Skip to content
/ editor-extensions Public

Browser extensions for the toddle editor

License

MIT license
1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

toddledev/editor-extensions

BranchesTags

Repository files navigation

Editor Extensions

The toddle editor previews toddle pages/components in an iframe. In order to work with authenticated APIs, it's necessary to run a browser extension that helps setting cookies in the iframe. This is normally restricted by the browser since the editor and the iframe run on 2 different origins.

This repository holds code for the relevant browser extensions - 1 for Chrome and 1 for Firefox.

Features

The extension(s) are responsible for 3 things:

  1. Setting cookies in the iframe when (fetch) requests return Set-Cookie headers
  2. Removing cookies in the iframe when (fetch) requests return Set-Cookie headers with an empty value for a cookie
  3. Copying cookies from the editor --> the iframe. This is useful when working with authenticated APIs where you're already logged in for instance.

Testing unpublished extensions

Chrome

  1. Build the Chrome extension using bun run build:chrome
  2. Open the "Extensions" page
  3. Click "Load unpacked"
  4. Select the chrome/ folder in the dist/ folder
  5. Click "Inspect views service worker" to see its output (console.logs, exceptions etc.)

Firefox

  1. Build the Firefox extension using bun run build:firefox
  2. Open about:debugging#/runtime/this-firefox in Firefox
  3. Click "Load Temporary Add-on"
  4. Select the manifest from the dist/ folder
  5. Click "Inspect" on the installed extension to see its output (console.logs, exceptions etc.)

Testing extension functionality

To test the different aspects of the extensions, it's recommended to:

  1. Run an app that sets an access_token (or any cookie) using the Set session cookies action. Verify the cookie is actually set for the iframe (on the *.toddle.site domain)
  2. Call the /.toddle/logout endpoint to clear the access_token cookie, and verify the cookie actually gets removed from the iframe
  3. After logging in outside of the iframe on your preview domain (*.toddle.site), verify that you're still logged in when opening the project in the editor

For now, we use this project for testing: https://erik_auth.toddle.site/ Everyone should be able to sign up and test login/logout on the login screen.

Limitations

  • Currently, setting/removing cookies in the extensions doesn't block network requests. Hence, if you remove a cookie and immediately request your session, the session call will still include the cookie.

Roadmap

  • Allow blocking requests while adding/removing cookies to ensure future requests have the correct cookies
  • Add a Safari extension

Contributing

Feel free to open an issue or a PR if you find a bug/feature that you feel we should address. You can always reach out on Discord

About

Browser extensions for the toddle editor

Resources

Readme

License

MIT license
Activity
Custom properties

Stars

1 star

Watchers

3 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages