firebase-tools 10.7.1 → 10.7.2

package/lib/deploy/functions/build.js

@@ -1,11 +1,25 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.resolveBackend = void 0;
+exports.resolveBackend = exports.of = exports.empty = void 0;
 const backend = require("./backend");
 const proto = require("../../gcp/proto");
 const api = require("../../.../../api");
 const error_1 = require("../../error");
 const functional_1 = require("../../functional");
+function empty() {
+    return {
+        requiredAPIs: [],
+        endpoints: {},
+        params: [],
+    };
+}
+exports.empty = empty;
+function of(endpoints) {
+    const build = empty();
+    build.endpoints = endpoints;
+    return build;
+}
+exports.of = of;
 function resolveInt(from) {
     if (from == null) {
         return 0;
@@ -59,23 +73,20 @@ function resolveBackend(build) {
             else {
                 timeout = 60;
             }
-            const bkEndpoint = Object.assign({ id: endpointId, project: "", region: region, entryPoint: endpoint.entryPoint, platform: endpoint.platform, runtime: "", labels: endpoint.labels, environmentVariables: endpoint.environmentVariables, secretEnvironmentVariables: undefined, availableMemoryMb: endpoint.availableMemoryMb, timeoutSeconds: timeout }, trigger);
+            const bkEndpoint = Object.assign({ id: endpointId, project: endpoint.project, region: region, entryPoint: endpoint.entryPoint, platform: endpoint.platform, runtime: endpoint.runtime, timeoutSeconds: timeout }, trigger);
             proto.renameIfPresent(bkEndpoint, endpoint, "maxInstances", "maxInstances", resolveInt);
             proto.renameIfPresent(bkEndpoint, endpoint, "minInstances", "minInstances", resolveInt);
             proto.renameIfPresent(bkEndpoint, endpoint, "concurrency", "concurrency", resolveInt);
-            proto.copyIfPresent(bkEndpoint, endpoint, "ingressSettings");
+            proto.copyIfPresent(bkEndpoint, endpoint, "ingressSettings", "availableMemoryMb", "environmentVariables", "labels");
             if (endpoint.vpc) {
                 bkEndpoint.vpc = {
-                    connector: resolveString(endpoint.vpc.connector),
-                    egressSettings: endpoint.vpc.egressSettings,
+                    connector: resolveString(endpoint.vpc.connector).replace("$REGION", region),
                 };
+                proto.copyIfPresent(bkEndpoint.vpc, endpoint.vpc, "egressSettings");
             }
             if (endpoint.serviceAccount) {
                 bkEndpoint.serviceAccountEmail = endpoint.serviceAccount;
             }
-            else {
-                bkEndpoint.serviceAccountEmail = "default";
-            }
             bkEndpoints.push(bkEndpoint);
         }
     }

