feat: add E2E NUT tests for webapp dev command @W-21111429@

- Add Tier 1 (no auth) and Tier 2 (CLI validation) tests for dev.nut.ts
- Add devPort.nut.ts for --port and --proxy-port flag tests
- Add devWithUrl.nut.ts for --url, proxy detection, and Vite integration tests
- Add shared helpers: devServerUtils (spawn, port reservation) and webappProjectUtils
- Add _cleanup.nut.ts for test session cleanup
- Add .env.template for NUT credentials (TESTKIT_AUTH_URL, etc.)
- Update GitHub Actions to run NUTs on ubuntu-latest and windows-latest
- Fix Windows CI: use spawnWebappDev, taskkill, --sfdx-url-file auth
- Extend dev.ts to support OPEN_BROWSER=false for headless test runs

Made-with: Cursor

Author: deepu-mungamuri94

.env.template

@@ -0,0 +1,21 @@
+# ── NUT Credentials ──────────────────────────────────────────────
+# Only ONE of the two options below is needed.
+#
+# Option A: AUTH_URL (simplest — recommended for getting started)
+#   1. sf org login web --alias nut-org
+#   2. sf org display -o nut-org --json | jq -r .result.sfdxAuthUrl
+#   3. Paste the value below
+# TESTKIT_AUTH_URL=
+
+# Option B: JWT (no token expiration — recommended for CI)
+# TESTKIT_JWT_KEY=
+# TESTKIT_JWT_CLIENT_ID=
+# TESTKIT_HUB_USERNAME=
+# TESTKIT_HUB_INSTANCE=https://login.salesforce.com
+
+# ── Optional ─────────────────────────────────────────────────────
+# Path to sf CLI executable (defaults to global sf in PATH)
+# TESTKIT_EXECUTABLE_PATH=
+
+# Prevent browser from opening during tests
+OPEN_BROWSER=false

.github/workflows/test.yml

@@ -24,3 +24,4 @@ jobs:
       fail-fast: false
     with:
       os: ${{ matrix.os }}
+      retries: 3

.gitignore

@@ -44,6 +44,9 @@ node_modules
 # --
 # put files here you don't want cleaned with sf-clean
 
+# local NUT credentials
+.env
+
 # os specific files
 .DS_Store
 .idea

package.json

@@ -24,6 +24,7 @@
     "@salesforce/plugin-command-reference": "^3.1.77",
     "@types/http-proxy": "^1.17.14",
     "@types/micromatch": "^4.0.10",
+    "dotenv": "^17.3.1",
     "eslint-plugin-sf-plugin": "^1.20.33",
     "oclif": "^4.22.68",
     "ts-node": "^10.9.2",
@@ -82,7 +83,9 @@
     "prepack": "sf-prepack",
     "prepare": "sf-install",
     "test": "wireit",
-    "test:nuts": "nyc mocha \"**/*.nut.ts\" --slow 4500 --timeout 600000 --parallel",
+    "test:nuts": "nyc mocha \"**/*.nut.ts\" --slow 4500 --timeout 600000 --parallel=false",
+    "test:nuts:local": "nyc mocha \"**/*.nut.ts\" --slow 4500 --timeout 600000 --parallel=false --require dotenv/config",
+    "test:nut:local": "nyc mocha --slow 4500 --timeout 600000 --require dotenv/config",
     "test:only": "wireit",
     "version": "oclif readme"
   },

