[eas-json] validate EAS Submit inputs better #2198
Conversation
szdziedzic
requested review from
brentvatne,
ide,
sjchmiela,
radoslawkrzemien and
randomhajile
|
/changelog-entry chore Validate EAS Submit inputs better |
|
Size Change: -999 B (0%) Total Size: 51.5 MB
|
Codecov ReportAll modified and coverable lines are covered by tests ✅
Additional details and impacted files@@ Coverage Diff @@
## main #2198 +/- ##
==========================================
+ Coverage 54.14% 54.16% +0.03%
==========================================
Files 516 516
Lines 18798 18808 +10
Branches 3769 3772 +3
==========================================
+ Hits 10176 10186 +10
Misses 8601 8601
Partials 21 21 ☔ View full report in Codecov by Sentry. |
There was a problem hiding this comment.
Looks ok. A nice improvement could be moving from Joi to Zod and using Zod-inferred types to ensure we never pass non-resolved/non-validated credentials to the build.
Like, we could say:
const ResolvedProfile = z.object({
...,
resolved: z.boolean().default(true),
Using z.infer<typeof ResolvedProfile> in a function that accepts the profile as input would ensure on type level we never forget to resolve, because the argument would need to have the resolved: true property which it could only get when resolving.
This can probably also be achieved with Joi and manual typing, I'm ok with that too.
| @@ -111,6 +111,11 @@ export default class IosSubmitCommand { | |||
| const envAppSpecificPassword = getenv.string('EXPO_APPLE_APP_SPECIFIC_PASSWORD', ''); | |||
|
|
|||
| if (envAppSpecificPassword) { | |||
| if (!/^[a-z]{4}-[a-z]{4}-[a-z]{4}-[a-z]{4}$/.test(envAppSpecificPassword)) { | |||
| throw new Error( | |||
| 'EXPO_APPLE_APP_SPECIFIC_PASSWORD must be in the format XXXX-XXXX-XXXX-XXXX, where X is a lowercase letter.' | |||
There was a problem hiding this comment.
Ugh, do we need to depend on this? Like, is this value susceptible to being used for a hack?
There was a problem hiding this comment.
I don't think so, but the format for this value is well known, so why not validate it?
packages/eas-cli/src/submit/ios/__tests__/IosSubmitCommand-test.ts
Outdated
Show resolved
Hide resolved
| @@ -99,7 +99,7 @@ function mergeProfiles<T extends Platform>( | |||
|
|
|||
| export function getDefaultProfile<T extends Platform>(platform: T): SubmitProfile<T> { | |||
| const Schema = | |||
| platform === Platform.ANDROID ? AndroidSubmitProfileSchema : IosSubmitProfileSchema; | |||
| platform === Platform.ANDROID ? AndroidSubmitProfileSchema : UnresolvedIosSubmitProfileSchema; | |||
There was a problem hiding this comment.
Can we add a comment why we can use Unresolved here?
There was a problem hiding this comment.
I don't think it matters which one we use here. I just used the same one which was used until now. I didn't think about it too much.
There was a problem hiding this comment.
Ah, because Joi will only check and throw if there is a value. If it's undefined it will do nothing. Let's use Resolved then?
…t.ts Co-authored-by: Stanisław Chmiela <[email protected]>
|
I agree that |
| ascApiKeyId: Joi.string() | ||
| .regex(/^[\dA-Z]{10}$/) | ||
| .message( | ||
| 'Invalid Apple App Store Connect API Key ID ("ascApiKeyId") was specified. It should consist of 10 upper case letters or digits. Example: "AB32CDE81F". Learn more: https://expo.fyi/creating-asc-api-key.' |
There was a problem hiding this comment.
| 'Invalid Apple App Store Connect API Key ID ("ascApiKeyId") was specified. It should consist of 10 upper case letters or digits. Example: "AB32CDE81F". Learn more: https://expo.fyi/creating-asc-api-key.' | |
| 'Invalid Apple App Store Connect API Key ID ("ascApiKeyId") was specified. It should consist of 10 uppercase letters or digits. Example: "AB32CDE81F". Learn more: https://expo.fyi/creating-asc-api-key.' |
| appleId: Joi.string() | ||
| .email() | ||
| .message( | ||
| 'Invalid Apple ID was specified. It should be a valid email address. Example: "[email protected]".' |
There was a problem hiding this comment.
Prefer to use domains that are guaranteed not to be used in examples. example.com and the .example TLD are valid for examples.
| 'Invalid Apple ID was specified. It should be a valid email address. Example: "name@domain.com".' | |
| 'Invalid Apple ID was specified. It should be a valid email address. Example: "name@example.com".' |
| appleTeamId: Joi.string() | ||
| .regex(/^[\dA-Z]{10}$/) | ||
| .message( | ||
| 'Invalid Apple Team ID was specified. It should consist of 10 letters or digits. Example: "AB32CDE81F".' |
There was a problem hiding this comment.
| 'Invalid Apple Team ID was specified. It should consist of 10 letters or digits. Example: "AB32CDE81F".' | |
| 'Invalid Apple Team ID was specified. It should consist of 10 uppercase letters or digits. Example: "AB32CDE81F".' |
|
✅ Thank you for adding the changelog entry! |
szdziedzic
deleted the
@szdziedzic/sanitize-values-in-eas-submit-profile-better
branch
Why
We want to perform stricter validation of EAS Submit inputs.
How
Use Joi schema for validation
Test Plan
Automated tests
Submit test app manually