package/lib/deploy/functions/checkIam.js

@@ -1,6 +1,6 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.ensureServiceAgentRoles = exports.mergeBindings = exports.obtainEventarcServiceAgentBindings = exports.obtainDefaultComputeServiceAgentBindings = exports.obtainPubSubServiceAgentBindings = exports.obtainBinding = exports.checkHttpIam = exports.checkServiceAccountIam = exports.EVENTARC_SERVICE_AGENT_ROLE = exports.EVENTARC_EVENT_RECEIVER_ROLE = exports.RUN_INVOKER_ROLE = exports.SERVICE_ACCOUNT_TOKEN_CREATOR_ROLE = void 0;
+exports.ensureServiceAgentRoles = exports.mergeBindings = exports.obtainDefaultComputeServiceAgentBindings = exports.obtainPubSubServiceAgentBindings = exports.obtainBinding = exports.checkHttpIam = exports.checkServiceAccountIam = exports.EVENTARC_EVENT_RECEIVER_ROLE = exports.RUN_INVOKER_ROLE = exports.SERVICE_ACCOUNT_TOKEN_CREATOR_ROLE = void 0;
 const cli_color_1 = require("cli-color");
 const logger_1 = require("../../logger");
 const functionsDeployHelper_1 = require("./functionsDeployHelper");
@@ -16,7 +16,6 @@ const PERMISSION = "cloudfunctions.functions.setIamPolicy";
 exports.SERVICE_ACCOUNT_TOKEN_CREATOR_ROLE = "roles/iam.serviceAccountTokenCreator";
 exports.RUN_INVOKER_ROLE = "roles/run.invoker";
 exports.EVENTARC_EVENT_RECEIVER_ROLE = "roles/eventarc.eventReceiver";
-exports.EVENTARC_SERVICE_AGENT_ROLE = "roles/eventarc.serviceAgent";
 async function checkServiceAccountIam(projectId) {
     const saEmail = `${projectId}@appspot.gserviceaccount.com`;
     let passed = false;
@@ -101,11 +100,6 @@ function obtainDefaultComputeServiceAgentBindings(projectNumber, existingPolicy)
     return [invokerBinding, eventReceiverBinding];
 }
 exports.obtainDefaultComputeServiceAgentBindings = obtainDefaultComputeServiceAgentBindings;
-function obtainEventarcServiceAgentBindings(projectNumber, existingPolicy) {
-    const eventarcServiceAgent = `serviceAccount:service-${projectNumber}@gcp-sa-eventarc.iam.gserviceaccount.com`;
-    return [obtainBinding(existingPolicy, eventarcServiceAgent, exports.EVENTARC_SERVICE_AGENT_ROLE)];
-}
-exports.obtainEventarcServiceAgentBindings = obtainEventarcServiceAgentBindings;
 function mergeBindings(policy, allRequiredBindings) {
     for (const requiredBindings of allRequiredBindings) {
         if (requiredBindings.length === 0) {
@@ -149,7 +143,6 @@ async function ensureServiceAgentRoles(projectNumber, want, have) {
     if (haveServices.length === 0) {
         allRequiredBindings.push(obtainPubSubServiceAgentBindings(projectNumber, policy));
         allRequiredBindings.push(obtainDefaultComputeServiceAgentBindings(projectNumber, policy));
-        allRequiredBindings.push(obtainEventarcServiceAgentBindings(projectNumber, policy));
     }
     if (!allRequiredBindings.find((bindings) => bindings.length > 0)) {
         return;

package/lib/deploy/functions/containerCleaner.js

@@ -251,13 +251,14 @@ class DockerHelper {
         this.client = new docker.Client(origin);
     }
     async ls(path) {
-        if (!this.cache[path]) {
-            const raw = await retry(() => this.client.listTags(path));
-            this.cache[path] = {
-                tags: raw.tags,
-                digests: Object.keys(raw.manifest),
-                children: raw.child,
-            };
+        if (!(path in this.cache)) {
+            this.cache[path] = retry(() => this.client.listTags(path)).then((res) => {
+                return {
+                    tags: res.tags,
+                    digests: Object.keys(res.manifest),
+                    children: res.child,
+                };
+            });
         }
         return this.cache[path];
     }

package/lib/deploy/functions/release/executor.js

@@ -13,7 +13,7 @@ async function handler(op) {
             ((_b = (_a = err.context) === null || _a === void 0 ? void 0 : _a.response) === null || _b === void 0 ? void 0 : _b.statusCode) ||
             ((_c = err.original) === null || _c === void 0 ? void 0 : _c.code) ||
             ((_f = (_e = (_d = err.original) === null || _d === void 0 ? void 0 : _d.context) === null || _e === void 0 ? void 0 : _e.response) === null || _f === void 0 ? void 0 : _f.statusCode);
-        if (code === 429 || code === 409) {
+        if (code === 429 || code === 409 || code === 503) {
             throw err;
         }
         op.error = err;

package/lib/deploy/functions/runtimes/golang/index.js

@@ -105,6 +105,9 @@ class Delegate {
             return p;
         });
     }
+    async discoverBuild(configValues, envs) {
+        return { requiredAPIs: [], endpoints: {}, params: [] };
+    }
     async discoverSpec(configValues, envs) {
         let discovered = await discovery.detectFromYaml(this.sourceDir, this.projectId, this.runtime);
         if (!discovered) {