src/commands/webapp/dev.ts

@@ -291,10 +291,14 @@ export default class WebappDev extends SfCommand<WebAppDevResult> {
       } else if (flags.url) {
         // User explicitly passed --url; assume server is already running at that URL
         // Fail immediately if unreachable (don't start dev server)
-        throw new SfError(messages.getMessage('error.dev-url-unreachable-with-flag', [resolvedUrl]), 'DevServerUrlError', [
-          `Ensure your dev server is running at ${resolvedUrl}`,
-          'Remove --url to use dev.command to start the server automatically',
-        ]);
+        throw new SfError(
+          messages.getMessage('error.dev-url-unreachable-with-flag', [resolvedUrl]),
+          'DevServerUrlError',
+          [
+            `Ensure your dev server is running at ${resolvedUrl}`,
+            'Remove --url to use dev.command to start the server automatically',
+          ]
+        );
       } else if (manifest?.dev?.url && !manifest?.dev?.command?.trim()) {
         // dev.url in manifest but no dev.command - don't start (we can't control the port)
         throw new SfError(messages.getMessage('error.dev-url-unreachable', [resolvedUrl]), 'DevServerUrlError', [
@@ -439,7 +443,9 @@ export default class WebappDev extends SfCommand<WebAppDevResult> {
             await this.proxyServer.start();
           } catch (error) {
             const err = error as NodeJS.ErrnoException;
-            if (err.code === 'EADDRINUSE') {
+            const isAddrInUse =
+              err.code === 'EADDRINUSE' || (error instanceof SfError && error.name === 'PortInUseError');
+            if (isAddrInUse) {
               if (portExplicitlyConfigured) {
                 throw new SfError(messages.getMessage('error.port-in-use', [String(port)]), 'PortInUseError');
               }

test/commands/webapp/_cleanup.nut.ts

@@ -0,0 +1,45 @@
+/*
+ * Copyright 2026, Salesforce, Inc.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+import { readdirSync, rmSync } from 'node:fs';
+import { join } from 'node:path';
+
+/**
+ * Root-level cleanup: remove any test_session_* directories left behind.
+ *
+ * TestSession.clean() normally deletes these, but they can persist when:
+ * - rm fails (e.g. Windows file locks from spawned processes)
+ * - Process is killed before after() runs (timeout, SIGKILL)
+ * - TESTKIT_SAVE_ARTIFACTS is set
+ *
+ * This hook runs after all NUTs complete as a fallback.
+ */
+after(() => {
+  const cwd = process.cwd();
+  try {
+    for (const name of readdirSync(cwd)) {
+      if (name.startsWith('test_session_')) {
+        try {
+          rmSync(join(cwd, name), { recursive: true, force: true });
+        } catch {
+          /* ignore per-dir failures */
+        }
+      }
+    }
+  } catch {
+    /* ignore */
+  }
+});

test/commands/webapp/dev.nut.ts

@@ -14,63 +14,201 @@
  * limitations under the License.
  */
 
-import { writeFileSync, unlinkSync, existsSync } from 'node:fs';
-import { join } from 'node:path';
+import { execSync } from 'node:child_process';
 import { execCmd, TestSession } from '@salesforce/cli-plugins-testkit';
 import { expect } from 'chai';
+import {
+  createProject,
+  createProjectWithWebapp,
+  createEmptyWebappsDir,
+  createWebappDirWithoutMeta,
+  writeManifest,
+  webappPath,
+  ensureSfCli,
+  authOrgViaUrl,
+} from './helpers/webappProjectUtils.js';
 
-describe('webapp dev NUTs', () => {
+/* ------------------------------------------------------------------ *
+ *  Tier 1 — No Auth                                                   *
+ *                                                                     *
+ *  Validates flag-level parse errors that fire before any org or      *
+ *  filesystem interaction. No credentials needed; always runs.        *
+ * ------------------------------------------------------------------ */
+describe('webapp dev NUTs — Tier 1 (no auth)', () => {
   let session: TestSession;
-  const testWebappJson = {
-    name: 'testWebApp',
-    label: 'Test Web App',
-    version: '1.0.0',
-    outputDir: 'dist',
-    dev: {
-      url: 'http://localhost:5173',
-    },
-  };
 
   before(async () => {
     session = await TestSession.create({ devhubAuthStrategy: 'NONE' });
   });
 
   after(async () => {
     await session?.clean();
-    // Clean up any test webapplication.json files
-    const webappJsonPath = join(session?.dir ?? process.cwd(), 'webapplication.json');
-    if (existsSync(webappJsonPath)) {
-      unlinkSync(webappJsonPath);
-    }
   });
 
