fix: validate global auth artifacts and ensure resource cleanup

phyllis-sy-wu · phyllis-sy-wu · commit 0e57009a1884 · 2026-04-16T12:48:58.000-04:00
diff --git a/packages/e2e/setup/auth.ts b/packages/e2e/setup/auth.ts
@@ -39,6 +39,15 @@ export const authFixture = browserFixture.extend<{}, {authLogin: void}>({
         // Copy pre-authenticated session from global setup
         log.log(env, 'copying session from global setup')
 
+        if (
+          !fs.existsSync(authConfigDir) ||
+          !fs.existsSync(authDataDir) ||
+          !fs.existsSync(authStateDir) ||
+          !fs.existsSync(authCacheDir)
+        ) {
+          throw new Error('Global auth dirs missing — global setup may not have completed successfully')
+        }
+
         fs.cpSync(authConfigDir, env.processEnv.XDG_CONFIG_HOME!, {recursive: true})
         fs.cpSync(authDataDir, env.processEnv.XDG_DATA_HOME!, {recursive: true})
         fs.cpSync(authStateDir, env.processEnv.XDG_STATE_HOME!, {recursive: true})
diff --git a/packages/e2e/setup/browser.ts b/packages/e2e/setup/browser.ts
@@ -1,6 +1,7 @@
 import {cliFixture} from './cli.js'
 import {BROWSER_TIMEOUT} from './constants.js'
 import {chromium, type Page} from '@playwright/test'
+import * as fs from 'fs'
 
 // ---------------------------------------------------------------------------
 // Shared browser context type
@@ -29,11 +30,12 @@ export const browserFixture = cliFixture.extend<{}, {browserPage: Page}>({
     async ({}, use) => {
       const browser = await chromium.launch({headless: !process.env.E2E_HEADED})
       const storageStatePath = process.env.E2E_BROWSER_STATE_PATH
+      const hasValidStorageState = storageStatePath && fs.existsSync(storageStatePath)
       const context = await browser.newContext({
         extraHTTPHeaders: {
           'X-Shopify-Loadtest-Bf8d22e7-120e-4b5b-906c-39ca9d5499a9': 'true',
         },
-        ...(storageStatePath ? {storageState: storageStatePath} : {}),
+        ...(hasValidStorageState ? {storageState: storageStatePath} : {}),
       })
       context.setDefaultTimeout(BROWSER_TIMEOUT.max)
       context.setDefaultNavigationTimeout(BROWSER_TIMEOUT.max)
diff --git a/packages/e2e/setup/global-auth.ts b/packages/e2e/setup/global-auth.ts
@@ -78,71 +78,77 @@ export default async function globalSetup() {
     if (debug) process.stdout.write(data)
   })
 
-  await waitForText(() => output, 'Open this link to start the auth process', CLI_TIMEOUT.short)
-
-  const stripped = stripAnsi(output)
-  const urlMatch = stripped.match(/https:\/\/accounts\.shopify\.com\S+/)
-  if (!urlMatch) {
-    throw new Error(`[e2e] global-auth: could not find login URL in output:\n${stripped}`)
-  }
-
-  // Complete login in a headless browser
-  const browser = await chromium.launch({headless: !process.env.E2E_HEADED})
-  const context = await browser.newContext({
-    extraHTTPHeaders: {
-      'X-Shopify-Loadtest-Bf8d22e7-120e-4b5b-906c-39ca9d5499a9': 'true',
-    },
-  })
-  const page = await context.newPage()
-
-  await completeLogin(page, urlMatch[0], email, password)
+  const storageStatePath = path.join(tmpBase, 'browser-storage-state.json')
 
-  await waitForText(() => output, 'Logged in', BROWSER_TIMEOUT.max)
   try {
-    ptyProcess.kill()
-    // eslint-disable-next-line no-catch-all/no-catch-all
-  } catch (_error) {
-    // Process may already be dead
-  }
+    await waitForText(() => output, 'Open this link to start the auth process', CLI_TIMEOUT.short)
 