package/lib/deploy/functions/runtimes/node/index.js

@@ -84,6 +84,10 @@ class Delegate {
     }
     async discoverSpec(config, env) {
         if (previews_1.previews.functionsv2) {
+            if (!semver.valid(this.sdkVersion)) {
+                logger_1.logger.debug(`Could not parse firebase-functions version '${this.sdkVersion}' into semver. Falling back to parseTriggers.`);
+                return parseTriggers.discoverBackend(this.projectId, this.sourceDir, this.runtime, config, env);
+            }
             if (semver.lt(this.sdkVersion, MIN_FUNCTIONS_SDK_VERSION)) {
                 (0, utils_1.logLabeledWarning)("functions", `You are using an old version of firebase-functions SDK (${this.sdkVersion}). ` +
                     `Please update firebase-functions SDK to >=${MIN_FUNCTIONS_SDK_VERSION}`);
@@ -106,5 +110,8 @@ class Delegate {
         }
         return parseTriggers.discoverBackend(this.projectId, this.sourceDir, this.runtime, config, env);
     }
+    async discoverBuild(config, env) {
+        return parseTriggers.discoverBuild(this.projectId, this.sourceDir, this.runtime, config, env);
+    }
 }
 exports.Delegate = Delegate;

package/lib/deploy/functions/runtimes/node/parseTriggers.js

@@ -1,6 +1,6 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.addResourcesToBackend = exports.mergeRequiredAPIs = exports.discoverBackend = exports.useStrategy = void 0;
+exports.addResourcesToBackend = exports.addResourcesToBuild = exports.mergeRequiredAPIs = exports.discoverBackend = exports.discoverBuild = exports.useStrategy = void 0;
 const path = require("path");
 const _ = require("lodash");
 const child_process_1 = require("child_process");
@@ -49,6 +49,19 @@ function useStrategy(context) {
     return Promise.resolve(true);
 }
 exports.useStrategy = useStrategy;
+async function discoverBuild(projectId, sourceDir, runtime, configValues, envs) {
+    const triggerAnnotations = await parseTriggers(projectId, sourceDir, configValues, envs);
+    const want = {
+        requiredAPIs: [],
+        endpoints: {},
+        params: [],
+    };
+    for (const annotation of triggerAnnotations) {
+        addResourcesToBuild(projectId, runtime, annotation, want);
+    }
+    return want;
+}
+exports.discoverBuild = discoverBuild;
 async function discoverBackend(projectId, sourceDir, runtime, configValues, envs) {
     const triggerAnnotations = await parseTriggers(projectId, sourceDir, configValues, envs);
     const want = Object.assign(Object.assign({}, backend.empty()), { environmentVariables: envs });
@@ -74,6 +87,100 @@ function mergeRequiredAPIs(backend) {
     backend.requiredAPIs = merged;
 }
 exports.mergeRequiredAPIs = mergeRequiredAPIs;
+function addResourcesToBuild(projectId, runtime, annotation, want) {
+    var _a;
+    Object.freeze(annotation);
+    const regions = annotation.regions || [api.functionsDefaultRegion];
+    let triggered;
+    const triggerCount = +!!annotation.httpsTrigger +
+        +!!annotation.eventTrigger +
+        +!!annotation.taskQueueTrigger +
+        +!!annotation.blockingTrigger;
+    if (triggerCount !== 1) {
+        throw new error_1.FirebaseError("Unexpected annotation generated by the Firebase Functions SDK. This should never happen.");
+    }
+    if (annotation.taskQueueTrigger) {
+        want.requiredAPIs.push({
+            api: "cloudtasks.googleapis.com",
+            reason: "Needed for task queue functions.",
+        });
+        triggered = {
+            taskQueueTrigger: {},
+        };
+        proto.copyIfPresent(triggered.taskQueueTrigger, annotation.taskQueueTrigger, "invoker");
+        proto.copyIfPresent(triggered.taskQueueTrigger, annotation.taskQueueTrigger, "rateLimits");
+        if (annotation.taskQueueTrigger.retryConfig) {
+            triggered.taskQueueTrigger.retryConfig = Object.assign(annotation.taskQueueTrigger.retryConfig, {
+                maxRetryDurationSeconds: proto.secondsFromDuration(annotation.taskQueueTrigger.retryConfig.maxRetryDuration || "0"),
+            });
+        }
+    }
+    else if (annotation.httpsTrigger) {
+        if ((_a = annotation.labels) === null || _a === void 0 ? void 0 : _a["deployment-callable"]) {
+            delete annotation.labels["deployment-callable"];
+            triggered = { callableTrigger: {} };
+        }
+        else {
+            const trigger = {};
+            if (annotation.failurePolicy) {
+                logger_1.logger.warn(`Ignoring retry policy for HTTPS function ${annotation.name}`);
+            }
+            if (annotation.httpsTrigger.invoker) {
+                trigger.invoker = annotation.httpsTrigger.invoker[0];
+            }
+            triggered = { httpsTrigger: trigger };
+        }
+    }
+    else if (annotation.schedule) {
+        want.requiredAPIs.push({
+            api: "cloudscheduler.googleapis.com",
+            reason: "Needed for scheduled functions.",
+        });
+        triggered = {
+            scheduleTrigger: {
+                schedule: annotation.schedule.schedule,
+                timeZone: annotation.schedule.timeZone || "what's the default timezone?",
+                retryConfig: annotation.schedule.retryConfig || {},
+            },
+        };
+    }
+    else if (annotation.blockingTrigger) {
+        if (events.v1.AUTH_BLOCKING_EVENTS.includes(annotation.blockingTrigger.eventType)) {
+            want.requiredAPIs.push({
+                api: "identitytoolkit.googleapis.com",
+                reason: "Needed for auth blocking functions.",
+            });
+        }
+        triggered = {
+            blockingTrigger: {
+                eventType: annotation.blockingTrigger.eventType,
+            },
+        };
+    }
+    else {
+        triggered = {
+            eventTrigger: {
+                eventType: annotation.eventTrigger.eventType,
+                eventFilters: { resource: annotation.eventTrigger.resource },
+                retry: !!annotation.failurePolicy,
+            },
+        };
+    }
+    const endpointId = annotation.name;
+    const endpoint = Object.assign({ platform: annotation.platform || "gcfv1", region: regions, project: projectId, entryPoint: annotation.entryPoint, runtime: runtime, serviceAccount: annotation.serviceAccountEmail || "default" }, triggered);
+    if (annotation.vpcConnector != null) {
+        let maybeId = annotation.vpcConnector;
+        if (maybeId && !maybeId.includes("/")) {
+            maybeId = `projects/${projectId}/locations/$REGION/connectors/${maybeId}`;
+        }
+        endpoint.vpc = { connector: maybeId };
+        proto.renameIfPresent(endpoint.vpc, annotation, "egressSettings", "vpcConnectorEgressSettings");
+    }
+    proto.copyIfPresent(endpoint, annotation, "concurrency", "labels", "ingressSettings", "maxInstances", "minInstances", "availableMemoryMb");
+    proto.renameIfPresent(endpoint, annotation, "timeoutSeconds", "timeout", proto.secondsFromDuration);
+    want.endpoints[endpointId] = endpoint;
+}
+exports.addResourcesToBuild = addResourcesToBuild;
 function addResourcesToBackend(projectId, runtime, annotation, want) {
     var _a;
     Object.freeze(annotation);

