APP-8173: Make local testing for viam apps easier

[jr22]

APP-8173

Work done

• Created a new CLI command for testing viam apps locally viam module local-app-testing
• Running this command opens a go server that has a page where you can enter in api key info, hostname and the local address for your app.
• Once youve entered this info, it redirects you to your local app so you can make sure everythings working properly

Things this doesnt do

• It wont catch issues with proxying (like having the base set in your vite config) I think thats fine if that is something we only catch when you deply

Ask for reviewers

Can you please manually test with a viam app that you have? Will require the following steps:

1. pull this branch
2. run your application locally
3. build the CLI: go build -o ~/go/bin/viam cli/viam/main.go
4. run the new command: go run cli/viam/main.go module local-app-testing
5. enter in machine info in the browser window that is opened
6. ensure you can locally test your app!

[jr22]

a lot of this file is autogenerated by cursor so keep 👀 for stupid stuff

[jr22]

same here. lots of vibe coding

[jr22]

NOTE FOR MANUAL TESTING: this assumes your local application is using the currentMachine cookie for testing. might have to update your application to pull that instead of the machine id from the URL

[jr22]

@bashar-515 this is ready for manual testing! will move it out of "draft" mode once youve confirmed with manually testing an app of yours that this works as expected

[bashar-515]

So does this mean that in development I should NOT look to the path to retrieve either the hostname or machine ID but then in prod I should? Is there any way we can avoid making the developer have distinct code for different environments?

[jr22]

@bashar-515 thanks for the feedback! something was wrong in my localapp that was causing this to work before when it shouldn't have. try again! will move out of draft mode once you've had a chance to test this and verify it works. then we can get into cleaning up the code :)

[ohEmily]

So does this mean that in development I should NOT look to the path to retrieve either the hostname or machine ID but then in prod I should? Is there any way we can avoid making the developer have distinct code for different environments?

this is exactly how Gambit is set up today and I filed a ticket in their thing to align the experiences, full circle

[ohEmily]

[nit] subcommand seems longer than necessary? e.g. local-test

[ohEmily]

Something I'm not understanding but want to make sure to bring up now since the CLI is shipped software and we can't hit "undo" with releases the way we can with our cloud software.

[q] What is the advantage of adding support for this UI versus a local testing environment that supports integrating into a Viam auth app? Reading from the Viam auth cookie is one of the main integration points for anyone building out a Viam App so I feel that local testing isn't all too useful without that support.

[jr22]

Something I'm not understanding but want to make sure to bring up now since the CLI is shipped software and we can't hit "undo" with releases the way we can with our cloud software.

[q] What is the advantage of adding support for this UI versus a local testing environment that supports integrating into a Viam auth app? Reading from the Viam auth cookie is one of the main integration points for anyone building out a Viam App so I feel that local testing isn't all too useful without that support.

does gambit use the auth cookie and not the machine credentials? i dont think we expose any documentation or guarantees about how were storing that information etc.

[ohEmily]

Something I'm not understanding but want to make sure to bring up now since the CLI is shipped software and we can't hit "undo" with releases the way we can with our cloud software.
[q] What is the advantage of adding support for this UI versus a local testing environment that supports integrating into a Viam auth app? Reading from the Viam auth cookie is one of the main integration points for anyone building out a Viam App so I feel that local testing isn't all too useful without that support.

does gambit use the auth cookie and not the machine credentials?

Sorry I don't understand this question. I'll try to rephrase to see if we can get clarity.

We just cut Gambit over to extracting the API key, machine ID, and hostname stored in the cookie -- that was the message I sent over Slack. What I'm saying is that -- because they are unable to support authenticating on localhost, they instead display a page to pop in an API key ID and auth entity (key string). This has the unfortunate consequence of making it impossible to test auth changes outside of a cloud environment for them.

[ohEmily]

replaces the part of the Gambit onboarding flow that asks you to do this:

### 3. Start and access the frontend
1. (from a new terminal window) start the frontend by running `make dev-frontend`.
2. Put together a URL of the following format, pulling from the remote fragment overwrite above:

http://localhost:5173/?host=your-machine-dev.example.cloud&api-key=your-key&authEntity=your-entity&suffix=-dev

> Make sure the url has the `&suffix=-dev` suffix or the developer machine will not work
3. Open the URL above from your browser.

[ohEmily]

[q] why do we need this? why isn't it just localhost?

[jr22]

feedback from sync emily call: can we make them both port otherwise it seems like theyre more connected

[ohEmily]

should this maybe be nested to follow the same schema as the auth cookie?

[ohEmily]

tl;dr from huddle is that this code will get moved out of RDK and into Viam Apps so folks can import as a library, better versioning, and allow us to be more careful with additive features

[jr22]

@bashar-515 actually, no need to look at this yet. i spoke to @ohEmily and our biggest takeaway is that we probably should have most of this code live alongside viam apps and not in the CLI. then we can import the shared code and things wont get as out of sync