mirror of
https://github.com/rzmk/learnhouse.git
synced 2025-12-19 04:19:25 +00:00
Add LearnHouse Deployment Isolation Toolkit and debugging tools
- Introduced comprehensive documentation for diagnosing and fixing deployment isolation issues between DEV and LIVE instances. - Implemented enhanced debug API endpoints for deployment verification, URL hardcoding detection, cookie isolation testing, and session configuration checks. - Created scripts for visual demonstration of cookie isolation, enhanced debugging deployment, and verification of NextAuth cookie isolation. - Developed a master isolation verification script to run all isolation checks in sequence and summarize results. - Added detailed README and environment variable guidelines for proper deployment isolation.
This commit is contained in:
WhiteX
rzmk
parent
1a1398a378
commit
ac03952dd1
13 changed files with 1883 additions and 1 deletions
94
test-nextauth-cookie-isolation.sh
Executable file
94
test-nextauth-cookie-isolation.sh
Executable file
|
|
@ -0,0 +1,94 @@
|
|||
#!/bin/bash
|
||||
|
||||
# NextAuth Cookie Isolation Test Script
|
||||
# Tests whether the NextAuth session cookies are properly isolated between deployments
|
||||
|
||||
echo "=============================================================="
|
||||
echo "NextAuth Cookie Isolation Test"
|
||||
echo "=============================================================="
|
||||
|
||||
# Define deployment URLs
|
||||
DEV_URL="http://adr-lms.whitex.cloud"
|
||||
LIVE_URL="http://edu.adradviser.ro"
|
||||
|
||||
# Colors for output
|
||||
GREEN='\033[0;32m'
|
||||
RED='\033[0;31m'
|
||||
YELLOW='\033[0;33m'
|
||||
BLUE='\033[0;34m'
|
||||
NC='\033[0m' # No Color
|
||||
|
||||
# Function to check if curl is installed
|
||||
if ! command -v curl &> /dev/null; then
|
||||
echo -e "${RED}Error: curl is not installed. Please install curl first.${NC}"
|
||||
exit 1
|
||||
fi
|
||||
|
||||
# Function to check if jq is installed (for prettier output)
|
||||
if ! command -v jq &> /dev/null; then
|
||||
echo -e "${YELLOW}Warning: jq is not installed. JSON output will not be formatted.${NC}"
|
||||
JQ_CMD="cat"
|
||||
else
|
||||
JQ_CMD="jq"
|
||||
fi
|
||||
|
||||
echo -e "${BLUE}Step 1: Checking NextAuth configuration in DEV environment...${NC}"
|
||||
curl -s "${DEV_URL}/api/v1/debug/session" | $JQ_CMD
|
||||
echo
|
||||
|
||||
echo -e "${BLUE}Step 2: Checking NextAuth configuration in LIVE environment...${NC}"
|
||||
curl -s "${LIVE_URL}/api/v1/debug/session" | $JQ_CMD
|
||||
echo
|
||||
|
||||
echo -e "${BLUE}Step 3: Testing cookie isolation with test cookies...${NC}"
|
||||
echo "Setting test cookies on DEV deployment..."
|
||||
curl -s -c /tmp/dev_cookies.txt "${DEV_URL}/api/v1/debug/cookies" > /dev/null
|
||||
echo "Setting test cookies on LIVE deployment..."
|
||||
curl -s -c /tmp/live_cookies.txt "${LIVE_URL}/api/v1/debug/cookies" > /dev/null
|
||||
|
||||
echo -e "${BLUE}Step 4: Checking for cookie isolation...${NC}"
|
||||
echo "Sending DEV cookies to LIVE deployment..."
|
||||
DEV_COOKIES_ON_LIVE=$(curl -s -b /tmp/dev_cookies.txt "${LIVE_URL}/api/v1/debug/cookies" | grep -o "isolation-test-DEV")
|
||||
echo "Sending LIVE cookies to DEV deployment..."
|
||||
LIVE_COOKIES_ON_DEV=$(curl -s -b /tmp/live_cookies.txt "${DEV_URL}/api/v1/debug/cookies" | grep -o "isolation-test-LIVE")
|
||||
|
||||
echo
|
||||
|
||||
if [[ -z "$DEV_COOKIES_ON_LIVE" && -z "$LIVE_COOKIES_ON_DEV" ]]; then
|
||||
echo -e "${GREEN}SUCCESS: Cookie isolation is working correctly!${NC}"
|
||||
echo "The DEV cookies are not visible to the LIVE deployment, and vice versa."
|
||||
echo "This means that sessions should be properly isolated."
|
||||
else
|
||||
echo -e "${RED}FAILURE: Cookie isolation is NOT working!${NC}"
|
||||
|
||||
if [[ ! -z "$DEV_COOKIES_ON_LIVE" ]]; then
|
||||
echo "- DEV cookies are visible to the LIVE deployment"
|
||||
fi
|
||||
|
||||
if [[ ! -z "$LIVE_COOKIES_ON_DEV" ]]; then
|
||||
echo "- LIVE cookies are visible to the DEV deployment"
|
||||
fi
|
||||
|
||||
echo
|
||||
echo "This means session contamination will occur between deployments."
|
||||
echo "Please ensure each deployment has a unique cookie domain set with:"
|
||||
echo " LEARNHOUSE_COOKIE_DOMAIN=adr-lms.whitex.cloud (for DEV)"
|
||||
echo " LEARNHOUSE_COOKIE_DOMAIN=edu.adradviser.ro (for LIVE)"
|
||||
fi
|
||||
|
||||
echo
|
||||
echo -e "${BLUE}Step 5: Checking domain and cookie settings...${NC}"
|
||||
echo "DEV settings:"
|
||||
curl -s "${DEV_URL}/api/v1/debug/deployment" | grep -E "cookie_domain|api_domain" | $JQ_CMD
|
||||
echo
|
||||
echo "LIVE settings:"
|
||||
curl -s "${LIVE_URL}/api/v1/debug/deployment" | grep -E "cookie_domain|api_domain" | $JQ_CMD
|
||||
|
||||
echo
|
||||
echo -e "${BLUE}Cleaning up temporary files...${NC}"
|
||||
rm -f /tmp/dev_cookies.txt /tmp/live_cookies.txt
|
||||
|
||||
echo
|
||||
echo "=============================================================="
|
||||
echo "Test complete!"
|
||||
echo "=============================================================="
|
||||
Loading…
Add table
Add a link
Reference in a new issue