package/lib/deploy/functions/validate.js

@@ -86,7 +86,7 @@ function functionIdsAreValid(functions) {
         return fn.platform === "gcfv2" && !v2FunctionName.test(fn.id);
     });
     if (invalidV2Ids.length !== 0) {
-        const msg = `${invalidV2Ids.map((f) => f.id).join(", ")} v2 function name(s) can only contin lower ` +
+        const msg = `${invalidV2Ids.map((f) => f.id).join(", ")} v2 function name(s) can only contain lower ` +
             `case letters, numbers, hyphens, and not exceed 62 characters in length`;
         throw new error_1.FirebaseError(msg);
     }

package/lib/emulator/auth/cloudFunctions.js

@@ -62,8 +62,12 @@ class AuthCloudFunction {
             phoneNumber: user.phoneNumber,
             disabled: user.disabled,
             metadata: {
-                creationTime: user.createdAt,
-                lastSignInTime: user.lastLoginAt,
+                creationTime: user.createdAt
+                    ? new Date(parseInt(user.createdAt, 10)).toISOString()
+                    : undefined,
+                lastSignInTime: user.lastLoginAt
+                    ? new Date(parseInt(user.lastLoginAt, 10)).toISOString()
+                    : undefined,
             },
             customClaims: JSON.parse(user.customAttributes || "{}"),
             providerData: user.providerUserInfo,

