Child (and possibly elsewhere) expects a global window which makes it more difficult to test:

maybe do DI instead? constructor(model: TModel, context?: TContext, wnd?: Window) { this.window = wnd ?? window

i didn't foresee that and extended Child which means i can't use mocha before/after and must have a global persistent jsdom -- which also means i can't do parallel tests.

it would be nice to have a nicely automatically generated api doc, otherwise we should document it manually.

Currently it seems like the only way is for the parent to include the child iframe, my need to is bind to 1 or more iframes that are already added in the DOM.

Hi.

I have a proposal for improvement. How about having an option to specify an already existing iframe element when creating the parent instance?

It would be nice to have two ways to do this, one by passing the iframe element and the other by passing the selector string.

For example, something like the following.

const existingIframe = document.getElementById('existingElementId')
const iparent = new ibridge.Parent({
  target: existingIframe
})

const iparent = new ibridge.Parent({
  target: 'existingElementId'
})

At the moment we are only doing unit tests with Jsdom, but we are not being able to run a real integration testing. Jsdom has severe limitations and so the validations we are performing with jsdom are also limited.

I have used selenium in the past and it looks like it might be a really good tool to use testing. We already have a model test in integration.test.ts, but the thing that will take most of the time is actually setting up with CI infrastructure so that those tests can effectively run in CI and that, in the case of selenium and other browser level testing tools is not trivial since they rely on actual browsers.

the published package seems to be using webpack "development" which is probably the reason for the "/*!" prefixed comments in the result. could this be changed to production?

this is probably tsconfig collateral damage, but i don't use esmoduleinterop because i've found it to create as many problems as it solves. this causes issues with my build when ibridge is included because it complains about the emittery include: import emittery from 'emittery'. changing this to import emittery = require('emittery') fixes it if i edit the type directly. as for why my tsconfig is impacting a dependency... 🤷

my workaround is to use a merged declaration:

import { Child } from 'ibridge';
import Emittery = require('emittery');

// eslint-disable-next-line @typescript-eslint/no-empty-interface
export interface Something extends Emittery {}

export interface Something extends Child {
   stuff() {
      // this now works
      this.on('stuff', ...)
   }
}

• let the postmate team know this exist
• talk about merging these efforts together
• explain the reasoning behind these changes and what the changes are
• talk about the future!

thanks for putting this together. it does a good job of addressing some of my nagging problems with postmate.

this currently has a ts error: emitToParent('some_event') and expects a second data: unknown argument. i believe it should be data?: unknown. my workaround is to do emitToParent('some_event', undefined)

Refs

• postmate original discussion
• post-me

Objectives

• see if we can merge post-me and ibridge to consolidate efforts
• if the merge is not possible I would like to take the better ideas from post-me and use them on ibridge
• solve some of the issues users have opened on ibridge holistically

Step 0: browser level automatic integration testing

Before anything else I want to setup a proper browser level integration testing for ibridge (and potentially the resulting merge). Right now I am using jsdoc with a bunch of mocks which is a similar approach to what post-me is doing although they are doing it arguably better and so the library does have automatic testing coverage but I find that the real test is always open the examples manually and checking that the thing really works because that way I can observe the inner workings of browsers and how they behave regarding origins and weird stuff that may happen at the postMessage border.

This will give us the confidence to iterate more quickly and to add more test cases when adding more features to this lib, unfortunately jsdom has some limitations in its implementation and for all intents and purposes is not a real browser.

ref

What do we need?

• headless browser testing, the tool really does not matter, can be selenium, browser stack, etc
• it must be easily compatible with github actions
• it should be pretty straight forward to install (i.e. npm install is all that's needed)

I have experience with selenium and it would be more than enough but I haven't had the chance to set it up properly, that's probably going to be my first line of investigation.

Step 1: the merge

I would like to focus on the things I like the most from both libraries

ibridge

• I love the name
• we have a logo
• visual docs and a good amount of docs
• I like the idea of having a single event listener the dispatcher and then delegating the event handling to Emittery, this allows us to express complex event driven logic in a very natural way i.e. the handshake and also allow users to build more complex event driven flows using higher level event emitter apis that I believe are far superior that the native ones.
• I like the idea of making the handshake a simple method instead of a separate thing like postmate and post-me do because it allows us to reuse the main dispatcher and all the high level goodies and infrastructure but also it enables us and users to recall the handshake if needed.
• I like of course emitToParent and emitToChild methods (see the post-me comments below).
• I like how get is structured (which is pretty similar to what post-me does)
• I like how get accepts an object path to look for the model function, this allows users to build more complex models and structure them more naturally
• I like the idea of model context, perhaps the implementation is not ideal but I do believe that solving that issue is important
• i love the idea of having a single wrapper postMessage event that internally uses a higher level structure that can be easily mapped into Emittery (or any other even emitter really) events.

Post-me

• webworker support
• bidirectional get support (although post-me calls it call which is probably a better name)
• the concept of localHandle and remoteHandle, these are amazing plus I love local and remote as words to define the real concepts, it is much better than parent and simply emit.
• it doesn't try to create the iframe like ibridge and postmate do, instead it accepts a window and lets consumer handle that (is not that hard after all)
• it accepts the origin as an argument instead of trying to be smart about it and detect it. I don't believe that restricting origins really adds and strong security layer to the library or to the postMessage (im open to being proven wrong) and I believe that the real security happens at the HTTP headers such as content-policy: frame-ancestors ..., so I really like not having to worry to much about this inside the library. If the consumers want to add the extra layer of security with a custom origin then let them handle that by themselves. There are some considerations to have here https://developer.mozilla.org/en-US/docs/Web/API/Window/postMessage#Syntax , maybe we can enable the autodetect mode in the child and in the parent, something like what we have today in ibridge

Comments out of the above

• i looks like the v1 solution can be structured as a
  • low level w.postMessage and w.addEventListener('message') abstraction that is generic on w (i.e. window, worker, etc) that does not care how that window is created, be it the main window of the parent document or the window of an iframe or the global object of a web worker.
  • a handshake mechanism between parent and child, local and remote, messenger and messenger, server and client, etc
  • a higher level api on top that abstracts common stuff such as hidden iframe creation, web worker spawning etc.

So for example, today in ibridge.Parent we have

and in the handshake we have

This could probably be abstracted away with a promise passed as a parameter

function getRemoteWindow(container: HtmlElement, url: string): Promise<Window> {
  return new Promise((resolve) => {
    const iframe = document.createElement("iframe");
    container.appendChild(iframe);
    iframe.src = url;

    iframe.onLoad(() => resolve(iframe.contentWindow))
  })
}


// usage

const iparent  = new ibridge.Parent({getRemoteWindow: () => getRemoteWindow(someContainer, someUrl)})


// or even

const remoteWindow = await getRemoteWindow(someContainer, someUrl)
const remoteOrigin = remoteWindow.origin
const iparent = new ibridge.Parent({remoteWindow, remoteOrigin})

This enables us to remove the logic of setting up the iframe, and hooking the onLoad event
at the right moment (I had problems with this in the past) and simply changing it for
a promise that resolves when the window is abailable and loaded, no need to worry about anything
else really. We could provide the getRemoteWindow as a higher level api like we do today but this enables
us to easily let users do whatever they want with the window creating plus it can be useful when also supporting webworkers etc.

Style

• post-me has a style that I'm not super fond of: top level functions use arrow functions and in some cases it gets overly complicated, my motto is clarity then simplicity... and I'd like to maximize that

Closing

There's so much work to do Im getting excited, really good ideas on the table!

cc @alesgenova