MediaMetz/gemini-cli
1
0
Fork 0
mirror of https://github.com/google-gemini/gemini-cli.git synced 2026-04-24 20:14:44 -07:00
Code Issues Packages Projects Releases Wiki Activity

feat(admin): implement admin controls polling and restart prompt (#16627)

Browse Source
This commit is contained in:
Shreya Keshive
2026-01-16 15:24:53 -05:00
committed by GitHub
parent 93224e1813
commit d8d4d87e29
20 changed files with 689 additions and 26 deletions
Download Patch File Download Diff File Expand all files Collapse all files
packages/core/src/code_assist/admin/admin_controls.test.ts
+330
View File
@@ -0,0 +1,330 @@
/**
* @license
* Copyright 2025 Google LLC
* SPDX-License-Identifier: Apache-2.0
*/
import {
describe,
it,
expect,
vi,
beforeEach,
afterEach,
type Mock,
} from 'vitest';
import {
fetchAdminControls,
sanitizeAdminSettings,
stopAdminControlsPolling,
} from './admin_controls.js';
import type { CodeAssistServer } from '../server.js';
describe('Admin Controls', () => {
let mockServer: CodeAssistServer;
let mockOnSettingsChanged: Mock;
beforeEach(() => {
vi.resetAllMocks();
vi.useFakeTimers();
mockServer = {
projectId: 'test-project',
fetchAdminControls: vi.fn(),
} as unknown as CodeAssistServer;
mockOnSettingsChanged = vi.fn();
});
afterEach(() => {
stopAdminControlsPolling();
vi.useRealTimers();
});
describe('sanitizeAdminSettings', () => {
it('should strip unknown fields', () => {
const input = {
secureModeEnabled: true,
extraField: 'should be removed',
mcpSetting: {
mcpEnabled: false,
unknownMcpField: 'remove me',
},
};
const result = sanitizeAdminSettings(input);
expect(result).toEqual({
secureModeEnabled: true,
mcpSetting: {
mcpEnabled: false,
},
});
// Explicitly check that unknown fields are gone
expect((result as Record<string, unknown>)['extraField']).toBeUndefined();
});
it('should preserve valid nested fields', () => {
const input = {
cliFeatureSetting: {
extensionsSetting: {
extensionsEnabled: true,
},
},
};
expect(sanitizeAdminSettings(input)).toEqual(input);
});
});
describe('fetchAdminControls', () => {
it('should return empty object and not poll if server is missing', async () => {
const result = await fetchAdminControls(
undefined,
undefined,
true,
mockOnSettingsChanged,
);
expect(result).toEqual({});
expect(mockServer.fetchAdminControls).not.toHaveBeenCalled();
});
it('should return empty object if project ID is missing', async () => {
mockServer = {
fetchAdminControls: vi.fn(),
} as unknown as CodeAssistServer;
const result = await fetchAdminControls(
mockServer,
undefined,
true,
mockOnSettingsChanged,
);
expect(result).toEqual({});
expect(mockServer.fetchAdminControls).not.toHaveBeenCalled();
});
it('should use cachedSettings and start polling if provided', async () => {
const cachedSettings = { secureModeEnabled: true };
const result = await fetchAdminControls(
mockServer,
cachedSettings,
true,
mockOnSettingsChanged,
);
expect(result).toEqual(cachedSettings);
expect(mockServer.fetchAdminControls).not.toHaveBeenCalled();
// Should still start polling
(mockServer.fetchAdminControls as Mock).mockResolvedValue({
secureModeEnabled: false,
});
await vi.advanceTimersByTimeAsync(5 * 60 * 1000);
expect(mockServer.fetchAdminControls).toHaveBeenCalledTimes(1);
});
it('should return empty object if admin controls are disabled', async () => {
const result = await fetchAdminControls(
mockServer,
undefined,
false,
mockOnSettingsChanged,
);
expect(result).toEqual({});
expect(mockServer.fetchAdminControls).not.toHaveBeenCalled();
});
it('should fetch from server if no cachedSettings provided', async () => {
const serverResponse = { secureModeEnabled: true };
(mockServer.fetchAdminControls as Mock).mockResolvedValue(serverResponse);
const result = await fetchAdminControls(
mockServer,
undefined,
true,
mockOnSettingsChanged,
);
expect(result).toEqual(serverResponse);
expect(mockServer.fetchAdminControls).toHaveBeenCalledTimes(1);
});
it('should return empty object on fetch error and still start polling', async () => {