package/lib/emulator/auth/operations.js

@@ -1210,7 +1210,6 @@ function grantToken(state, reqBody) {
     (0, errors_1.assert)(reqBody.grantType === "refresh_token", "INVALID_GRANT_TYPE");
     (0, errors_1.assert)(reqBody.refreshToken, "MISSING_REFRESH_TOKEN");
     const refreshTokenRecord = state.validateRefreshToken(reqBody.refreshToken);
-    (0, errors_1.assert)(refreshTokenRecord, "INVALID_REFRESH_TOKEN");
     (0, errors_1.assert)(!refreshTokenRecord.user.disabled, "USER_DISABLED");
     const tokens = issueTokens(state, refreshTokenRecord.user, refreshTokenRecord.provider, {
         extraClaims: refreshTokenRecord.extraClaims,

package/lib/emulator/auth/server.js

@@ -342,7 +342,7 @@ function toExegesisController(ops, getProjectStateById) {
     }
     function toExegesisOperation(operation) {
         return (ctx) => {
-            var _a, _b, _c, _d, _e, _f, _g;
+            var _a, _b, _c, _d, _e, _f, _g, _h;
             let targetProjectId = ctx.params.path.targetProjectId || ((_a = ctx.requestBody) === null || _a === void 0 ? void 0 : _a.targetProjectId);
             if (targetProjectId) {
                 if ((_b = ctx.api.operationObject.security) === null || _b === void 0 ? void 0 : _b.some((sec) => sec.Oauth2)) {
@@ -365,6 +365,13 @@ function toExegesisController(ops, getProjectStateById) {
                 }
                 targetTenantId = targetTenantId || (decoded === null || decoded === void 0 ? void 0 : decoded.payload.firebase.tenant);
             }
+            if ((_h = ctx.requestBody) === null || _h === void 0 ? void 0 : _h.refreshToken) {
+                const refreshTokenRecord = (0, state_1.decodeRefreshToken)(ctx.requestBody.refreshToken);
+                if (refreshTokenRecord.tenantId && targetTenantId) {
+                    (0, errors_2.assert)(refreshTokenRecord.tenantId === targetTenantId, "TENANT_ID_MISMATCH: ((Refresh token tenant ID does not match target tenant ID.))");
+                }
+                targetTenantId = targetTenantId || refreshTokenRecord.tenantId;
+            }
             return operation(getProjectStateById(targetProjectId, targetTenantId), ctx.requestBody, ctx);
         };
     }

