Merge branch 'main' into release/v1.4

Author: CodFrm

packages/filesystem/auth.test.ts

@@ -0,0 +1,45 @@
+import { afterEach, beforeEach, describe, expect, it, vi } from "vitest";
+import { AuthVerify } from "./auth";
+import { LocalStorageDAO } from "@App/app/repo/localStorage";
+
+describe("AuthVerify", () => {
+  const localStorageDAO = new LocalStorageDAO();
+  const key = "netdisk:token:onedrive";
+  let originalFetch: typeof fetch;
+
+  beforeEach(async () => {
+    vi.clearAllMocks();
+    await chrome.storage.local.clear();
+    originalFetch = globalThis.fetch;
+  });
+
+  afterEach(() => {
+    vi.stubGlobal("fetch", originalFetch);
+  });
+
+  it("expired token refresh network failure should reject, not fallback old token", async () => {
+    await localStorageDAO.saveValue(key, {
+      accessToken: "old-access",
+      refreshToken: "old-refresh",
+      createtime: Date.now() - 3600000 - 1000,
+    });
+
+    vi.stubGlobal("fetch", vi.fn().mockRejectedValueOnce(new Error("refresh network failed")));
+
+    await expect(AuthVerify("onedrive")).rejects.toThrow("refresh network failed");
+  });
+
+  it("non-expired token should return cached token without refresh", async () => {
+    await localStorageDAO.saveValue(key, {
+      accessToken: "cached-access",
+      refreshToken: "cached-refresh",
+      createtime: Date.now(),
+    });
+
+    const fetchMock = vi.fn();
+    vi.stubGlobal("fetch", fetchMock);
+
+    await expect(AuthVerify("onedrive")).resolves.toBe("cached-access");
+    expect(fetchMock).not.toHaveBeenCalled();
+  });
+});

packages/filesystem/auth.ts

@@ -100,7 +100,8 @@ export async function AuthVerify(netDiskType: NetDiskType, invalid?: boolean) {
     await localStorageDAO.saveValue(key, token);
   }
   // token过期或者失效
-  if (Date.now() >= token.createtime + 3600000 || invalid) {
+  const expired = Date.now() >= token.createtime + 3600000;
+  if (expired || invalid) {
     // 大于一小时刷新token
     try {
       const resp = await RefreshToken(netDiskType, token.refreshToken);
@@ -119,9 +120,10 @@ export async function AuthVerify(netDiskType: NetDiskType, invalid?: boolean) {
       };
       // 更新token
       await localStorageDAO.saveValue(key, token);
-    } catch (_) {
-      // 报错返回原token
-      return token.accessToken;
+    } catch (e) {
+      // 已过期或已被服务端判定失效的 token 不能继续回退使用
+      console.warn(e);
+      throw e;
     }
   } else {
     return token.accessToken;

packages/filesystem/baidu/baidu.test.ts

@@ -0,0 +1,35 @@
+import { describe, expect, it, vi, afterEach } from "vitest";
+import BaiduFileSystem from "./baidu";
+
+describe("BaiduFileSystem", () => {
+  afterEach(() => {
+    vi.unstubAllGlobals();
+    vi.restoreAllMocks();
+  });
+
+  it("request should omit credentials without using global DNR rules", async () => {
+    const fetchMock = vi.fn().mockResolvedValue({
+      json: async () => ({ errno: 0 }),
+    });
+    vi.stubGlobal("fetch", fetchMock);
+
+    // 监视 updateDynamicRules，确保不再依赖全局 DNR 规则
+    const updateDynamicRulesMock = vi.fn();
+    (chrome as any).declarativeNetRequest.updateDynamicRules = updateDynamicRulesMock;
+
+    const fs = new BaiduFileSystem("/apps", "token");
+
+    await expect(fs.request("https://pan.baidu.com/rest/2.0/xpan/file?method=list")).resolves.toEqual({
+      errno: 0,
+    });
+
+    expect(fetchMock).toHaveBeenCalledTimes(1);
+    expect(fetchMock).toHaveBeenCalledWith(
+      "https://pan.baidu.com/rest/2.0/xpan/file?method=list",
+      expect.objectContaining({
+        credentials: "omit",
+      })
+    );
+    expect(updateDynamicRulesMock).not.toHaveBeenCalled();
+  });
+});