(mockServer.fetchAdminControls as Mock).mockRejectedValue(
new Error('Network error'),
);
const result = await fetchAdminControls(
mockServer,
undefined,
true,
mockOnSettingsChanged,
);
expect(result).toEqual({});
// Polling should have been started and should retry
(mockServer.fetchAdminControls as Mock).mockResolvedValue({
secureModeEnabled: true,
});
await vi.advanceTimersByTimeAsync(5 * 60 * 1000);
expect(mockServer.fetchAdminControls).toHaveBeenCalledTimes(2); // Initial + poll
});
it('should sanitize server response', async () => {
(mockServer.fetchAdminControls as Mock).mockResolvedValue({
secureModeEnabled: true,
unknownField: 'bad',
});
const result = await fetchAdminControls(
mockServer,
undefined,
true,
mockOnSettingsChanged,
);
expect(result).toEqual({ secureModeEnabled: true });
expect(
(result as Record<string, unknown>)['unknownField'],
).toBeUndefined();
});
it('should reset polling interval if called again', async () => {
(mockServer.fetchAdminControls as Mock).mockResolvedValue({});
// First call
await fetchAdminControls(
mockServer,
undefined,
true,
mockOnSettingsChanged,
);
expect(mockServer.fetchAdminControls).toHaveBeenCalledTimes(1);
// Advance time, but not enough to trigger the poll
await vi.advanceTimersByTimeAsync(2 * 60 * 1000);
// Second call, should reset the timer
await fetchAdminControls(
mockServer,
undefined,
true,
mockOnSettingsChanged,
);
expect(mockServer.fetchAdminControls).toHaveBeenCalledTimes(2);
// Advance time by 3 mins. If timer wasn't reset, it would have fired (2+3=5)
await vi.advanceTimersByTimeAsync(3 * 60 * 1000);
expect(mockServer.fetchAdminControls).toHaveBeenCalledTimes(2); // No new poll
// Advance time by another 2 mins. Now it should fire.
await vi.advanceTimersByTimeAsync(2 * 60 * 1000);
expect(mockServer.fetchAdminControls).toHaveBeenCalledTimes(3); // Poll fires
});
});
describe('polling', () => {
it('should poll and emit changes', async () => {
// Initial fetch
(mockServer.fetchAdminControls as Mock).mockResolvedValue({
secureModeEnabled: false,
});
await fetchAdminControls(
mockServer,
undefined,
true,
mockOnSettingsChanged,
);
// Update for next poll
(mockServer.fetchAdminControls as Mock).mockResolvedValue({
secureModeEnabled: true,
});
// Fast forward
await vi.advanceTimersByTimeAsync(5 * 60 * 1000);
expect(mockOnSettingsChanged).toHaveBeenCalledWith({
secureModeEnabled: true,
});
});
it('should NOT emit if settings are deeply equal but not the same instance', async () => {
const settings = { secureModeEnabled: true };
(mockServer.fetchAdminControls as Mock).mockResolvedValue(settings);
await fetchAdminControls(
mockServer,
undefined,
true,
mockOnSettingsChanged,
);
expect(mockServer.fetchAdminControls).toHaveBeenCalledTimes(1);
mockOnSettingsChanged.mockClear();
// Next poll returns a different object with the same values
(mockServer.fetchAdminControls as Mock).mockResolvedValue({
secureModeEnabled: true,
});
await vi.advanceTimersByTimeAsync(5 * 60 * 1000);
expect(mockOnSettingsChanged).not.toHaveBeenCalled();
expect(mockServer.fetchAdminControls).toHaveBeenCalledTimes(2);
});
it('should continue polling after a fetch error', async () => {
// Initial fetch is successful
(mockServer.fetchAdminControls as Mock).mockResolvedValue({
secureModeEnabled: false,
});
await fetchAdminControls(
mockServer,
undefined,
true,
mockOnSettingsChanged,
);
expect(mockServer.fetchAdminControls).toHaveBeenCalledTimes(1);
// Next poll fails
(mockServer.fetchAdminControls as Mock).mockRejectedValue(
new Error('Poll failed'),
);
await vi.advanceTimersByTimeAsync(5 * 60 * 1000);
expect(mockServer.fetchAdminControls).toHaveBeenCalledTimes(2);
expect(mockOnSettingsChanged).not.toHaveBeenCalled(); // No changes on error
// Subsequent poll succeeds with new data
(mockServer.fetchAdminControls as Mock).mockResolvedValue({
secureModeEnabled: true,
});
await vi.advanceTimersByTimeAsync(5 * 60 * 1000);
expect(mockServer.fetchAdminControls).toHaveBeenCalledTimes(3);
