Skip to content

Latest commit

 

History

History
 
 

auth

Folders and files

NameName
Last commit message
Last commit date

parent directory

..
 
 
 
 
 
 
 
 
 
 

Running Lighthouse on Authenticated Pages with Puppeteer

If you just want to view the code for using Lighthouse with Puppeteer, see example-lh-auth.js.

See the integration test docs for an example of how to run Lighthouse in your Jest tests on pages in both an authenticated and non-authenticated session.

The Example Site

There are two pages on the site:

  1. / - the homepage
  2. /dashboard

The homepage shows the login form, but only to users that are not signed in.

The dashboard shows a secret to users that are logged in, but shows an error to users that are not.

The server responds with different HTML for each of these pages and session states.

(Optional) To run the server:

# be in root lighthouse directory
yarn # install global project deps
yarn build-report
cd docs/recipes/auth
yarn # install deps related to just this recipe
yarn start # start the server on http://localhost:10632

Now that the server is started, let's login with Puppeteer and then run Lighthouse:

node example-lh-auth.js

What does this do? Read on....

Process

Puppeteer - a browser automation tool - can be used to programatically setup a session.

  1. Launch a new browser.
  2. Navigate to the login page.
  3. Fill and submit the login form.
  4. Run Lighthouse using the same browser.

First, launch Chrome:

// This port will be used by Lighthouse later. The specific port is arbitrary.
const PORT = 8041;
const browser = await puppeteer.launch({
  args: [`--remote-debugging-port=${PORT}`],
  // Optional, if you want to see the tests in action.
  headless: false,
  slowMo: 50,
});

Navigate to the login form:

const page = await browser.newPage();
await page.goto('http://localhost:10632');

Given a login form like this:

<form action="/login" method="post">
  <label>
    Email:
    <input type="email" name="email">
  </label>
  <label>
    Password:
    <input type="password" name="password">
  </label>
  <input type="submit">
</form>

Direct Puppeteer to fill and submit it:

const emailInput = await page.$('input[type="email"]');
await emailInput.type('[email protected]');
const passwordInput = await page.$('input[type="password"]');
await passwordInput.type('password');
await Promise.all([
  page.$eval('.login-form', form => form.submit()),
  page.waitForNavigation(),
]);

At this point, the session that Puppeteer is managing is now logged in.

Close the page used to log in:

await page.close();
// The page has been closed, but the browser still has the relevant session.

Now run Lighthouse, using the same port as before:

// The local server is running on port 10632.
const url = 'http://localhost:10632/dashboard';
// Direct Lighthouse to use the same port.
const result = await lighthouse(url, {port: PORT, disableStorageReset: true});
const lhr = result.lhr;

// Direct Puppeteer to close the browser - we're done with it.
await browser.close();

All of the above is done in the example script. To run:

# make sure server is running (see beginning of recipe) ...
node example-lh-auth.js # login via puppeteer and run lighthouse

Alternatives

NOTE: We strongly recommend your tests use the form-based login flow above instead. Only directly set the token like this as a last resort.

If you don't have user credentials to login but you do have direct access to a token for authentication, you can instead directly set a cookie.

await page.setCookie({
  name: 'myAuthCookie',
  value: '<auth token goes here>',
  url: 'http://localhost:10632/dashboard',
});