starred/yaak
1
0
Fork 0
mirror of https://github.com/mountain-loop/yaak.git synced 2026-04-24 01:38:26 +02:00
Code Issues 8 Packages Projects Releases 10 Wiki Activity

Merge pull request #245

Browse Source 
* Attach cookies to WS Upgrade

* Merge branch 'main' into main

* Move reqwest_cookie_store to workspace dep
This commit is contained in:
Carter Costic
2025-07-23 16:14:15 -04:00
committed by GitHub
parent 28630bbb6c
commit f1acb3c925
4 changed files with 64 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
src-tauri/Cargo.lock generated
View File

@@ -8103,6 +8103,7 @@ dependencies = [
"futures-util", "futures-util",
"log", "log",
"md5 0.7.0", "md5 0.7.0",
"reqwest_cookie_store",
"serde", "serde",
"serde_json", "serde_json",
"tauri", "tauri",

3
src-tauri/Cargo.toml
View File

@@ -50,7 +50,7 @@ md5 = "0.8.0"
mime_guess = "2.0.5" mime_guess = "2.0.5"
rand = "0.9.0" rand = "0.9.0"
reqwest = { workspace = true, features = ["multipart", "cookies", "gzip", "brotli", "deflate", "json", "rustls-tls-manual-roots-no-provider", "socks"] } reqwest = { workspace = true, features = ["multipart", "cookies", "gzip", "brotli", "deflate", "json", "rustls-tls-manual-roots-no-provider", "socks"] }
reqwest_cookie_store = "0.8.0" reqwest_cookie_store = { workspace = true }
serde = { workspace = true, features = ["derive"] } serde = { workspace = true, features = ["derive"] }
serde_json = { workspace = true, features = ["raw_value"] } serde_json = { workspace = true, features = ["raw_value"] }
tauri = { workspace = true, features = ["devtools", "protocol-asset"] } tauri = { workspace = true, features = ["devtools", "protocol-asset"] }
@@ -97,6 +97,7 @@ tauri-plugin-shell = "2.3.0"
tokio = "1.45.1" tokio = "1.45.1"
thiserror = "2.0.12" thiserror = "2.0.12"
ts-rs = "11.0.1" ts-rs = "11.0.1"
reqwest_cookie_store = "0.8.0"
rustls = { version = "0.23.27", default-features = false } rustls = { version = "0.23.27", default-features = false }
rustls-platform-verifier = "0.6.0" rustls-platform-verifier = "0.6.0"
sha2 = "0.10.9" sha2 = "0.10.9"

1
src-tauri/yaak-ws/Cargo.toml
View File

@@ -9,6 +9,7 @@ publish = false
futures-util = "0.3.31" futures-util = "0.3.31"
log = "0.4.20" log = "0.4.20"
md5 = "0.7.0" md5 = "0.7.0"
reqwest_cookie_store = { workspace = true }
serde = { workspace = true, features = ["derive"] } serde = { workspace = true, features = ["derive"] }
serde_json = { workspace = true } serde_json = { workspace = true }
tauri = { workspace = true } tauri = { workspace = true }

66
src-tauri/yaak-ws/src/commands.rs
View File

@@ -2,6 +2,7 @@ use crate::error::Result;
use crate::manager::WebsocketManager; use crate::manager::WebsocketManager;
use crate::render::render_websocket_request; use crate::render::render_websocket_request;
use crate::resolve::resolve_websocket_request; use crate::resolve::resolve_websocket_request;
use log::debug;
use log::{info, warn}; use log::{info, warn};
use std::str::FromStr; use std::str::FromStr;
use tauri::http::{HeaderMap, HeaderName}; use tauri::http::{HeaderMap, HeaderName};
@@ -300,11 +301,44 @@ pub(crate) async fn connect<R: Runtime>(
} }
} }
// TODO: Handle cookies // Add cookies to WS HTTP Upgrade
let _cookie_jar = match cookie_jar_id { if let Some(id) = cookie_jar_id {
Some(id) => Some(app_handle.db().get_cookie_jar(id)?), let cookie_jar = app_handle.db().get_cookie_jar(id)?;
None => None,
}; let cookies = cookie_jar
.cookies
.iter()
.filter_map(|cookie| {
// HACK: same as in src-tauri/src/http_request.rs
let json_cookie = serde_json::to_value(cookie).ok()?;
match serde_json::from_value(json_cookie) {
Ok(cookie) => Some(Ok(cookie)),
Err(_e) => None,
}
})
.collect::<Vec<Result<_>>>();
let store = reqwest_cookie_store::CookieStore::from_cookies(cookies, true)?;
// Convert WS URL -> HTTP URL bc reqwest_cookie_store's `get_request_values`
// strictly matches based on Path/HttpOnly/Secure attributes even though WS upgrades are HTTP requests
let http_url = convert_ws_url_to_http(&url);
let pairs: Vec<_> = store.get_request_values(&http_url).collect();
debug!("Inserting {} cookies into WS upgrade to {}", pairs.len(), url);
let cookie_header_value = pairs
.into_iter()
.map(|(name, value)| format!("{}={}", name, value))
.collect::<Vec<_>>()
.join("; ");
if !cookie_header_value.is_empty() {
headers.insert(
HeaderName::from_static("cookie"),
HeaderValue::from_str(&cookie_header_value).unwrap(),
);
}
}
let (receive_tx, mut receive_rx) = mpsc::channel::<Message>(128); let (receive_tx, mut receive_rx) = mpsc::channel::<Message>(128);
let mut ws_manager = ws_manager.lock().await; let mut ws_manager = ws_manager.lock().await;
@@ -337,7 +371,7 @@ pub(crate) async fn connect<R: Runtime>(
Err(e) => { Err(e) => {
return Ok(app_handle.db().upsert_websocket_connection( return Ok(app_handle.db().upsert_websocket_connection(
&WebsocketConnection { &WebsocketConnection {
error: Some(format!("{e:?}")), error: Some(e.to_string()),
state: WebsocketConnectionState::Closed, state: WebsocketConnectionState::Closed,
..connection ..connection
}, },
@@ -448,3 +482,23 @@ pub(crate) async fn connect<R: Runtime>(
Ok(connection) Ok(connection)
} }
/// Convert WS URL to HTTP URL for cookie filtering
/// WebSocket upgrade requests are HTTP requests initially, so HttpOnly cookies should apply
fn convert_ws_url_to_http(ws_url: &Url) -> Url {
let mut http_url = ws_url.clone();
match ws_url.scheme() {
"ws" => {
http_url.set_scheme("http").expect("Failed to set http scheme");
}
"wss" => {
http_url.set_scheme("https").expect("Failed to set https scheme");
}
_ => {
// Already HTTP/HTTPS, no conversion needed
}
}
http_url
}