-  it('should fail without target-org flag', () => {
-    // Create webapplication.json for this test
-    const webappJsonPath = join(session.dir, 'webapplication.json');
-    writeFileSync(webappJsonPath, JSON.stringify(testWebappJson, null, 2));
-
-    const result = execCmd('webapp dev --name testWebApp --json', {
+  // --target-org is declared as Flags.requiredOrg(). Running without it
+  // must fail at parse time with NoDefaultEnvError before any other logic.
+  it('should require --target-org', () => {
+    const result = execCmd('webapp dev --json', {
       ensureExitCode: 1,
       cwd: session.dir,
     });
 
     expect(result.jsonOutput?.name).to.equal('NoDefaultEnvError');
     expect(result.jsonOutput?.message).to.include('target-org');
+  });
+});
+
+/* ------------------------------------------------------------------ *
+ *  Tier 2 — CLI Validation (with auth)                                *
+ *                                                                     *
+ *  Validates webapp discovery errors and URL resolution errors.       *
+ *  Auth is only needed so --target-org passes parsing; these tests    *
+ *  exercise local filesystem/network checks — no live org calls.      *
+ *                                                                     *
+ *  Requires TESTKIT_AUTH_URL. Fails when absent (tests are mandatory). *
+ * ------------------------------------------------------------------ */
+describe('webapp dev NUTs — Tier 2 CLI validation', () => {
+  let session: TestSession;
+  let targetOrg: string;
+
+  before(async function () {
+    if (!process.env.TESTKIT_AUTH_URL) {
+      throw new Error(
+        'TESTKIT_AUTH_URL is required for Tier 2 tests. Set it in .env (local) or CI secrets (GitHub Actions).'
+      );
+    }
+
+    session = await TestSession.create({ devhubAuthStrategy: 'NONE' });
+    ensureSfCli();
+    targetOrg = authOrgViaUrl();
+  });
 
-    // Clean up
-    unlinkSync(webappJsonPath);
+  after(async () => {
+    await session?.clean();
   });
 
