feat: add support for ssl cert in websockt

[pooja-bruno]

Description

Add support for ssl cert in websocket

JIRA

Contribution Checklist:

• I've used AI significantly to create this pull request
• The pull request only addresses one issue or adds one feature.
• The pull request does not introduce any breaking changes
• I have added screenshots or gifs to help explain the change if applicable.
• I have read the contribution guidelines.
• Create an issue and link to the pull request.

Note: Keeping the PR small and focused helps make it easier to review and merge. If you have multiple changes you want to make, please consider submitting them as separate pull requests.

Publishing to New Package Managers

Please see here for more information.

Summary by CodeRabbit

• New Features

  • WSS support for WebSocket connections with TLS/SSL and client authentication
  • Custom CA certificate and TLS option support for WebSocket connections
  • URL matching extended to include ws:// and wss:// schemes
  • UI: domain input placeholder now includes wss://

• Tests

  • Added end-to-end test and fixtures validating WSS with a custom CA certificate

• Style

  • Updated protocol indicator animations and timing in client certificate settings

_{✏️ Tip: You can customize this high-level summary in your review settings.}

[coderabbitai]

Walkthrough

Add WSS/TLS support: URL matching updated for ws/wss; WebSocket event handler fetches certs and proxy config and builds sslOptions; WebSocket client consumes sslOptions for TLS client auth and custom CA; WSS server, fixtures, prefs, and an end-to-end test added.

Changes

Cohort / File(s)	Summary
Cert utilities packages/bruno-electron/src/ipc/network/cert-utils.js	Extend host/URL regex to recognize ws:// and wss:// schemes; minor export/formatting tweak.
Event handler: build SSL options packages/bruno-electron/src/ipc/network/ws-event-handlers.js	Retrieve TLS certs and proxy config (getCertsAndProxyConfig) during WebSocket start flow; construct sslOptions (ca, cert, key, pfx, passphrase, rejectUnauthorized) and pass into WebSocket client start.
WebSocket client: consume sslOptions packages/bruno-requests/src/ws/ws-client.js	Add sslOptions option to startConnection and map its fields into the internal wsOptions used to create the connection (supporting client certs and custom CAs).
Test server: WSS support tests/ssl/custom-ca-certs/server/index.js	Add ws-based WebSocket server (noServer) layered on HTTPS; handle /ws upgrade path, echo messages, and expose headers / query handlers.
Test fixtures tests/ssl/custom-ca-certs/tests/wss-success/fixtures/wss-collection/bruno.json, tests/ssl/custom-ca-certs/tests/wss-success/fixtures/wss-collection/package.json, tests/ssl/custom-ca-certs/tests/wss-success/fixtures/wss-collection/ws-ssl-request.bru	Add collection metadata, minimal package.json, and a BRU WebSocket request targeting wss://localhost:8090/ws sending {"func":"headers"}.
Test prefs & E2E tests/ssl/custom-ca-certs/tests/wss-success/init-user-data/preferences.json, tests/ssl/custom-ca-certs/tests/wss-success/wss-success.spec.ts	Add preferences to enable SSL verification with a custom CA and disable default CAs; add Playwright test verifying WSS connection, send/receive behavior, and header response.
UI: client-cert settings packages/bruno-app/src/components/CollectionSettings/ClientCertSettings/index.js, packages/bruno-app/src/components/CollectionSettings/ClientCertSettings/StyledWrapper.js	Add wss:// to domain placeholder and introduce .protocol-wss styling/animation alongside https/grpcs indicators; adjust animation timings and transforms.

