-
Notifications
You must be signed in to change notification settings - Fork 4.9k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Masking http(s)_proxy password from startup output. #17116
Changes from 4 commits
ed550a0
efd15e8
5aeb4a5
7f75e80
df10b09
File filter
Filter by extension
Conversations
Jump to
Diff view
Diff view
There are no files selected for viewing
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,60 @@ | ||
/* | ||
Copyright 2016 The Kubernetes Authors All rights reserved. | ||
|
||
Licensed under the Apache License, Version 2.0 (the "License"); | ||
you may not use this file except in compliance with the License. | ||
You may obtain a copy of the License at | ||
|
||
http://www.apache.org/licenses/LICENSE-2.0 | ||
|
||
Unless required by applicable law or agreed to in writing, software | ||
distributed under the License is distributed on an "AS IS" BASIS, | ||
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. | ||
See the License for the specific language governing permissions and | ||
limitations under the License. | ||
*/ | ||
|
||
package node | ||
|
||
import ( | ||
"testing" | ||
) | ||
|
||
func Test_maskProxyPassword(t *testing.T) { | ||
type dockerOptTest struct { | ||
input string | ||
output string | ||
} | ||
var tests = []dockerOptTest{ | ||
{ | ||
input: "cats", | ||
output: "cats", | ||
}, | ||
{ | ||
input: "myDockerOption=value", | ||
output: "myDockerOption=value", | ||
}, | ||
{ | ||
input: "http_proxy=http://myproxy.company.com", | ||
output: "HTTP_PROXY=http://myproxy.company.com", | ||
}, | ||
{ | ||
input: "https_proxy=http://[email protected]:8080", | ||
output: "HTTPS_PROXY=http://[email protected]:8080", | ||
}, | ||
{ | ||
input: "https_proxy=https://mary:am$uT8zB([email protected]:8080", | ||
There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. lets make this word obvious it is a fake password also lets make more example of password with other types of characters such as ' %&* (things that could break our regex) There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. Improved the regex robustness and the tests. I can't remember torturing regexes that much since I used to parse sendmail logs on SunOS 4.. 😊 |
||
output: "HTTPS_PROXY=https://mary:*****@myproxy.company.com:8080", | ||
}, | ||
{ | ||
input: "http_proxy=http://jdoe:mPu3z9uT#[email protected]:8080", | ||
output: "HTTP_PROXY=http://jdoe:*****@myproxy.company.com:8080", | ||
}, | ||
} | ||
for _, test := range tests { | ||
got := maskProxyPassword(test.input) | ||
if got != test.output { | ||
t.Errorf("maskProxyPassword(\"%v\"): got %v, expected %v", test.input, got, test.output) | ||
} | ||
} | ||
} |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
lets use minikube domain name here, so we dont get spam
minikube.sigs.k8s.io
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Done!