package/lib/emulator/auth/state.js

@@ -1,6 +1,6 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.BlockingFunctionEvents = exports.UsageMode = exports.TenantProjectState = exports.AgentProjectState = exports.ProjectState = exports.SIGNIN_METHOD_EMAIL_LINK = exports.PROVIDER_GAME_CENTER = exports.PROVIDER_CUSTOM = exports.PROVIDER_ANONYMOUS = exports.PROVIDER_PHONE = exports.PROVIDER_PASSWORD = void 0;
+exports.decodeRefreshToken = exports.encodeRefreshToken = exports.BlockingFunctionEvents = exports.UsageMode = exports.TenantProjectState = exports.AgentProjectState = exports.ProjectState = exports.SIGNIN_METHOD_EMAIL_LINK = exports.PROVIDER_GAME_CENTER = exports.PROVIDER_CUSTOM = exports.PROVIDER_ANONYMOUS = exports.PROVIDER_PHONE = exports.PROVIDER_PASSWORD = void 0;
 const utils_1 = require("./utils");
 const cloudFunctions_1 = require("./cloudFunctions");
 const errors_1 = require("./errors");
@@ -19,8 +19,6 @@ class ProjectState {
         this.localIdForPhoneNumber = new Map();
         this.localIdsForProviderEmail = new Map();
         this.userIdForProviderRawId = new Map();
-        this.refreshTokens = new Map();
-        this.refreshTokensForLocalId = new Map();
         this.oobs = new Map();
         this.verificationCodes = new Map();
         this.temporaryProofs = new Map();
@@ -73,13 +71,6 @@ class ProjectState {
     deleteUser(user) {
         this.users.delete(user.localId);
         this.removeUserFromIndex(user);
-        const refreshTokens = this.refreshTokensForLocalId.get(user.localId);
-        if (refreshTokens) {
-            this.refreshTokensForLocalId.delete(user.localId);
-            for (const refreshToken of refreshTokens) {
-                this.refreshTokens.delete(refreshToken);
-            }
-        }
         this.authCloudFunction.dispatch("delete", user);
     }
     updateUserByLocalId(localId, fields, options = {}) {
@@ -282,26 +273,23 @@ class ProjectState {
     }
     createRefreshTokenFor(userInfo, provider, { extraClaims = {}, secondFactor, } = {}) {
         const localId = userInfo.localId;
-        const refreshToken = (0, utils_1.randomBase64UrlStr)(204);
-        this.refreshTokens.set(refreshToken, {
+        const refreshTokenRecord = {
+            _AuthEmulatorRefreshToken: "DO NOT MODIFY",
             localId,
             provider,
             extraClaims,
+            projectId: this.projectId,
             secondFactor,
             tenantId: userInfo.tenantId,
-        });
-        let refreshTokens = this.refreshTokensForLocalId.get(localId);
-        if (!refreshTokens) {
-            refreshTokens = new Set();
-            this.refreshTokensForLocalId.set(localId, refreshTokens);
-        }
-        refreshTokens.add(refreshToken);
+        };
+        const refreshToken = encodeRefreshToken(refreshTokenRecord);
         return refreshToken;
     }
     validateRefreshToken(refreshToken) {
-        const record = this.refreshTokens.get(refreshToken);
-        if (!record) {
-            return undefined;
+        const record = decodeRefreshToken(refreshToken);
+        (0, errors_1.assert)(record.projectId === this.projectId, "INVALID_REFRESH_TOKEN");
+        if (this instanceof TenantProjectState) {
+            (0, errors_1.assert)(record.tenantId === this.tenantId, "TENANT_ID_MISMATCH");
         }
         return {
             user: this.getUserByLocalIdAssertingExists(record.localId),
@@ -356,8 +344,6 @@ class ProjectState {
         this.localIdForPhoneNumber.clear();
         this.localIdsForProviderEmail.clear();
         this.userIdForProviderRawId.clear();
-        this.refreshTokens.clear();
-        this.refreshTokensForLocalId.clear();
     }
     getUserCount() {
         return this.users.size;
@@ -617,6 +603,23 @@ var BlockingFunctionEvents;
     BlockingFunctionEvents["BEFORE_CREATE"] = "beforeCreate";
     BlockingFunctionEvents["BEFORE_SIGN_IN"] = "beforeSignIn";
 })(BlockingFunctionEvents = exports.BlockingFunctionEvents || (exports.BlockingFunctionEvents = {}));
+function encodeRefreshToken(refreshTokenRecord) {
+    return Buffer.from(JSON.stringify(refreshTokenRecord), "utf8").toString("base64");
+}
+exports.encodeRefreshToken = encodeRefreshToken;
+function decodeRefreshToken(refreshTokenString) {
+    let refreshTokenRecord;
+    try {
+        const json = Buffer.from(refreshTokenString, "base64").toString("utf8");
+        refreshTokenRecord = JSON.parse(json);
+    }
+    catch (_a) {
+        throw new errors_1.BadRequestError("INVALID_REFRESH_TOKEN");
+    }
+    (0, errors_1.assert)(refreshTokenRecord._AuthEmulatorRefreshToken, "INVALID_REFRESH_TOKEN");
+    return refreshTokenRecord;
+}
+exports.decodeRefreshToken = decodeRefreshToken;
 function getProviderEmailsForUser(user) {
     var _a;
     const emails = new Set();