Sequence Diagram

sequenceDiagram
    participant UI as User / UI
    participant EH as Event Handler\n(ws-event-handlers.js)
    participant CU as Cert Utils\n(cert-utils.js)
    participant WC as WebSocket Client\n(ws-client.js)
    participant WS as WebSocket Server

    UI->>EH: Start WSS connection
    EH->>CU: getCertsAndProxyConfig()
    CU-->>EH: TLS certs + proxy config
    EH->>EH: Build sslOptions {ca, cert, key, pfx, passphrase, rejectUnauthorized}
    EH->>WC: startConnection(url, { sslOptions, ... })
    WC->>WC: Merge sslOptions into wsOptions
    WC->>WS: Open WebSocket (wss) using TLS options
    WS-->>WC: Accept connection / respond to messages
    WC-->>EH: Relay status and messages
    EH-->>UI: Connection state and responses

Loading

Estimated code review effort

🎯 3 (Moderate) | ⏱️ ~25 minutes

• Pay extra attention to:
  • Accurate mapping of sslOptions -> Node/ws connection options.
  • Correct handling of CA/cert file formats and passphrase usage.
  • Upgrade path filtering and socket error handling in server.
  • E2E test timing/stability and fixture correctness.

Suggested Reviewers

• helloanoop
• lohit-bruno
• naman-bruno
• bijin-bruno

Poem

🔐 WSS wakes with certificates tight,
A handshake cloaked in midnight light.
Tests send echoes, headers reply,
Securely dancing, socket to sky. ✨

Pre-merge checks and finishing touches

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Docstring Coverage	⚠️ Warning	Docstring coverage is 0.00% which is insufficient. The required threshold is 80.00%.	You can run @coderabbitai generate docstrings to improve docstring coverage.

✅ Passed checks (2 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The title accurately reflects the main objective of the PR: adding SSL certificate support for WebSocket connections. It directly maps to the primary changes across all modified files.

✨ Finishing touches

• 📝 Generate docstrings

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Post copyable unit tests in a comment

---

📜 Recent review details

Configuration used: Path: .coderabbit.yaml

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between cd67469 and e58dab3.

📒 Files selected for processing (2)

• packages/bruno-app/src/components/CollectionSettings/ClientCertSettings/StyledWrapper.js (1 hunks)
• packages/bruno-app/src/components/CollectionSettings/ClientCertSettings/index.js (1 hunks)

🧰 Additional context used

📓 Path-based instructions (1)

**/*.{js,jsx,ts,tsx}

📄 CodeRabbit inference engine (CODING_STANDARDS.md)

**/*.{js,jsx,ts,tsx}: Use 2 spaces for indentation, never tabs
Use single quotes for strings instead of double quotes
Always add semicolons at the end of statements
No trailing commas in code
Always use parentheses around parameters in arrow functions, even for single parameters
For multiline constructs, put opening braces on the same line with a minimum of 2 elements for multiline formatting
No newlines inside function parentheses
Space before and after the arrow in arrow functions: () => {}
No space between function name and parentheses: func() not func ()
Semicolons should go at the end of the line, not on a new line
Function names should be concise and descriptive
Add JSDoc comments to provide details to abstractions
Avoid single-line abstractions where all that is being done is increasing the call stack with one additional function
Add meaningful comments to explain complex code flow instead of obvious comments

Files:

• packages/bruno-app/src/components/CollectionSettings/ClientCertSettings/index.js
• packages/bruno-app/src/components/CollectionSettings/ClientCertSettings/StyledWrapper.js

🔇 Additional comments (2)

packages/bruno-app/src/components/CollectionSettings/ClientCertSettings/index.js (1)

181-185: wss:// protocol placeholder addition is consistent with existing UI pattern

The new wss:// span plugs cleanly into the existing protocol placeholder pattern and stays within the 60px reserved width; no behavior or validation changes are introduced here. Looks good.

packages/bruno-app/src/components/CollectionSettings/ClientCertSettings/StyledWrapper.js (1)

50-75: Triple‑protocol animation wiring for https/grpcs/wss looks correct

The shared positioning plus staggered slideUpDown animations (9s, delayed by 0s/3s/6s) should cycle https://, grpcs://, and wss:// through the visible slot without layout issues. The updated keyframe breakpoints (0/30/33.33/97/100) give short transition windows but nothing obviously problematic; behavior is consistent with the intent to rotate protocols.