expect(mockOnSettingsChanged).toHaveBeenCalledWith({
secureModeEnabled: true,
});
});
});
describe('stopAdminControlsPolling', () => {
it('should stop polling after it has started', async () => {
(mockServer.fetchAdminControls as Mock).mockResolvedValue({});
// Start polling
await fetchAdminControls(
mockServer,
undefined,
true,
mockOnSettingsChanged,
);
expect(mockServer.fetchAdminControls).toHaveBeenCalledTimes(1);
// Stop polling
stopAdminControlsPolling();
// Advance timer well beyond the polling interval
await vi.advanceTimersByTimeAsync(10 * 60 * 1000);
// The poll should not have fired again
expect(mockServer.fetchAdminControls).toHaveBeenCalledTimes(1);
});
});
});
packages/core/src/code_assist/admin/admin_controls.ts
+113
View File
@@ -0,0 +1,113 @@
/**
* @license
* Copyright 2025 Google LLC
* SPDX-License-Identifier: Apache-2.0
*/
import type { CodeAssistServer } from '../server.js';
import { debugLogger } from '../../utils/debugLogger.js';
import { isDeepStrictEqual } from 'node:util';
import {
type FetchAdminControlsResponse,
FetchAdminControlsResponseSchema,
} from '../types.js';
let pollingInterval: NodeJS.Timeout | undefined;
let currentSettings: FetchAdminControlsResponse | undefined;
export function sanitizeAdminSettings(
settings: FetchAdminControlsResponse,
): FetchAdminControlsResponse {
const result = FetchAdminControlsResponseSchema.safeParse(settings);
if (!result.success) {
return {};
}
return result.data;
}
/**
* Fetches the admin controls from the server if enabled by experiment flag.
* Safely handles polling start/stop based on the flag and server availability.
*
* @param server The CodeAssistServer instance.
* @param cachedSettings The cached settings to use if available.
* @param adminControlsEnabled Whether admin controls are enabled.
* @param onSettingsChanged Callback to invoke when settings change during polling.
* @returns The fetched settings if enabled and successful, otherwise undefined.
*/
export async function fetchAdminControls(
server: CodeAssistServer | undefined,
cachedSettings: FetchAdminControlsResponse | undefined,
adminControlsEnabled: boolean,
onSettingsChanged: (settings: FetchAdminControlsResponse) => void,
): Promise<FetchAdminControlsResponse> {
if (!server || !server.projectId || !adminControlsEnabled) {
stopAdminControlsPolling();
currentSettings = undefined;
return {};
}
// If we already have settings (e.g. from IPC during relaunch), use them
// to avoid blocking startup with another fetch. We'll still start polling.
if (cachedSettings) {
currentSettings = cachedSettings;
startAdminControlsPolling(server, server.projectId, onSettingsChanged);
return cachedSettings;
}
try {
const rawSettings = await server.fetchAdminControls({
project: server.projectId,
});
const sanitizedSettings = sanitizeAdminSettings(rawSettings);
currentSettings = sanitizedSettings;
startAdminControlsPolling(server, server.projectId, onSettingsChanged);
return sanitizedSettings;
} catch (e) {
debugLogger.error('Failed to fetch admin controls: ', e);
// If initial fetch fails, start polling to retry.
currentSettings = {};
startAdminControlsPolling(server, server.projectId, onSettingsChanged);
return {};
}
}
/**
* Starts polling for admin controls.
*/
function startAdminControlsPolling(
server: CodeAssistServer,
project: string,
onSettingsChanged: (settings: FetchAdminControlsResponse) => void,
) {
stopAdminControlsPolling();
pollingInterval = setInterval(
async () => {
try {
const rawSettings = await server.fetchAdminControls({
project,
});
const newSettings = sanitizeAdminSettings(rawSettings);
if (!isDeepStrictEqual(newSettings, currentSettings)) {
currentSettings = newSettings;
onSettingsChanged(newSettings);
}
} catch (e) {
debugLogger.error('Failed to poll admin controls: ', e);
}
},
5 * 60 * 1000,
); // 5 minutes
}
/**
* Stops polling for admin controls.
*/
export function stopAdminControlsPolling() {
if (pollingInterval) {
clearInterval(pollingInterval);
pollingInterval = undefined;
}
}