chore: inject the Authlify Token in netlify dev

[anmonteiro]

🎉 Thanks for submitting a pull request! 🎉

Summary

• Reported by @sgrove
• mirrors what was done in https://github.com/netlify/proxy/pull/719 for local dev:
  • in builds, inject the ONEGRAPH_AUTHLIFY_TOKEN variable
  • in function invocations, adds authlifyToken to the event

---

For us to review and ship your PR efficiently, please perform the following steps:

• Open a bug/issue before writing your code 🧑‍💻. This ensures we can discuss the changes and get feedback from everyone that should be involved. If you`re fixing a typo or something that`s on fire 🔥 (e.g. incident related), you can skip this step.
• Read the contribution guidelines 📖. This ensures your code follows our style guide and
  passes our tests.
• Update or add tests (if any source code was changed or added) 🧪
• Update or add documentation (if features were changed or added) 📝
• Make sure the status checks below are successful ✅

A picture of a cute animal (not mandatory, but encouraged)

[github-actions]

📊 Benchmark results

Comparing with fc1c991

Package size: 362 MB

⬆️ 0.14% increase vs. fc1c991

^  360 MB  360 MB  360 MB  360 MB  360 MB  360 MB  360 MB  360 MB  360 MB  360 MB  360 MB  360 MB  362 MB 
│   ┌──┐    ┌──┐    ┌──┐    ┌──┐    ┌──┐    ┌──┐    ┌──┐    ┌──┐    ┌──┐    ┌──┐    ┌──┐    ┌──┐    ┌──┐  
│   |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |▒▒|  
│   |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |▒▒|  
│   |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |▒▒|  
│   |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |▒▒|  
│   |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |▒▒|  
│   |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |▒▒|  
│   |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |▒▒|  
│   |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |▒▒|  
│   |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |▒▒|  
│   |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |▒▒|  
│   |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |▒▒|  
│   |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |▒▒|  
│   |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |▒▒|  
│   |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |▒▒|  
│   |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |▒▒|  
│   |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |▒▒|  
│   |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |▒▒|  
│   |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |▒▒|  
│   |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |▒▒|  
│   |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |  |    |▒▒|  
└───┴──┴────┴──┴────┴──┴────┴──┴────┴──┴────┴──┴────┴──┴────┴──┴────┴──┴────┴──┴────┴──┴────┴──┴────┴──┴──>
    T-12    T-11    T-10    T-9     T-8     T-7     T-6     T-5     T-4     T-3     T-2     T-1      T    

Legend

• T-30 (fc1c991): 361 MB
• T-29 (a7c6aab): 361 MB
• T-28 (c2f4f1d): 361 MB
• T-27 (cc2c6dd): 361 MB
• T-26 (3d40fe1): 361 MB
• T-25 (1fcb0e3): 361 MB
• T-24 (e763556): 361 MB
• T-23 (be0bb11): 361 MB
• T-22 (d6d99d3): 361 MB
• T-21 (d5d421d): 361 MB
• T-20 (432774f): 360 MB
• T-19 (93b64cf): 360 MB
• T-18 (cd7af03): 360 MB
• T-17 (c8281ec): 360 MB
• T-16 (54040d8): 360 MB
• T-15 (1981515): 360 MB
• T-14 (434cdb7): 360 MB
• T-13 (c89d81a): 360 MB
• T-12 (0550e60): 360 MB
• T-11 (f1c4d10): 360 MB
• T-10 (50b3483): 360 MB
• T-9 (df33dd0): 360 MB
• T-8 (a41323f): 360 MB
• T-7 (b2b0faa): 360 MB
• T-6 (7d65669): 360 MB
• T-5 (1c8968d): 360 MB
• T-4 (40b1cf9): 360 MB
• T-3 (39eb031): 360 MB
• T-2 (8720854): 360 MB
• T-1 (7bb0322): 360 MB
• T (current commit): 362 MB

[anmonteiro]

follows the format expected by injectEnvVariables. Not sure if there's a helper to create this?

[anmonteiro]

follows https://github.com/netlify/proxy/pull/719 by injecting the token whenever there's an authlify token ID, and not only when --graph is passed.

[sgrove]

The only concern I have is that we're exposing authlifyToken to end users when it should probably be netlifyGraphToken. Let's say that's fine for the beta period, and then migrate users off of it (well) before GA.

[anmonteiro]

Tests seem flakey and unrelated to my changes -- they fail in different OSes in different runs, for different tests 😢.

I'm planning on merging this later today if there are no objections. I'll follow up with a fix if indeed there are broken things.

EDIT: trying to get them to pass after #4164

[erezrokah]

Hi @sgrove and @anmonteiro.

I added 2 comments

[erezrokah]

This will open up a browser and authenticate if users are not logged in.
This is not the expected behavior for the CLI as ntl dev should not require it.

We can put this under the graph condition for now, but we should probably have better error reporting.
Users can also pass --offline to the dev command which should prevent any requests from being sent.

[anmonteiro]

we'll need the netlify bearer token for the user. What's an alternative way of getting it?

[erezrokah]

That's the way to get it. We should only do it when running with graph I believe

[anmonteiro]

There’s also the API Authentication use case. I can do it only in the presence of an authlify token ID, then. Appreciate the review!

[erezrokah]

Where do we want ONEGRAPH_AUTHLIFY_TOKEN injected to?

The PR description says builds and functions.
This injects it into functions and dev command, but not builds

[anmonteiro]

It's injected in builds via Bitballoon.

Are there local builds where I should inject the variable too?

[erezrokah]

The CLI has a build command

cli/src/commands/build/build.js

Line 24 in e763556

command.setAnalyticsPayload({ dry: options.dry })

The CLI gets all the configuration, including environment variables from netlify/config, so I wonder if it will be easier to implement this PR in that package.
See the code to retrieve site information in https://github.com/netlify/build/blob/dc76f4b27a9fe92395c7d20346ce1655f8340d8c/packages/config/src/api/site_info.js

[anmonteiro]

I feel like this is more specific to the CLI than the generic config package.

@erezrokah are you on board if we merge this with the current functionality to unblock Mathias's upcoming talk and make the build improvements later?

[erezrokah]

Hi @anmonteiro, I'm good with unblocking.

I think it will great to follow up with a test case for this, do you mind opening an issue for it?

Do you mind opening another issue for supporting this in ntl build? If we inject the auth token in our build system, will should inject it to ntl build too.

[erezrokah]

This is released in https://github.com/netlify/cli/releases/tag/v8.15.5

[anmonteiro]

Thanks, @erezrokah! I opened #4182 and #4181 per your suggestions.