Also applies to: 77-82

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coderabbitai]

Actionable comments posted: 0

🧹 Nitpick comments (6)

packages/bruno-electron/src/ipc/network/cert-utils.js (1)

61-62: Client-cert matching correctly extended to ws/wss

Including ws:// and wss:// in the scheme alternation keeps existing behavior and enables client certificates for secure WebSockets without altering prior HTTP/gRPC matching.

packages/bruno-requests/src/ws/ws-client.js (1)

63-73: Consider defaulting/guarding TLS fields and aligning with ws best practices

Right now all TLS-related fields are passed through directly from sslOptions, which is fine, but two minor follow-ups are worth considering:

• Explicitly document the options.sslOptions shape in the JSDoc for startConnection so callers know what is supported.
• Optionally default rejectUnauthorized when sslOptions is omitted or incomplete, to make intended behavior explicit rather than relying on Node/ws defaults.

These are non-blocking but would make the API clearer.

packages/bruno-electron/src/ipc/network/ws-event-handlers.js (1)

256-265: Optional: reuse proxy/certs config more broadly

You’re calling getCertsAndProxyConfig but only using httpsAgentRequestFields for the WebSocket handshake. If/when WebSockets also need proxy support or OAuth token flows that respect custom CAs/proxies, consider threading proxyMode, proxyConfig, and interpolationOptions through to where they’re needed to avoid duplicating config logic.

Not a blocker for this PR, just something to keep in mind.

tests/ssl/custom-ca-certs/tests/wss-success/wss-success.spec.ts (1)

7-31: E2E flow is correct; consider adding steps and locator variables for clarity

The test cleanly covers the WSS happy path: open collection, connect, assert connection via the disconnect control, send a message, and assert a headers field in the response. No waitForTimeout or test.only, which aligns with the testing guidelines.

To make it a bit more robust and readable, you might:

• Introduce locator variables for the request and the final message, e.g.:

const requestItem = page.getByTitle(BRU_REQ_NAME);
const lastMessageHeader = locators.messages().nth(2).locator('.text-ellipsis');

• Wrap logical phases in test.step blocks (e.g., “open collection”, “connect WSS”, “send message and assert headers”) so the Playwright report is easier to read.

These are optional polish items; the core assertions and flow look good.

tests/ssl/custom-ca-certs/server/index.js (2)

46-50: Redundant JSON parsing — use obj directly.

You've already parsed the JSON into obj on line 30, but line 48 re-parses Buffer.from(data).toString(). Just use the existing obj variable.

         } else {
           return ws.send(JSON.stringify({
-            data: JSON.parse(Buffer.from(data).toString())
+            data: obj
           }));
         }

---

24-54: Missing WebSocket error handler.

The ws connection lacks an 'error' event handler. If an error occurs (e.g., client abruptly disconnects), it may throw an unhandled exception and crash the test server.

Add an error handler inside the connection callback:

   wss.on('connection', function connection(ws, request) {
+    ws.on('error', function error(err) {
+      console.error('WebSocket error:', err.message);
+    });
+
     ws.on('message', function message(data) {

📜 Review details

Configuration used: Path: .coderabbit.yaml

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 9caef9e and b948527.

📒 Files selected for processing (9)

• packages/bruno-electron/src/ipc/network/cert-utils.js (2 hunks)
• packages/bruno-electron/src/ipc/network/ws-event-handlers.js (1 hunks)
• packages/bruno-requests/src/ws/ws-client.js (2 hunks)
• tests/ssl/custom-ca-certs/server/index.js (2 hunks)
• tests/ssl/custom-ca-certs/tests/wss-success/fixtures/wss-collection/bruno.json (1 hunks)
• tests/ssl/custom-ca-certs/tests/wss-success/fixtures/wss-collection/package.json (1 hunks)
• tests/ssl/custom-ca-certs/tests/wss-success/fixtures/wss-collection/ws-ssl-request.bru (1 hunks)
• tests/ssl/custom-ca-certs/tests/wss-success/init-user-data/preferences.json (1 hunks)
• tests/ssl/custom-ca-certs/tests/wss-success/wss-success.spec.ts (1 hunks)

🧰 Additional context used

📓 Path-based instructions (3)

tests/**/**.*

⚙️ CodeRabbit configuration file

tests/**/**.*: Review the following e2e test code written using the Playwright test library. Ensure that:

• Follow best practices for Playwright code and e2e automation

• Try to reduce usage of page.waitForTimeout(); in code unless absolutely necessary and the locator cannot be found using existing expect() playwright calls