packages/filesystem/baidu/baidu.ts

@@ -59,29 +59,9 @@ export default class BaiduFileSystem implements FileSystem {
   async request(url: string, config?: RequestInit) {
     config = config || {};
     const headers = <Headers>config.headers || new Headers();
-    // 处理请求匿名不发送cookie
-    await chrome.declarativeNetRequest.updateDynamicRules({
-      removeRuleIds: [100],
-      addRules: [
-        {
-          id: 100,
-          action: {
-            type: "modifyHeaders",
-            responseHeaders: [
-              {
-                operation: "remove",
-                header: "cookie",
-              },
-            ],
-          },
-          condition: {
-            urlFilter: url,
-            resourceTypes: ["xmlhttprequest"],
-          },
-        },
-      ],
-    });
     config.headers = headers;
+    // 对百度网盘请求显式禁用 cookie，避免依赖全局 DNR 规则造成并发竞态
+    config.credentials = "omit";
     return fetch(url, config)
       .then((data) => data.json())
       .then(async (data) => {
@@ -99,11 +79,6 @@ export default class BaiduFileSystem implements FileSystem {
             });
         }
         return data;
-      })
-      .finally(() => {
-        chrome.declarativeNetRequest.updateDynamicRules({
-          removeRuleIds: [100],
-        });
       });
   }
 

packages/filesystem/dropbox/dropbox.test.ts

@@ -0,0 +1,17 @@
+import { beforeEach, describe, expect, it, vi } from "vitest";
+import DropboxFileSystem from "./dropbox";
+
+describe("DropboxFileSystem", () => {
+  beforeEach(() => {
+    vi.clearAllMocks();
+  });
+
+  it("delete should be idempotent on path not found", async () => {
+    const fs = new DropboxFileSystem("/", "token");
+    vi.spyOn(fs, "request").mockRejectedValue(
+      new Error('Dropbox API Error: 409 - {"error_summary":"path_lookup/not_found/..."}')
+    );
+
+    await expect(fs.delete("missing.txt")).resolves.toBeUndefined();
+  });
+});

packages/filesystem/dropbox/dropbox.ts

@@ -78,14 +78,28 @@ export default class DropboxFileSystem implements FileSystem {
   request(url: string, config?: RequestInit, nothen?: boolean) {
     config = config || {};
     const headers = <Headers>config.headers || new Headers();
-    headers.append(`Authorization`, `Bearer ${this.accessToken}`);
+    headers.set(`Authorization`, `Bearer ${this.accessToken}`);
     config.headers = headers;
-    const ret = fetch(url, config);
+    const doFetch = () => fetch(url, config);
+    const retryWithFreshToken = async () => {
+      const token = await AuthVerify("dropbox", true);
+      this.accessToken = token;
+      headers.set(`Authorization`, `Bearer ${this.accessToken}`);
+      return doFetch();
+    };
     if (nothen) {
-      return <Promise<Response>>ret;
+      return doFetch().then(async (resp) => {
+        if (resp.status === 401) {
+          return retryWithFreshToken();
+        }
+        return resp;
+      });
     }
-    return ret
+    return doFetch()
       .then(async (response) => {
+        if (response.status === 401) {
+          response = await retryWithFreshToken();
+        }
         if (!response.ok) {
           const errorText = await response.text();
           throw new Error(`Dropbox API Error: ${response.status} - ${errorText}`);
@@ -126,13 +140,20 @@ export default class DropboxFileSystem implements FileSystem {
     const myHeaders = new Headers();
     myHeaders.append("Content-Type", "application/json");
 
-    await this.request("https://api.dropboxapi.com/2/files/delete_v2", {
-      method: "POST",
-      headers: myHeaders,
-      body: JSON.stringify({
-        path: fullPath,
-      }),
-    });
+    try {
+      await this.request("https://api.dropboxapi.com/2/files/delete_v2", {
+        method: "POST",
+        headers: myHeaders,
+        body: JSON.stringify({
+          path: fullPath,
+        }),
+      });
+    } catch (e: any) {
+      if (e.message?.includes("path_lookup/not_found") || e.message?.includes("path/not_found")) {
+        return;
+      }
+      throw e;
+    }
 
