Storybook 7 won't work as a CircleCI artifact

ndelangen · May 4, 2023, 2:33pm

Storybook maintainer here
We have an interesting issue report relating to storybook as a artifact in CircleCI.
I’d love for someone at CircleCI to have a peek at it, and possible offer some suggestions.

github.com/storybookjs/storybook

[Bug]: ESM imports incompatible with script redirection (circleCI)

opened 08:26PM - 03 Apr 23 UTC

jlowcs

bug compatibility with other tools

### Describe the bug We are currently deploying our generated storybook files a…s a artifacts on circleCI so we can test our doc. It is working well with storybook 6.x, but it is not working with storybook 7.x anymore. The reason is the following: - when loading a script from the generated `index.html` page from the `output.circle-artifacts.com` domain, we are being redirected to a AWS domain (e.g. `circleci-tasks-prod.s3.us-east-1.amazonaws.com`), using a url containing a bunch of query parameters so that the query can return the actual script without an actual authentication - some of those scripts are ESM scripts being [copied as-is](https://github.com/storybookjs/storybook/blob/4a37372f649e85e7a0c35b0493da016dbb5dee17/code/lib/builder-manager/src/index.ts#L234) from the @storybook dependency files - since some of the storybook files are importing in a relative manner (e.g. `import xyz from './some-path.mjs`), it results in trying to import from that same AWS domain, but without the necessary query parameters, so we're getting a 403 A solution would be to actually compile those ESM files and transform those paths and rely on webpack's [automatic public path](https://webpack.js.org/guides/public-path/#automatic-publicpath) handling to use the initial url of the script instead of the one after redirection. ### To Reproduce Hard to reproduce I guess... unless you have access to circleCI. ### System _No response_ ### Additional context _No response_

TLDR:

When static built of storybook is saved as an artifact, it can be opened, but some query parameters get added (for authentication?).
sub request (ESM modules/JS code) don’t get this?
causing 403 responses

for ease of reference, here’s the full text of the issue reported at the storybook repository:

We are currently deploying our generated storybook files as a artifacts on circleCI so we can test our doc.

It is working well with storybook 6.x, but it is not working with storybook 7.x anymore.

The reason is the following:

when loading a script from the generated index.html page from the output.circle-artifacts.com domain, we are being redirected to a AWS domain (e.g. circleci-tasks-prod.s3.us-east-1.amazonaws.com), using a url containing a bunch of query parameters so that the query can return the actual script without an actual authentication
some of those scripts are ESM scripts being copied as-is from the @storybook dependency files
since some of the storybook files are importing in a relative manner (e.g. import xyz from './some-path.mjs), it results in trying to import from that same AWS domain, but without the necessary query parameters, so we’re getting a 403

A solution would be to actually compile those ESM files and transform those paths and rely on webpack’s automatic public path handling to use the initial url of the script instead of the one after redirection.

jerdog · May 4, 2023, 6:38pm

Thanks for posting here @ndelangen . I checked with our team, We haven’t made a change around this particular process, and the core of the issue is something to do with a change in file type from v6 - v7.

Are you starting to do any process different? Creation of the .mjs files?

Edit: We do have some people looking into ways that we’ve seen this work to share.

jerdog · May 5, 2023, 6:51pm

@ndelangen I wanted to give you a quick update - we’re looking into enabling proxying Javascript in artifacts as a way to avoid what you’re experiencing and doing a security review. I will keep you updated.

unickq · May 9, 2023, 9:22am

Does it mean the Playwright trace artifact will work too?

jerdog · May 11, 2023, 4:12pm

Depending on what the artifact is @unickq - do you have a link or error to share?

Edit: What we changed will fix any project that was failing to load nested JavaScript, i.e. using JavaScript modules.

jerdog · May 11, 2023, 4:13pm

@ndelangen We have added proxying javascript artifacts, and you should be good now! Let me know if you have any questions.

https://output.circle-artifacts.com/output/job/4f1c0e54-94ef-47cd-9a39-d802471dc12f/artifacts/0/storybook-static/index.html

jerdog · May 15, 2023, 1:53pm

FYI @unickq - the change we made helped with Playwright as well

github.com/microsoft/playwright

[BUG] Playwright fails to load traces in CircleCI

opened 04:15PM - 15 Oct 22 UTC

closed 04:19PM - 24 Oct 22 UTC

mtlynch

triaging

**Context:** - Playwright Version: mcr.microsoft.com/playwright:v1.26.0-focal …- Operating System: Linux (on CircleCI) - Node.js version: v16.17.0 - Browser: Chromium - Extra: CircleCI ## System: - OS: Linux 5.4 Ubuntu 20.04.5 LTS (Focal Fossa) - Memory: 14.47 GB / 16.01 GB - Container: Yes ## Binaries: - Node: 16.17.0 - /usr/bin/node - Yarn: 1.22.19 - /usr/bin/yarn - npm: 8.15.0 - /usr/bin/npm ## Languages: - Bash: 5.0.17 - /usr/bin/bash **Code Snippet** I have a [CircleCI config](https://github.com/mtlynch/picoshare/blob/b7a78186cf8cb5249becdff888a24c81fb4f9b8d/.circleci/config.yml#L90L108) that runs Playwright and stores the `playwright-report` folder as an artifact in CircleCI: ```yaml e2e: docker: - image: mcr.microsoft.com/playwright:v1.26.0-focal environment: NODE_ENV: development steps: - checkout - attach_workspace: at: ./ - run: name: Install dependencies command: npm install - run: name: Run playwright tests command: npx playwright test - store_artifacts: path: playwright-report - store_artifacts: path: e2e-results ``` **Describe the bug** I can view some parts of the Playwright test report, but when I click on a particular trace, the JS engine fails with this error: ```text Uncaught (in promise) DOMException: Failed to register a ServiceWorker for scope ('https://output.circle-artifacts.com/output/job/9cd422e0-2ce5-4635-b4ea-0fb2c13ecfd8/artifacts/0/playwright-report/trace/') with script ('https://output.circle-artifacts.com/output/job/9cd422e0-2ce5-4635-b4ea-0fb2c13ecfd8/artifacts/0/playwright-report/trace/sw.bundle.js'): The script resource is behind a redirect, which is disallowed. ``` If I run `python3 -m http.server` in the `playwright-report` folder on my local machine, I can view and navigate the test results fine. There seems to be something about serving it over TLS or on CircleCI specifically that causes the report to fail to load. Example CircleCI job: https://app.circleci.com/pipelines/github/mtlynch/picoshare/1038/workflows/4c86580c-1abc-4124-b228-6bfc36a51dca/jobs/4993

system · May 22, 2023, 1:54pm

This topic was automatically closed 7 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Yarn package error Build Environment	4	4077	March 9, 2019
Unable to migrate circleci from 1.0 To 2.0 Feedback & Bug Reports circle-yml	20	3003	October 3, 2019
Build failed: The engine "node" is incompatible with this module. Expected version "12.x". Got "14.15.0" Build Environment node	6	21685	October 28, 2020
All builds fail with 'Circle Bug' Build Environment workflow , config , 2.0 , contexts	2	3107	June 18, 2018
Yarn build failure: old version finding incompatible packages Build Environment nodejs , yarn	11	16768	September 13, 2018

Storybook 7 won't work as a CircleCI artifact

for ease of reference, here’s the full text of the issue reported at the storybook repository:

Related Topics