• Avoid using page.pause() in code

• Use locator variables for locators

• Avoid using test.only

• Use multiple assertions

• Promote the use of test.step as much as possible so the generated reports are easier to read

• Ensure that the fixtures like the collections are nested inside the fixtures folder

  Fixture Example*: Here's an example of possible fixture and test pair

  .
  ├── fixtures
  │   └── collection
  │       ├── base.bru
  │       ├── bruno.json
  │       ├── collection.bru
  │       ├── ws-test-request-with-headers.bru
  │       ├── ws-test-request-with-subproto.bru
  │       └── ws-test-request.bru
  ├── connection.spec.ts # <- Depends on the collection in ./fixtures/collection
  ├── headers.spec.ts
  ├── persistence.spec.ts
  ├── variable-interpolation
  │   ├── fixtures
  │   │   └── collection
  │   │       ├── environments
  │   │       ├── bruno.json
  │   │       └── ws-interpolation-test.bru
  │   ├── init-user-data
  │   └── variable-interpolation.spec.ts # <- Depends on the collection in ./variable-interpolation/fixtures/collection
  └── subproto.spec.ts
  

Files:

• tests/ssl/custom-ca-certs/tests/wss-success/init-user-data/preferences.json
• tests/ssl/custom-ca-certs/tests/wss-success/wss-success.spec.ts
• tests/ssl/custom-ca-certs/tests/wss-success/fixtures/wss-collection/bruno.json
• tests/ssl/custom-ca-certs/server/index.js
• tests/ssl/custom-ca-certs/tests/wss-success/fixtures/wss-collection/ws-ssl-request.bru
• tests/ssl/custom-ca-certs/tests/wss-success/fixtures/wss-collection/package.json

**/*.{js,jsx,ts,tsx}

📄 CodeRabbit inference engine (CODING_STANDARDS.md)

**/*.{js,jsx,ts,tsx}: Use 2 spaces for indentation, never tabs
Use single quotes for strings instead of double quotes
Always add semicolons at the end of statements
No trailing commas in code
Always use parentheses around parameters in arrow functions, even for single parameters
For multiline constructs, put opening braces on the same line with a minimum of 2 elements for multiline formatting
No newlines inside function parentheses
Space before and after the arrow in arrow functions: () => {}
No space between function name and parentheses: func() not func ()
Semicolons should go at the end of the line, not on a new line
Function names should be concise and descriptive
Add JSDoc comments to provide details to abstractions
Avoid single-line abstractions where all that is being done is increasing the call stack with one additional function
Add meaningful comments to explain complex code flow instead of obvious comments

Files:

• packages/bruno-electron/src/ipc/network/ws-event-handlers.js
• tests/ssl/custom-ca-certs/tests/wss-success/wss-success.spec.ts
• packages/bruno-electron/src/ipc/network/cert-utils.js
• tests/ssl/custom-ca-certs/server/index.js
• packages/bruno-requests/src/ws/ws-client.js

**/*.{test,spec}.{js,jsx,ts,tsx}

📄 CodeRabbit inference engine (CODING_STANDARDS.md)

Add tests for any new functionality or meaningful changes; update corresponding tests when code is added, removed, or significantly modified

Files:

• tests/ssl/custom-ca-certs/tests/wss-success/wss-success.spec.ts

🧠 Learnings (2)

📚 Learning: 2025-12-03T08:09:57.124Z

Learnt from: CR
Repo: usebruno/bruno PR: 0
File: CODING_STANDARDS.md:0-0
Timestamp: 2025-12-03T08:09:57.124Z
Learning: Applies to **/*.{test,spec}.{js,jsx,ts,tsx} : Add tests for any new functionality or meaningful changes; update corresponding tests when code is added, removed, or significantly modified

Applied to files:

• tests/ssl/custom-ca-certs/tests/wss-success/fixtures/wss-collection/package.json

📚 Learning: 2025-12-02T07:24:50.299Z

Learnt from: bijin-bruno
Repo: usebruno/bruno PR: 6263
File: packages/bruno-requests/src/auth/oauth2-helper.ts:249-249
Timestamp: 2025-12-02T07:24:50.299Z
Learning: In OAuth2 Basic Auth headers for Bruno, clientSecret is optional and can be omitted. When constructing the Authorization header in `packages/bruno-requests/src/auth/oauth2-helper.ts`, use `clientSecret || ''` instead of `clientSecret!` to properly handle cases where only clientId is provided, per community requests.

