I’ve invested quite some time into writing a script suite for a scale test. I’m following industry standard procedure and went with a hybrid solution. The headless-browser scenario works fine and I’m struggling with the HTTP only one.
The user flow starts with a login from which I have to retrieve token and sessionID as well. Checking login on Chrome dev-tools, I can see that the POST login request returns 302 status and also 2 Set-Cookie objects in the response header.
I think, I’ve tried everything. I can only get the token back.
Here is the function for the login (resides in a separate file and imported in the main script):
export function httpApiLogin(httpClient, userFlowId, username, password) {
let logPrefixLogin = getLogPrefix(userFlowId, __ITER, __VU, "Login API");
const url = `${URL_BASE}${URL_PATH_LOGIN}`;
const payload = JSON.stringify({
username: username,
password: password,
});
let params = {};
// Landing page, let's get the arccsrftoken
try {
const res = httpClient.get(url);
// Check if 'arccsrftoken' is set
if (res.cookies['arccsrftoken']) {
const csrfToken = res.cookies['arccsrftoken'][0].value;
// console.debug(`arccsrftoken: ${csrfToken}`);
params = {
headers: {
'Content-Type': 'application/json',
'Cookie': `arccsrftoken=${csrfToken}`,
'X-CSRFToken': csrfToken
},
redirects: 0
};
} else {
console.error(`${logPrefixLogin} arccsrftoken not found in cookies`);
}
} catch (e) {
console.error(`${logPrefixLogin} Error fetching arccsrftoken: ${e}`);
}
try {
const res = httpClient.post(url, payload, params);
// no sessionID in it only token
//let jar = http.cookieJar();
//let cookies = jar.cookiesForURL(res.url);
//console.log("CC::"+JSON.stringify(cookies));
//console.log(`LOGIN COOKIES ${JSON.stringify(cookies)}`);
const success = check(res, {
'Login successful': (r) => r.status === 200,
});
console.log(`${logPrefixLogin} request status: ${res.status}`);
console.log(`${logPrefixLogin} COOKIES: - - - - - - - - `);
// Access all cookies from the response
for (const name in res.cookies) {
if (res.cookies.hasOwnProperty(name)) {
// Each cookie name can have multiple values in an array
res.cookies[name].forEach(cookie => {
console.log(`Cookie: ${name}=${cookie.value}`);
// Access other cookie properties if needed
console.log(`Domain: ${cookie.domain}, Path: ${cookie.path}`);
});
}
}
console.log(`${logPrefixLogin} RAW COOKIES: - - - - - - - - `);
// Get all raw set-cookie headers (returns an array of values)
const setCookieHeaders = res.headers['Set-Cookie'];
// Process each set-cookie header
if (setCookieHeaders) {
if (Array.isArray(setCookieHeaders)) {
setCookieHeaders.forEach(cookieHeader => {
console.log(`Set-Cookie header: ${cookieHeader}`);
});
} else {
console.log(`Set-Cookie header: ${setCookieHeaders}`);
}
}
console.log(`${logPrefixLogin} COOKIE JAR: - - - - - - - - `);
// Get the VU cookie jar
const jar = httpClient.cookieJar();
// Get all cookies for the URL
const cookies = jar.cookiesForURL(res.url);
// Log all cookies
for (const name in cookies) {
console.log(`Cookie in jar: ${name}=${cookies[name][0]}`);
}
return {
success: success,
response: res
};
} catch (e) {
console.error(`${logPrefixLogin} Error logging in: ${e}`);
return { success: false };
}
}
And this is how it is called from the main script:
export default function() {
// User flow id generation for better logging
const userFlowId = getUserFlowId();
const randomUser = users[Math.floor(Math.random() * users.length)];
let requestStart = new Date().getTime();
const responseHttpApiLogin = httpApiLogin(http, userFlowId, randomUser.username, randomUser.password);
...
}
Could it be that my problem is similar to this? Get content of httponly cookie in k6-browser response Although, this one seems to be resolved.
I can’t imagine a tool like this doesn’t support the retrieval of all Set-Cookie objects. I must be missing something here. Any help appreciated. Thanks!
1 post - 1 participant