Adding Authorization header to cy.visit()

I have another use case.

We have a site in Azure with SSO enabled, so that as soon as you go to the url, it redirects you to a sign-on page. Even if you’ve already auth’d, it redirects and then redirects back so you can view the site.

I’ve made a command to login via oauth2 to get the access_token, and setting that in the header of a cy.request allows me to directly hit the api without the redirect. But when I do cy.visit, it’s doing the redirect and messing up cypress. It looks like if I add a Authorization Bearer header to a GET request to site root via postman, it doesn’t do that redirect.

I tried the SSO recipe and setting the access token in localSession, but visit doesn’t seem to read it out: Tried both id_token, bearer, token, and access_token as the storage key.

However, it’s still redirecting to login.microsoftonline.com expecting you to login and cypress doesn’t know what to do with that. So I think the only option I have is to set an Authorization header in visit as well, unless I’m doing this incorrectly.

Here’s what it ends up as because it’s not reading the localStorage item properly. It goes from localhost:port to login.microsoftonline.com

Probably different use case from the OP, but having the ability to set custom headers (via cy.visit(url, options.headers) would be cool for auth mocking – currently I have to set custom cookie before issuing cy.visit to handle this.