Applied to files:

• packages/bruno-requests/src/ws/ws-client.js

🧬 Code graph analysis (4)

packages/bruno-electron/src/ipc/network/ws-event-handlers.js (2)

packages/bruno-electron/src/ipc/network/index.js (5)

• certsAndProxyConfig (116-125)
• certsAndProxyConfig (146-146)
• collection (145-145)
• requestCopy (161-161)
• requestCopy (162-162)

packages/bruno-electron/src/ipc/network/cert-utils.js (3)

• getCertsAndProxyConfig (12-119)
• collection (44-44)
• httpsAgentRequestFields (26-26)

tests/ssl/custom-ca-certs/tests/wss-success/wss-success.spec.ts (2)

tests/utils/page/locators.ts (1)

• buildWebsocketCommonLocators (57-77)

tests/utils/page/actions.ts (1)

• openCollectionAndAcceptSandbox (130-130)

packages/bruno-electron/src/ipc/network/cert-utils.js (1)

packages/bruno-cli/src/runner/run-single-request.js (4)

• hostRegex (76-76)
• hostRegex (261-261)
• domain (74-74)
• domain (258-258)

tests/ssl/custom-ca-certs/server/index.js (2)

packages/bruno-tests/src/ws/index.js (1)

• ws (1-1)

packages/bruno-cli/src/runner/run-single-request.js (3)

• request (122-122)
• request (464-464)
• url (470-470)

⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (1)

• GitHub Check: Playwright E2E Tests

🔇 Additional comments (11)

tests/ssl/custom-ca-certs/tests/wss-success/fixtures/wss-collection/ws-ssl-request.bru (1)

1-19: Fixture matches test expectations

The BRU name, WSS URL, and message payload align with the Playwright test and described server behavior; this looks good as the dedicated WSS fixture.

tests/ssl/custom-ca-certs/tests/wss-success/fixtures/wss-collection/bruno.json (1)

1-6: Collection fixture is minimal and correct

Collection metadata is valid and sufficient for the WSS test collection.

tests/ssl/custom-ca-certs/tests/wss-success/init-user-data/preferences.json (1)

1-16: Preferences correctly exercise custom CA behavior

Settings enable SSL verification, use a custom CA, and drop default CAs, which is exactly what this WSS scenario needs.

tests/ssl/custom-ca-certs/tests/wss-success/fixtures/wss-collection/package.json (1)

1-3: Fixture package.json is fine

A minimal name is sufficient for this collection fixture; nothing else required here.

packages/bruno-electron/src/ipc/network/cert-utils.js (1)

118-121: Export style is consistent

The function is still the sole export and the new module.exports = { getCertsAndProxyConfig }; is clear and conventional.

packages/bruno-requests/src/ws/ws-client.js (2)

41-44: sslOptions integration keeps API stable and is wired correctly

Accepting sslOptions inside options preserves the public startConnection shape while allowing TLS fields (rejectUnauthorized, ca, cert, key, pfx, passphrase) to flow into the underlying ws connection. This is a good extension point for SSL configuration.

---

108-139: Potential pre-existing bug: use of global WebSocket.OPEN

queueMessage checks connectionMeta.connection.readyState === WebSocket.OPEN at line 107, but this module may reference ws.WebSocket.OPEN elsewhere. In a Node/Electron main-process context, WebSocket is unlikely to be a global, so this can throw or behave inconsistently when the queue is flushed.

Even though this is pre-existing, it's worth aligning this line with the rest of the file to avoid runtime issues when messages are queued before the connection opens.

packages/bruno-electron/src/ipc/network/ws-event-handlers.js (2)

247-254: sslOptions mapping is sound and matches TLS expectations

Mapping httpsAgentRequestFields into sslOptions (ca, cert, key, pfx, passphrase) and setting rejectUnauthorized from preferencesUtil.shouldVerifyTls() correctly reuses the same CA/client-cert data for WebSockets as for HTTP, while preserving the TLS verification toggle.

