From 3a4fc6abfb3b39237f557372262ac79f45b6a9fa Mon Sep 17 00:00:00 2001
From: Michael Mercier <michael.mercier@ryax.tech>
Date: Thu, 11 Mar 2021 18:46:34 +0100
Subject: Replace password in URI by stars if present + test

---
 test/test_repo.py | 11 +++++++++++
 1 file changed, 11 insertions(+)

(limited to 'test/test_repo.py')

diff --git a/test/test_repo.py b/test/test_repo.py
index d5ea8664..30e4f2cb 100644
--- a/test/test_repo.py
+++ b/test/test_repo.py
@@ -238,6 +238,17 @@ class TestRepo(TestBase):
             except UnicodeEncodeError:
                 self.fail('Raised UnicodeEncodeError')
 
+    @with_rw_directory
+    def test_leaking_password_in_clone_logs(self, rw_dir):
+        """Check that the password is not printed on the logs"""
+        password = "fakepassword1234"
+        try:
+            Repo.clone_from(
+                url=f"https://fakeuser:{password}@fakerepo.example.com/testrepo",
+                to_path=rw_dir)
+        except GitCommandError as err:
+            assert password not in str(err)
+
     @with_rw_repo('HEAD')
     def test_max_chunk_size(self, repo):
         class TestOutputStream(TestBase):
-- 
cgit v1.2.1