-  // Note: Additional error scenario tests (manifest validation, dev server config)
-  // require authenticated orgs, which may not be available in all CI/CD environments.
-  // These scenarios are covered by unit tests instead.
-  //
-  // Scenarios covered in unit tests:
-  // - Missing webapplication.json manifest (ManifestWatcher.test.ts)
-  // - Invalid webapplication.json schema (ManifestWatcher.test.ts)
-  // - Malformed JSON syntax (ManifestWatcher.test.ts)
-  // - Missing dev server config (DevServerManager.test.ts)
-  //
-  // For local testing with authenticated orgs, use manual validation scripts in:
-  // docs/manual-tests/test-webapp-dev-command.ts
+  // ── Discovery errors ──────────────────────────────────────────
+
+  // Project has no webapplications folder at all → WebappNotFoundError.
+  it('should error when no webapp found (project only, no webapps)', () => {
+    const projectDir = createProject(session, 'noWebappProject');
+
+    const result = execCmd(`webapp dev --target-org ${targetOrg} --json`, {
+      ensureExitCode: 1,
+      cwd: projectDir,
+    });
+
+    expect(result.jsonOutput?.name).to.equal('WebappNotFoundError');
+  });
+
+  // Project has webapp "realApp" but --name asks for "NonExistent" → WebappNameNotFoundError.
+  it('should error when --name does not match any webapp', () => {
+    const projectDir = createProjectWithWebapp(session, 'nameNotFound', 'realApp');
+
+    const result = execCmd(`webapp dev --name NonExistent --target-org ${targetOrg} --json`, {
+      ensureExitCode: 1,
+      cwd: projectDir,
+    });
+
+    expect(result.jsonOutput?.name).to.equal('WebappNameNotFoundError');
+  });
+
+  // cwd is inside webapp "appA" but --name asks for "appB" → WebappNameConflictError.
+  // Discovery treats this as ambiguous intent and rejects it.
+  it('should error on --name conflict when inside a different webapp', () => {
+    const projectDir = createProjectWithWebapp(session, 'nameConflict', 'appA');
+    execSync('sf webapp generate --name appB', { cwd: projectDir, stdio: 'pipe' });
+
+    const cwdInsideAppA = webappPath(projectDir, 'appA');
+
+    const result = execCmd(`webapp dev --name appB --target-org ${targetOrg} --json`, {
+      ensureExitCode: 1,
+      cwd: cwdInsideAppA,
+    });
+
+    expect(result.jsonOutput?.name).to.equal('WebappNameConflictError');
+  });
+
+  // webapplications/ folder exists but is empty → WebappNotFoundError.
+  it('should error when webapplications folder is empty', () => {
+    const projectDir = createProject(session, 'emptyWebapps');
+    createEmptyWebappsDir(projectDir);
+
+    const result = execCmd(`webapp dev --target-org ${targetOrg} --json`, {
+      ensureExitCode: 1,
+      cwd: projectDir,
+    });
+
+    expect(result.jsonOutput?.name).to.equal('WebappNotFoundError');
+  });
+
+  // webapplications/orphanApp/ exists but has no .webapplication-meta.xml → not a valid webapp.
+  it('should error when webapp dir has no .webapplication-meta.xml', () => {
+    const projectDir = createProject(session, 'noMeta');
+    createWebappDirWithoutMeta(projectDir, 'orphanApp');
+
+    const result = execCmd(`webapp dev --target-org ${targetOrg} --json`, {
+      ensureExitCode: 1,
+      cwd: projectDir,
+    });
+
+    expect(result.jsonOutput?.name).to.equal('WebappNotFoundError');
+  });
+
+  // ── Auto-selection ────────────────────────────────────────────
+
+  // When cwd is inside webapplications/myApp/, discovery auto-selects that
+  // webapp without --name. The command proceeds past discovery and fails at
+  // URL resolution (no dev server running) — confirming auto-select worked.
+  it('should auto-select webapp when run from inside its directory', () => {
+    const projectDir = createProjectWithWebapp(session, 'autoSelect', 'myApp');
+
+    writeManifest(projectDir, 'myApp', {
+      dev: { url: 'http://localhost:5179' },
+    });
+
+    const cwdInsideApp = webappPath(projectDir, 'myApp');
+
+    // No --name flag; cwd is inside the webapp directory.
+    // Discovery auto-selects myApp, then the command fails at URL check
+    // (nothing running on 5179). DevServerUrlError proves discovery succeeded.
+    const result = execCmd(`webapp dev --target-org ${targetOrg} --json`, {
+      ensureExitCode: 1,
+      cwd: cwdInsideApp,
+    });
+
+    expect(result.jsonOutput?.name).to.equal('DevServerUrlError');
+  });
+
+  // ── URL / dev server errors ───────────────────────────────────
+
+  // --url explicitly provided but nothing is listening → DevServerUrlError.
+  // The command refuses to start a dev server when --url is given.
+  it('should error when --url is unreachable', () => {
+    const projectDir = createProjectWithWebapp(session, 'urlUnreachable', 'myApp');
+
+    const result = execCmd(`webapp dev --name myApp --url http://localhost:5179 --target-org ${targetOrg} --json`, {
+      ensureExitCode: 1,
+      cwd: projectDir,
+    });
+
+    expect(result.jsonOutput?.name).to.equal('DevServerUrlError');
+  });
+
+  // Manifest has dev.url but no dev.command → command can't start the server
+  // itself and the URL is unreachable → DevServerUrlError.
+  it('should error when dev.url is unreachable and no dev.command', () => {
+    const projectDir = createProjectWithWebapp(session, 'urlNoCmd', 'myApp');
+
+    writeManifest(projectDir, 'myApp', {
+      dev: { url: 'http://localhost:5179' },
+    });
+
+    const result = execCmd(`webapp dev --name myApp --target-org ${targetOrg} --json`, {
+      ensureExitCode: 1,
+      cwd: projectDir,
+    });
+
+    expect(result.jsonOutput?.name).to.equal('DevServerUrlError');
+  });
 });