This is a solid way to centralize TLS behavior across transports.

---

233-243: Fix collectionPath when resolving certificate file paths

getCertsAndProxyConfig expects collectionPath to be a directory so it can resolve relative certFilePath / keyFilePath / pfxFilePath using path.join(collectionPath, ...). Here you're passing collectionPath: collection.pathname, which is likely the full path to bruno.json, not its directory.

That will produce paths like <...>/bruno.json/my-cert.pem for relative cert paths, causing file reads to fail for WebSocket client certificates even though the same config works for HTTP.

Consider aligning this with the HTTP request path and pass the directory instead:

-        collectionPath: collection.pathname,
+        collectionPath: require('node:path').dirname(collection.pathname || ''),

This keeps WebSocket certificate resolution consistent with the existing HTTP path.

tests/ssl/custom-ca-certs/server/index.js (2)

56-65: LGTM — upgrade handling is correct.

The path check for /ws and socket destruction for non-matching requests follows the expected pattern for noServer WebSocket integration.

---

6-6: Import looks good.

Consistent with the existing require pattern in this file.

[coderabbitai]

Actionable comments posted: 0

🧹 Nitpick comments (1)

tests/ssl/custom-ca-certs/server/index.js (1)

82-97: Close WebSocket server during shutdown.

The shutdown handler closes the HTTPS server but doesn't close the WebSocket server. This could lead to hanging connections or resource leaks in tests.

To properly close the WebSocket server, you'll need to pass it to the shutdown handler. Consider this approach:

In createServer, return both servers:

// At the end of createServer function
return new Promise((resolve, reject) => {
  server.listen(port, (error) => {
    if (error) {
      reject(error);
    } else {
      resolve({ server, wss });
    }
  });
});

Then update shutdownServer:

-function shutdownServer(server, cleanup) {
+function shutdownServer(server, wss, cleanup) {
   const shutdown = (signal) => {
     console.log(`🛑 Received ${signal}, shutting down`);
     
     if (cleanup) cleanup();
     
+    if (wss) {
+      wss.close(() => {
+        console.log('WebSocket server closed');
+      });
+    }
+    
     if (server) {
       server.close(() => process.exit(0));
     } else {
       process.exit(0);
     }
   };

And update the startServer function accordingly:

-    const server = await createServer(certsDir, port);
+    const { server, wss } = await createServer(certsDir, port);
     
-    shutdownServer(server, () => {
+    shutdownServer(server, wss, () => {
       console.log('✨ Server cleanup completed');
     });

📜 Review details

Configuration used: Path: .coderabbit.yaml

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between b948527 and cd67469.

📒 Files selected for processing (2)

• tests/ssl/custom-ca-certs/server/index.js (2 hunks)
• tests/ssl/custom-ca-certs/tests/wss-success/wss-success.spec.ts (1 hunks)

🚧 Files skipped from review as they are similar to previous changes (1)

• tests/ssl/custom-ca-certs/tests/wss-success/wss-success.spec.ts

🧰 Additional context used

📓 Path-based instructions (2)

**/*.{js,jsx,ts,tsx}

📄 CodeRabbit inference engine (CODING_STANDARDS.md)

**/*.{js,jsx,ts,tsx}: Use 2 spaces for indentation, never tabs
Use single quotes for strings instead of double quotes
Always add semicolons at the end of statements
No trailing commas in code
Always use parentheses around parameters in arrow functions, even for single parameters
For multiline constructs, put opening braces on the same line with a minimum of 2 elements for multiline formatting
No newlines inside function parentheses
Space before and after the arrow in arrow functions: () => {}
No space between function name and parentheses: func() not func ()
Semicolons should go at the end of the line, not on a new line
Function names should be concise and descriptive
Add JSDoc comments to provide details to abstractions
Avoid single-line abstractions where all that is being done is increasing the call stack with one additional function
Add meaningful comments to explain complex code flow instead of obvious comments

Files:

