Date.now();
while (Date.now() - startDate <= options.timeout * 1000) {
if (downloadFilePath !== '') {
break;
const startDate = Date.now();
while (Date.now() - startDate <= options.timeout * 1000) {
if (signal.aborted) {
throw new StepTimeoutError('downloadCSV');
}
if (downloadFilePath !== '') {
break;
}
await new Promise((resolve) => setTimeout(resolve, 500));
}
await new Promise((resolve) => setTimeout(resolve, 500));
}

if (downloadFilePath === '') {
throw new TimeoutError(`CSV download`);
}
if (downloadFilePath === '') {
throw new StepTimeoutError('downloadCSV');
}
});

await watcher.close();

@@ -545,7 +522,35 @@ export class Browser {
return { filePath, fileName: path.basename(downloadFilePath) };
}

async withTimingMetrics<T>(callback: () => Promise<T>, step: string): Promise<T> {
async performStep<T>(step: string, url: string, signal: AbortSignal, callback: () => Promise<T>): Promise<T | undefined> {
if (this.config.verboseLogging) {
this.log.debug('Step begins', 'step', step, 'url', url);
}

try {
const res = await this.withTimingMetrics(step, callback);

if (signal.aborted) {
this.log.warn('Signal aborted while performing step', 'step', step, 'url', url);
throw new StepTimeoutError(step);
}

if (this.config.verboseLogging) {
this.log.debug('Step ends', 'step', step, 'url', url);
}

return res;
} catch (err) {
if (!(err instanceof puppeteer.TimeoutError)) {
this.log.error('Error while performing step', 'step', step, 'url', url);
throw err;
}

this.log.error('Error while performing step', 'step', step, 'url', url, 'err', err.stack);
}
}

async withTimingMetrics<T>(step: string, callback: () => Promise<T>): Promise<T> {
if (this.config.timingMetrics) {
const endTimer = this.metrics.durationHistogram.startTimer({ step });
const res = await callback();
2 changes: 1 addition & 1 deletion src/browser/error.ts
View file
Original file line number Diff line number Diff line change
@@ -1,4 +1,4 @@
export class TimeoutError extends Error {
export class StepTimeoutError extends Error {
constructor(step) {
super('Timeout error while performing step: ' + step);
this.name = 'TimeoutError';
4 changes: 2 additions & 2 deletions src/browser/reusable.ts
View file
Original file line number Diff line number Diff line change
@@ -21,11 +21,11 @@ export class ReusableBrowser extends Browser {
let page: puppeteer.Page | undefined;

try {
page = await this.withTimingMetrics<puppeteer.Page>(async () => {
page = await this.withTimingMetrics<puppeteer.Page>('newPage', async () => {
this.validateImageOptions(options);
context = await this.browser.createBrowserContext();
return context.newPage();
}, 'newPage');
});

if (options.timezone) {
// set timezone