vrr/spawn
2
0
Fork 0
mirror of https://github.com/OpenRouterTeam/spawn.git synced 2026-05-13 15:40:55 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 10
spawn/cli/src/__tests__/aws.test.ts
A ac7fa14c61
fix: cache AWS credentials to avoid re-prompting on retry (#1841) (#1852) 
After a successful interactive credential entry, credentials are now
saved to ~/.config/spawn/aws.json (chmod 600). On the next run, cached
credentials are loaded and validated before prompting again.

Supports --reauth flag / SPAWN_REAUTH=1 to force fresh credential entry.

Fixes #1841

Agent: issue-fixer

Co-authored-by: B <6723574+louisgv@users.noreply.github.com>
Co-authored-by: Claude Sonnet 4.5 <noreply@anthropic.com>
2026-02-24 00:53:34 -05:00

264 lines
9.5 KiB
TypeScript
Raw Blame History

import { describe, it, expect, beforeEach, afterEach } from "bun:test";
import { unlinkSync, existsSync, readFileSync } from "node:fs";
import { BUNDLES, DEFAULT_BUNDLE, loadCredsFromConfig, saveCredsToConfig, AWS_CONFIG_PATH } from "../aws/aws";
import { resolveAgent, agents } from "../aws/agents";
import { generateEnvConfig } from "../shared/agents";
// ─── Credential caching tests ────────────────────────────────────────────────
describe("aws/credential-cache", () => {
let originalConfig: string | null = null;
beforeEach(() => {
if (existsSync(AWS_CONFIG_PATH)) {
originalConfig = readFileSync(AWS_CONFIG_PATH, "utf-8");
} else {
originalConfig = null;
}
});
afterEach(() => {
if (originalConfig !== null) {
Bun.write(AWS_CONFIG_PATH, originalConfig);
} else if (existsSync(AWS_CONFIG_PATH)) {
unlinkSync(AWS_CONFIG_PATH);
}
});
describe("loadCredsFromConfig", () => {
it("returns null when config file does not exist", () => {
if (existsSync(AWS_CONFIG_PATH)) { unlinkSync(AWS_CONFIG_PATH); }
expect(loadCredsFromConfig()).toBeNull();
});
it("returns null for malformed JSON", async () => {
await Bun.write(AWS_CONFIG_PATH, "not-json", { mode: 0o600 });
expect(loadCredsFromConfig()).toBeNull();
});
it("returns null when accessKeyId is missing", async () => {
await Bun.write(AWS_CONFIG_PATH, JSON.stringify({ secretAccessKey: "secretsecretkey1234" }), { mode: 0o600 });
expect(loadCredsFromConfig()).toBeNull();
});
it("returns null when secretAccessKey is too short", async () => {
await Bun.write(
AWS_CONFIG_PATH,
JSON.stringify({ accessKeyId: "AKIAIOSFODNN7EXAMPLE", secretAccessKey: "tooshort" }),
{ mode: 0o600 },
);
expect(loadCredsFromConfig()).toBeNull();
});
it("returns null for invalid accessKeyId format", async () => {
await Bun.write(
AWS_CONFIG_PATH,
JSON.stringify({ accessKeyId: "invalid key!", secretAccessKey: "wJalrXUtnFEMI/K7MDENG/bPxRfiCY" }),
{ mode: 0o600 },
);
expect(loadCredsFromConfig()).toBeNull();
});
it("returns credentials for valid data", async () => {
await Bun.write(
AWS_CONFIG_PATH,
JSON.stringify({ accessKeyId: "AKIAIOSFODNN7EXAMPLE", secretAccessKey: "wJalrXUtnFEMI/K7MDENG/bPxRfiCY", region: "eu-west-1" }),
{ mode: 0o600 },
);
const result = loadCredsFromConfig();
expect(result).not.toBeNull();
expect(result?.accessKeyId).toBe("AKIAIOSFODNN7EXAMPLE");
expect(result?.secretAccessKey).toBe("wJalrXUtnFEMI/K7MDENG/bPxRfiCY");
expect(result?.region).toBe("eu-west-1");
});
it("defaults region to us-east-1 when not stored", async () => {
await Bun.write(
AWS_CONFIG_PATH,
JSON.stringify({ accessKeyId: "AKIAIOSFODNN7EXAMPLE", secretAccessKey: "wJalrXUtnFEMI/K7MDENG/bPxRfiCY" }),
{ mode: 0o600 },
);
const result = loadCredsFromConfig();
expect(result?.region).toBe("us-east-1");
});
});
describe("saveCredsToConfig", () => {
it("writes credentials to config file", async () => {
if (existsSync(AWS_CONFIG_PATH)) { unlinkSync(AWS_CONFIG_PATH); }
await saveCredsToConfig("AKIAIOSFODNN7EXAMPLE", "wJalrXUtnFEMI/K7MDENG/bPxRfiCY", "us-west-2");
const result = loadCredsFromConfig();
expect(result?.accessKeyId).toBe("AKIAIOSFODNN7EXAMPLE");
expect(result?.secretAccessKey).toBe("wJalrXUtnFEMI/K7MDENG/bPxRfiCY");
expect(result?.region).toBe("us-west-2");
});
it("round-trips credentials with special characters in secret key", async () => {
if (existsSync(AWS_CONFIG_PATH)) { unlinkSync(AWS_CONFIG_PATH); }
const secret = "wJalrXUtnFEMI/K7MDENG+bPxRfiCY==";
await saveCredsToConfig("AKIAIOSFODNN7EXAMPLE", secret, "ap-northeast-1");
const result = loadCredsFromConfig();
expect(result?.secretAccessKey).toBe(secret);
});
it("overwrites existing config file", async () => {
await saveCredsToConfig("AKIAIOSFODNN7EXAMPLE", "wJalrXUtnFEMI/K7MDENG/bPxRfiCY", "us-east-1");