     // 清除相关缓存
     this.clearRelatedCache(fullPath);

packages/filesystem/googledrive/googledrive.test.ts

@@ -0,0 +1,28 @@
+import { beforeEach, describe, expect, it, vi } from "vitest";
+import GoogleDriveFileSystem from "./googledrive";
+
+describe("GoogleDriveFileSystem", () => {
+  beforeEach(() => {
+    vi.clearAllMocks();
+  });
+
+  it("delete should be idempotent when file id is missing", async () => {
+    const fs = new GoogleDriveFileSystem("/", "token");
+    vi.spyOn(fs, "getFileId").mockResolvedValue(null);
+    const requestSpy = vi.spyOn(fs, "request");
+
+    await expect(fs.delete("missing.txt")).resolves.toBeUndefined();
+    expect(requestSpy).not.toHaveBeenCalled();
+  });
+
+  it("delete should be idempotent on 404 response", async () => {
+    const fs = new GoogleDriveFileSystem("/", "token");
+    vi.spyOn(fs, "getFileId").mockResolvedValue("file-1");
+    vi.spyOn(fs, "request").mockResolvedValue({
+      status: 404,
+      text: vi.fn().mockResolvedValue("not found"),
+    } as unknown as Response);
+
+    await expect(fs.delete("missing.txt")).resolves.toBeUndefined();
+  });
+});

packages/filesystem/googledrive/googledrive.ts

@@ -110,23 +110,44 @@ export default class GoogleDriveFileSystem implements FileSystem {
   request(url: string, config?: RequestInit, nothen?: boolean) {
     config = config || {};
     const headers = <Headers>config.headers || new Headers();
-    headers.append(`Authorization`, `Bearer ${this.accessToken}`);
+    headers.set(`Authorization`, `Bearer ${this.accessToken}`);
     config.headers = headers;
-    const ret = fetch(url, config);
+    const doFetch = () => fetch(url, config);
+    const retryWithFreshToken = async () => {
+      const token = await AuthVerify("googledrive", true);
+      this.accessToken = token;
+      headers.set(`Authorization`, `Bearer ${this.accessToken}`);
+      return doFetch();
+    };
     if (nothen) {
-      return <Promise<Response>>ret;
+      return doFetch().then(async (resp) => {
+        if (resp.status === 401) {
+          return retryWithFreshToken();
+        }
+        return resp;
+      });
     }
-    return ret
-      .then((data) => data.json())
+    return doFetch()
+      .then(async (resp) => {
+        if (resp.status === 401) {
+          resp = await retryWithFreshToken();
+        }
+        if (!resp.ok) {
+          throw new Error(await resp.text());
+        }
+        return resp.json();
+      })
       .then(async (data) => {
         if (data.error) {
           if (data.error.code === 401) {
             // Token可能过期，尝试刷新
-            const token = await AuthVerify("googledrive", true);
-            this.accessToken = token;
-            headers.set(`Authorization`, `Bearer ${this.accessToken}`);
-            return fetch(url, config)
-              .then((retryData) => retryData.json())
+            return retryWithFreshToken()
+              .then(async (retryResp) => {
+                if (!retryResp.ok) {
+                  throw new Error(await retryResp.text());
+                }
+                return retryResp.json();
+              })
               .then((retryData) => {
                 if (retryData.error) {
                   throw new Error(JSON.stringify(retryData));
@@ -145,7 +166,7 @@ export default class GoogleDriveFileSystem implements FileSystem {
     // 首先，找到要删除的文件或文件夹
     const fileId = await this.getFileId(fullPath);
     if (!fileId) {
-      throw new Error(`File or directory not found: ${fullPath}`);
+      return;
     }
 
     // 删除文件或文件夹
@@ -156,6 +177,9 @@ export default class GoogleDriveFileSystem implements FileSystem {
       },
       true
     ).then(async (resp) => {
+      if (resp.status === 404) {
+        return;
+      }
       if (resp.status !== 204 && resp.status !== 200) {
         throw new Error(await resp.text());
       }