package/lib/emulator/databaseEmulator.js

@@ -56,7 +56,15 @@ class DatabaseEmulator {
                 if (!c.instance) {
                     continue;
                 }
-                await this.updateRules(c.instance, c.rules);
+                try {
+                    await this.updateRules(c.instance, c.rules);
+                }
+                catch (e) {
+                    const rulesError = this.prettyPrintRulesError(c.rules, e);
+                    this.logger.logLabeled("WARN", "database", rulesError);
+                    this.logger.logLabeled("WARN", "database", "Failed to update rules");
+                    throw new error_1.FirebaseError(`Failed to load initial ${constants_1.Constants.description(this.getName())} rules:\n${rulesError}`);
+                }
             }
         }
     }
@@ -114,6 +122,7 @@ class DatabaseEmulator {
         });
     }
     async updateRules(instance, rulesPath) {
+        var _a;
         const rulesExt = path.extname(rulesPath);
         const content = rulesExt === ".bolt"
             ? parseBoltRules(rulesPath).toString()
@@ -131,12 +140,36 @@ class DatabaseEmulator {
             if (e.context && e.context.body) {
                 throw e.context.body.error;
             }
-            throw e.original;
+            throw (_a = e.original) !== null && _a !== void 0 ? _a : e;
         }
     }
     prettyPrintRulesError(filePath, error) {
+        let errStr;
+        switch (typeof error) {
+            case "string":
+                errStr = error;
+                break;
+            case "object":
+                if (error != null && "message" in error) {
+                    const message = error.message;
+                    errStr = `${message}`;
+                    if (typeof message === "string") {
+                        try {
+                            const parsed = JSON.parse(message);
+                            if (typeof parsed === "object" && parsed.error) {
+                                errStr = `${parsed.error}`;
+                            }
+                        }
+                        catch (_) {
+                        }
+                    }
+                    break;
+                }
+            default:
+                errStr = `Unknown error: ${JSON.stringify(error)}`;
+        }
         const relativePath = path.relative(process.cwd(), filePath);
-        return `${clc.cyan(relativePath)}:${error.trim()}`;
+        return `${clc.cyan(relativePath)}:${errStr.trim()}`;
     }
 }
 exports.DatabaseEmulator = DatabaseEmulator;

package/lib/emulator/downloadableEmulators.js

@@ -83,15 +83,15 @@ exports.DownloadDetails = {
                 },
             }
             : {
-                version: "1.6.5",
-                downloadPath: path.join(CACHE_DIR, "ui-v1.6.5.zip"),
-                unzipDir: path.join(CACHE_DIR, "ui-v1.6.5"),
-                binaryPath: path.join(CACHE_DIR, "ui-v1.6.5", "server.bundle.js"),
+                version: "1.6.6",
+                downloadPath: path.join(CACHE_DIR, "ui-v1.6.6.zip"),
+                unzipDir: path.join(CACHE_DIR, "ui-v1.6.6"),
+                binaryPath: path.join(CACHE_DIR, "ui-v1.6.6", "server.bundle.js"),
                 opts: {
                     cacheDir: CACHE_DIR,
-                    remoteUrl: "https://storage.googleapis.com/firebase-preview-drop/emulator/ui-v1.6.5.zip",
-                    expectedSize: 3816994,
-                    expectedChecksum: "92dfff4b2ef8ab616e8a60cc93e0a00b",
+                    remoteUrl: "https://storage.googleapis.com/firebase-preview-drop/emulator/ui-v1.6.6.zip",
+                    expectedSize: 3817247,
+                    expectedChecksum: "c80a3f0ae1e3f682ace0a18a9cdd2861",
                     namePrefix: "ui",
                 },
             },

package/lib/emulator/functionsEmulator.js

@@ -223,7 +223,6 @@ class FunctionsEmulator {
         return Promise.resolve();
     }
     async connect() {
-        const loadTriggerPromises = [];
         for (const backend of this.args.emulatableBackends) {
             this.logger.logLabeled("BULLET", "functions", `Watching "${backend.functionsDir}" for Cloud Functions...`);
             const watcher = chokidar.watch(backend.functionsDir, {
@@ -239,9 +238,8 @@ class FunctionsEmulator {
                 this.logger.log("DEBUG", `File ${filePath} changed, reloading triggers`);
                 return debouncedLoadTriggers();
             });
-            loadTriggerPromises.push(this.loadTriggers(backend, true));
+            await this.loadTriggers(backend, true);
         }
-        await Promise.all(loadTriggerPromises);
         await this.performPostLoadOperations();
         return;
     }
@@ -853,11 +851,9 @@ class FunctionsEmulator {
     }
     async reloadTriggers() {
         this.triggerGeneration++;
-        const loadTriggerPromises = [];
         for (const backend of this.args.emulatableBackends) {
-            loadTriggerPromises.push(this.loadTriggers(backend));
+            await this.loadTriggers(backend);
         }
-        await Promise.all(loadTriggerPromises);
         await this.performPostLoadOperations();
         return;
     }

