close
Skip to content

Fix warning for PAT-like token with username #3579

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
mbg merged 11 commits into from
Mar 25, 2026
Merged

Fix warning for PAT-like token with username #3579

Changes from 1 commit
Commits
Show all changes
11 commits
Select commit Hold shift + click to select a range
193dd19
Add snippet to scaffold `test.macro`s
mbg Mar 16, 2026
6e67ef6
Refactor PAT test into a `test.macro`
mbg Mar 16, 2026
f86097d
Add params for `credentials` and `checkAccepted` to `testPATWarning`
mbg Mar 16, 2026
0393130
Add "token without a username" test
mbg Mar 16, 2026
740f177
Add `assertNotLogged` test helper
mbg Feb 24, 2026
ddafddb
Replace `getRecordingLogger` implementation with `RecordingLogger`
mbg Feb 24, 2026
de06821
Add `hasMessage` to `RecordingLogger`
mbg Feb 24, 2026
28f515d
Add tests for the absence of the warning
mbg Mar 16, 2026
f88d49e
Fix warning for PAT-like token with username
mbg Mar 16, 2026
d128e5d
Fix test names
mbg Mar 25, 2026
137e0de
Merge remote-tracking branch 'origin/main' into mbg/start-proxy/token…
mbg Mar 25, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
Prev Previous commit
Next Next commit
Add params for credentials and checkAccepted to testPATWarning
  • Loading branch information
@mbg
mbg committed Mar 16, 2026
commit f86097dfdb3ce2db1a19ff14961e3f1399baea59
54 changes: 34 additions & 20 deletions src/start-proxy.test.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -440,16 +440,17 @@ test("getCredentials accepts OIDC configurations", (t) => {
});

const testPATWarning = test.macro({
exec: async (t: ExecutionContext<unknown>) => {
exec: async (
t: ExecutionContext<unknown>,
credentials: startProxyExports.RawCredential[],
checkAccepted: (
t: ExecutionContext<unknown>,
results: startProxyExports.Credential[],
) => void,
) => {
const loggedMessages = [];
const logger = getRecordingLogger(loggedMessages);
const likelyWrongCredentials = toEncodedJSON([
{
type: "git_server",
host: "https://github.com/",
password: `ghp_${makeTestToken()}`,
},
]);
const likelyWrongCredentials = toEncodedJSON(credentials);

const results = startProxyExports.getCredentials(
logger,
Expand All @@ -458,17 +459,7 @@ const testPATWarning = test.macro({
undefined,
);

// The configuration should be accepted, despite the likely problem.
t.assert(results);
t.is(results.length, 1);
t.is(results[0].type, "git_server");
t.is(results[0].host, "https://github.com/");

if (startProxyExports.isUsernamePassword(results[0])) {
t.assert(results[0].password?.startsWith("ghp_"));
} else {
t.fail("Expected a `UsernamePassword`-based credential.");
}
checkAccepted(t, results);

// A warning should have been logged.
checkExpectedLogMessages(t, loggedMessages, [
Expand All @@ -480,7 +471,30 @@ const testPATWarning = test.macro({
`getCredentials logs a warning when a PAT is used - ${providedTitle}`,
Comment thread
mbg marked this conversation as resolved.
Outdated
});

test("password without a username", testPATWarning);
test(
"password without a username",
testPATWarning,
[
{
type: "git_server",
host: "https://github.com/",
password: `ghp_${makeTestToken()}`,
},
],
(t, results) => {
// The configurations should be accepted, despite the likely problem.
t.assert(results);
t.is(results.length, 1);
t.is(results[0].type, "git_server");
t.is(results[0].host, "https://github.com/");

if (startProxyExports.isUsernamePassword(results[0])) {
t.assert(results[0].password?.startsWith("ghp_"));
} else {
t.fail("Expected a `UsernamePassword`-based credential.");
}
},
);

test("getCredentials returns all credentials for Actions when using LANGUAGE_TO_REGISTRY_TYPE", async (t) => {
const credentialsInput = toEncodedJSON(mixedCredentials);
Expand Down