-  // Visit admin.shopify.com and dev.shopify.com to establish session cookies
-  // (completeLogin only authenticates on accounts.shopify.com)
-  const orgId = (process.env.E2E_ORG_ID ?? '').trim()
-  if (orgId) {
-    // Establish admin.shopify.com cookies
-    await page.goto('https://admin.shopify.com/', {waitUntil: 'domcontentloaded'})
-    await page.waitForTimeout(BROWSER_TIMEOUT.medium)
-
-    // Handle account picker if shown
-    if (isAccountsShopifyUrl(page.url())) {
-      const accountButton = page.locator(`text=${email}`).first()
-      if (await accountButton.isVisible({timeout: BROWSER_TIMEOUT.long}).catch(() => false)) {
-        await accountButton.click()
-        await page.waitForTimeout(BROWSER_TIMEOUT.medium)
-      }
+    const stripped = stripAnsi(output)
+    const urlMatch = stripped.match(/https:\/\/accounts\.shopify\.com\S+/)
+    if (!urlMatch) {
+      throw new Error(`[e2e] global-auth: could not find login URL in output:\n${stripped}`)
     }
 
-    // Establish dev.shopify.com cookies
-    await page.goto(`https://dev.shopify.com/dashboard/${orgId}/apps`, {waitUntil: 'domcontentloaded'})
-    await page.waitForTimeout(BROWSER_TIMEOUT.medium)
+    // Complete login in a headless browser
+    const browser = await chromium.launch({headless: !process.env.E2E_HEADED})
+    try {
+      const context = await browser.newContext({
+        extraHTTPHeaders: {
+          'X-Shopify-Loadtest-Bf8d22e7-120e-4b5b-906c-39ca9d5499a9': 'true',
+        },
+      })
+      const page = await context.newPage()
+
+      await completeLogin(page, urlMatch[0], email, password)
+
+      await waitForText(() => output, 'Logged in', BROWSER_TIMEOUT.max)
+
+      // Visit admin.shopify.com and dev.shopify.com to establish session cookies
+      // (completeLogin only authenticates on accounts.shopify.com)
+      const orgId = (process.env.E2E_ORG_ID ?? '').trim()
+      if (orgId) {
+        // Establish admin.shopify.com cookies
+        await page.goto('https://admin.shopify.com/', {waitUntil: 'domcontentloaded'})
+        await page.waitForTimeout(BROWSER_TIMEOUT.medium)
 
-    if (isAccountsShopifyUrl(page.url())) {
-      const accountButton = page.locator(`text=${email}`).first()
-      if (await accountButton.isVisible({timeout: BROWSER_TIMEOUT.long}).catch(() => false)) {
-        await accountButton.click()
+        // Handle account picker if shown
+        if (isAccountsShopifyUrl(page.url())) {
+          const accountButton = page.locator(`text=${email}`).first()
+          if (await accountButton.isVisible({timeout: BROWSER_TIMEOUT.long}).catch(() => false)) {
+            await accountButton.click()
+            await page.waitForTimeout(BROWSER_TIMEOUT.medium)
+          }
+        }
+
+        // Establish dev.shopify.com cookies
+        await page.goto(`https://dev.shopify.com/dashboard/${orgId}/apps`, {waitUntil: 'domcontentloaded'})
         await page.waitForTimeout(BROWSER_TIMEOUT.medium)
+
+        if (isAccountsShopifyUrl(page.url())) {
+          const accountButton = page.locator(`text=${email}`).first()
+          if (await accountButton.isVisible({timeout: BROWSER_TIMEOUT.long}).catch(() => false)) {
+            await accountButton.click()
+            await page.waitForTimeout(BROWSER_TIMEOUT.medium)
+          }
+        }
+
+        globalLog('auth', 'browser sessions established for admin + dev dashboard')
       }
-    }
 
-    globalLog('auth', 'browser sessions established for admin + dev dashboard')
+      // Save browser cookies/storage so workers can reuse the session
+      await context.storageState({path: storageStatePath})
+    } finally {
+      await browser.close()
+    }
+  } finally {
+    try {
+      ptyProcess.kill()
+      // eslint-disable-next-line no-catch-all/no-catch-all
+    } catch (_error) {
+      // Process may already be dead
+    }
   }
 
-  // Save browser cookies/storage so workers can reuse the session
-  // Now includes cookies for both accounts.shopify.com AND admin.shopify.com
-  const storageStatePath = path.join(tmpBase, 'browser-storage-state.json')
-  await context.storageState({path: storageStatePath})
-  await browser.close()
-
   // Store paths so workers can copy CLI auth + load browser state
   /* eslint-disable require-atomic-updates */
   process.env.E2E_AUTH_CONFIG_DIR = xdgEnv.XDG_CONFIG_HOME