await saveCredsToConfig("AKIAIOSFODNN7EXAMPLE2", "newSecretKeyNewSecretKey1234567", "eu-central-1");
const result = loadCredsFromConfig();
expect(result?.accessKeyId).toBe("AKIAIOSFODNN7EXAMPLE2");
expect(result?.region).toBe("eu-central-1");
});
});
});
// ─── aws.ts tests ────────────────────────────────────────────────────────────
describe("aws/aws", () => {
describe("BUNDLES", () => {
it("has multiple bundle tiers", () => {
expect(BUNDLES.length).toBeGreaterThanOrEqual(5);
});
it("all bundles have required fields", () => {
for (const b of BUNDLES) {
expect(b.id).toBeTruthy();
expect(b.label).toBeTruthy();
}
});
it("bundle IDs follow naming convention", () => {
for (const b of BUNDLES) {
expect(b.id).toMatch(/_3_0$/);
}
});
it("labels include pricing info", () => {
for (const b of BUNDLES) {
expect(b.label).toContain("$");
expect(b.label).toContain("/mo");
}
});
});
describe("DEFAULT_BUNDLE", () => {
it("is nano_3_0", () => {
expect(DEFAULT_BUNDLE.id).toBe("nano_3_0");
});
it("references a valid bundle", () => {
const found = BUNDLES.find((b) => b.id === DEFAULT_BUNDLE.id);
expect(found).toBeDefined();
});
});
});
// ─── agents.ts tests ─────────────────────────────────────────────────────────
describe("aws/agents", () => {
describe("resolveAgent", () => {
it("resolves known agents by name", () => {
expect(resolveAgent("claude").name).toBe("Claude Code");
expect(resolveAgent("codex").name).toBe("Codex CLI");
expect(resolveAgent("openclaw").name).toBe("OpenClaw");
expect(resolveAgent("opencode").name).toBe("OpenCode");
expect(resolveAgent("kilocode").name).toBe("Kilo Code");
expect(resolveAgent("zeroclaw").name).toBe("ZeroClaw");
});
it("is case-insensitive", () => {
expect(resolveAgent("Claude").name).toBe("Claude Code");
expect(resolveAgent("CODEX").name).toBe("Codex CLI");
});
it("throws for unknown agents", () => {
expect(() => resolveAgent("nonexistent")).toThrow("Unknown agent");
});
});
describe("agent configs", () => {
it("all agents have required fields", () => {
for (const [key, agent] of Object.entries(agents)) {
expect(agent.name).toBeTruthy();
expect(typeof agent.install).toBe("function");
expect(typeof agent.envVars).toBe("function");
expect(typeof agent.launchCmd).toBe("function");
}
});
it("claude envVars include OpenRouter config", () => {
const vars = agents.claude.envVars("sk-test");
expect(vars).toContain("OPENROUTER_API_KEY=sk-test");
expect(vars).toContain("ANTHROPIC_BASE_URL=https://openrouter.ai/api");
expect(vars).toContain("ANTHROPIC_AUTH_TOKEN=sk-test");
});
it("openclaw has model prompt enabled", () => {
expect(agents.openclaw.modelPrompt).toBe(true);
expect(agents.openclaw.modelDefault).toBe("openrouter/auto");
});
it("kilocode envVars include provider type", () => {
const vars = agents.kilocode.envVars("sk-test");
expect(vars).toContain("KILO_PROVIDER_TYPE=openrouter");
expect(vars).toContain("KILO_OPEN_ROUTER_API_KEY=sk-test");
});
it("zeroclaw envVars include provider", () => {
const vars = agents.zeroclaw.envVars("sk-test");
expect(vars).toContain("ZEROCLAW_PROVIDER=openrouter");
});
it("claude launch command sources .spawnrc", () => {
expect(agents.claude.launchCmd()).toContain("source ~/.spawnrc");
expect(agents.claude.launchCmd()).toContain("claude");
});
it("codex launch command launches codex", () => {
expect(agents.codex.launchCmd()).toContain("codex");
});
it("openclaw launch command launches openclaw tui", () => {
expect(agents.openclaw.launchCmd()).toContain("openclaw tui");
});
it("zeroclaw launch command sources cargo env", () => {
expect(agents.zeroclaw.launchCmd()).toContain("source ~/.cargo/env");
expect(agents.zeroclaw.launchCmd()).toContain("zeroclaw agent");
});
});
describe("generateEnvConfig (shared)", () => {
it("generates export lines", () => {
const result = generateEnvConfig([
"OPENROUTER_API_KEY=sk-test",
"FOO=bar",
]);
expect(result).toContain("export IS_SANDBOX='1'");
expect(result).toContain("export OPENROUTER_API_KEY='sk-test'");
expect(result).toContain("export FOO='bar'");
});
it("escapes single quotes in values", () => {
const result = generateEnvConfig([
"FOO=it's",
]);
expect(result).toContain("export FOO='it'\\''s'");
});
it("rejects invalid env var names", () => {
const result = generateEnvConfig([
"invalid-name=val",
]);
expect(result).not.toContain("invalid-name");
});
it("allows empty values", () => {
const result = generateEnvConfig([
"ANTHROPIC_API_KEY=",
]);
expect(result).toContain("export ANTHROPIC_API_KEY=''");
});
});
});
Reference in a new issue View git blame Copy permalink