• tests/ssl/custom-ca-certs/server/index.js

tests/**/**.*

⚙️ CodeRabbit configuration file

tests/**/**.*: Review the following e2e test code written using the Playwright test library. Ensure that:

• Follow best practices for Playwright code and e2e automation

• Try to reduce usage of page.waitForTimeout(); in code unless absolutely necessary and the locator cannot be found using existing expect() playwright calls

• Avoid using page.pause() in code

• Use locator variables for locators

• Avoid using test.only

• Use multiple assertions

• Promote the use of test.step as much as possible so the generated reports are easier to read

• Ensure that the fixtures like the collections are nested inside the fixtures folder

  Fixture Example*: Here's an example of possible fixture and test pair

  .
  ├── fixtures
  │   └── collection
  │       ├── base.bru
  │       ├── bruno.json
  │       ├── collection.bru
  │       ├── ws-test-request-with-headers.bru
  │       ├── ws-test-request-with-subproto.bru
  │       └── ws-test-request.bru
  ├── connection.spec.ts # <- Depends on the collection in ./fixtures/collection
  ├── headers.spec.ts
  ├── persistence.spec.ts
  ├── variable-interpolation
  │   ├── fixtures
  │   │   └── collection
  │   │       ├── environments
  │   │       ├── bruno.json
  │   │       └── ws-interpolation-test.bru
  │   ├── init-user-data
  │   └── variable-interpolation.spec.ts # <- Depends on the collection in ./variable-interpolation/fixtures/collection
  └── subproto.spec.ts
  

Files:

• tests/ssl/custom-ca-certs/server/index.js

🧬 Code graph analysis (1)

tests/ssl/custom-ca-certs/server/index.js (1)

packages/bruno-tests/src/ws/index.js (1)

• ws (1-1)

⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (6)

• GitHub Check: SSL Tests - Windows
• GitHub Check: CLI Tests
• GitHub Check: SSL Tests - Linux
• GitHub Check: SSL Tests - macOS
• GitHub Check: Unit Tests
• GitHub Check: Playwright E2E Tests

🔇 Additional comments (3)

tests/ssl/custom-ca-certs/server/index.js (3)

60-69: LGTM!

The upgrade handler correctly filters WebSocket connections to /ws paths and properly integrates the WebSocket server with the HTTPS server using the standard handleUpgrade pattern.

---

6-6: Verify 'ws' dependency declaration in package.json.

The 'ws' package is imported on line 6 but may not be declared in the manifest. Ensure this dependency is added to the appropriate package.json (root, test directory, or test/ssl directory).

---

21-58: Replace double quotes with single quotes.

The coding guidelines require single quotes for strings. Multiple lines in this segment use double quotes.

Apply this diff:

-  // Create WebSocket server for WSS support
-  const wss = new WebSocket.Server({ noServer: true });
+  // Create WebSocket server for WSS support
+  const wss = new WebSocket.Server({ noServer: true });
 
   wss.on('connection', function connection(ws, request) {
     ws.on('error', function error(err) {
-      console.error('WebSocket error:', err.message);
+      console.error('WebSocket error:', err.message);
     });
 
     ws.on('message', function message(data) {
       const msg = Buffer.from(data).toString().trim();
       let isJSON = false;
       let obj = {};
       try {
         obj = JSON.parse(msg);
         isJSON = true;
       } catch (err) {
         // Not a JSON value
       }
       if (isJSON) {
-        if ('func' in obj && obj.func === 'headers') {
+        if ('func' in obj && obj.func === 'headers') {
           return ws.send(JSON.stringify({
             headers: request.headers
           }));
-        } else if ('func' in obj && obj.func === 'query') {
-          const url = new URL(request.url, `https://${request.headers.host}`);
+        } else if ('func' in obj && obj.func === 'query') {
+          const url = new URL(request.url, `https://${request.headers.host}`);
           const query = Object.fromEntries(url.searchParams.entries());
           return ws.send(JSON.stringify({
             query: query
           }));
         } else {
           return ws.send(JSON.stringify({
             data: obj
           }));
         }
       }
       return ws.send(Buffer.from(data).toString());
     });
   });

Likely an incorrect or invalid review comment.