2 var test = require('tap').test
3 var common = require('../common-tap.js')
4 var path = require('path')
5 var basepath = path.resolve(__dirname, path.basename(__filename, '.js'))
6 var Tacks = require('tacks')
10 var fixture = new Tacks(
15 'package.json': File({
16 name: 'npm-test-no-auth-leak',
26 '//registry.npmjs.org/:_authToken=nopenope'
29 'var authTokenKeys = Object.keys(process.env)\n' +
30 ' .filter(function (key) { return /authToken/.test(key) })\n' +
31 'console.log(JSON.stringify({\n' +
32 ' password: process.env.npm_config__password || null,\n' +
33 ' auth: process.env.npm_config__auth || null,\n' +
34 ' authCrypt: process.env.npm_config__authCrypt || null ,\n' +
35 ' authToken: authTokenKeys && process.env[authTokenKeys[0]] || null\n' +
41 test('setup', function (t) {
46 test('no-auth-leak', function (t) {
47 common.npm(['test'], {cwd: basepath}, function (err, code, stdout, stderr) {
49 t.is(code, 0, 'test ran ok')
50 if (stderr) console.log(stderr)
51 var matchResult = /^[^{]*(\{(?:.|\n)*\})[^}]*$/
52 t.like(stdout, matchResult, 'got results with a JSON chunk in them')
53 var stripped = stdout.replace(matchResult, '$1')
54 var result = JSON.parse(stripped)
55 t.is(result.password, null, 'password')
56 t.is(result.auth, null, 'auth')
57 t.is(result.authCrypt, null, 'authCrypt')
58 t.is(result.authToken, null, 'authToken')
63 test('cleanup', function (t) {
70 fixture.create(basepath)
74 fixture.remove(basepath)