package/lib/emulator/functionsEmulatorRuntime.js

@@ -213,7 +213,7 @@ function initializeNetworkFiltering(frb) {
             })
                 .filter((v) => v);
             const href = (hrefs.length && hrefs[0]) || "";
-            if (href && !history[href] && !href.startsWith("http://localhost")) {
+            if (href && !history[href] && !(0, functionsEmulatorUtils_1.isLocalHost)(href)) {
                 history[href] = true;
                 if (href.indexOf("googleapis.com") !== -1) {
                     new types_1.EmulatorLog("SYSTEM", "googleapis-network-access", "", {

package/lib/emulator/functionsEmulatorShared.js

@@ -106,6 +106,9 @@ function emulatedFunctionsFromEndpoints(endpoints) {
                 options: endpoint.blockingTrigger.options || {},
             };
         }
+        else if (backend.isTaskQueueTriggered(endpoint)) {
+            def.httpsTrigger = {};
+        }
         else {
         }
         regionDefinitions.push(def);

package/lib/emulator/functionsEmulatorUtils.js

@@ -1,6 +1,6 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.compareVersionStrings = exports.parseVersionString = exports.parseRuntimeVersion = exports.removePathSegments = exports.trimSlashes = exports.isValidWildcardMatch = exports.extractParamsFromPath = void 0;
+exports.isLocalHost = exports.compareVersionStrings = exports.parseVersionString = exports.parseRuntimeVersion = exports.removePathSegments = exports.trimSlashes = exports.isValidWildcardMatch = exports.extractParamsFromPath = void 0;
 const wildcardRegex = new RegExp("{[^/{}]*}");
 const wildcardKeyRegex = new RegExp("^{(.+)}$");
 function extractParamsFromPath(wildcardPath, snapshotPath) {
@@ -85,3 +85,7 @@ function compareVersionStrings(a, b) {
     return 0;
 }
 exports.compareVersionStrings = compareVersionStrings;
+function isLocalHost(href) {
+    return !!href.match(/^(http(s)?:\/\/)?(localhost|127.0.0.1|\[::1])/);
+}
+exports.isLocalHost = isLocalHost;

package/lib/emulator/storage/apis/firebase.js

@@ -118,7 +118,7 @@ function createFirebaseEndpoints(emulator) {
         return res.json(new metadata_1.OutgoingFirebaseMetadata(metadata));
     });
     firebaseStorageAPI.get("/b/:bucketId/o", async (req, res) => {
-        var _a, _b, _c, _d, _e;
+        var _a, _b, _c, _d;
         const maxResults = (_a = req.query.maxResults) === null || _a === void 0 ? void 0 : _a.toString();
         let listResponse;
         try {
@@ -144,10 +144,12 @@ function createFirebaseEndpoints(emulator) {
         }
         return res.status(200).json({
             nextPageToken: listResponse.nextPageToken,
-            prefixes: (_c = listResponse.prefixes) !== null && _c !== void 0 ? _c : [],
-            items: (_e = (_d = listResponse.items) === null || _d === void 0 ? void 0 : _d.map((item) => {
+            prefixes: ((_c = listResponse.prefixes) !== null && _c !== void 0 ? _c : []).filter(isValidPrefix),
+            items: ((_d = listResponse.items) !== null && _d !== void 0 ? _d : [])
+                .filter((item) => isValidNonEncodedPathString(item.name))
+                .map((item) => {
                 return { name: item.name, bucket: item.bucket };
-            })) !== null && _e !== void 0 ? _e : [],
+            }),
         });
     });
     const handleUpload = async (req, res) => {
@@ -467,3 +469,23 @@ function setObjectHeaders(res, metadata, headerOverride = { "Content-Encoding":
         res.setHeader("Content-Language", metadata.contentLanguage);
     }
 }
+function isValidPrefix(prefix) {
+    return isValidNonEncodedPathString(removeAtMostOneTrailingSlash(prefix));
+}
+function isValidNonEncodedPathString(path) {
+    if (path.startsWith("/")) {
+        path = path.substring(1);
+    }
+    if (!path) {
+        return false;
+    }
+    for (const pathSegment of path.split("/")) {
+        if (!pathSegment) {
+            return false;
+        }
+    }
+    return true;
+}
+function removeAtMostOneTrailingSlash(path) {
+    return path.replace(/\/$/, "");
+}