fix(auth): fix HTTP Basic auth for NOPASS indexes (#8442)

9e093633 · Kevin James · GitHub · 4eaa81ac · 9e093633 · 9e093633
Unverified Commit 9e093633 authored 4 years ago by Kevin James Committed by GitHub 4 years ago
--- a/lib/util/http/auth.ts
+++ b/lib/util/http/auth.ts
@@ -39,7 +39,7 @@ export function applyAuthorization(inOptions: GotOptions): GotOptions {
      options.headers.authorization = `Bearer ${options.token}`;
    }
    delete options.token;
-  } else if (options.password) {
+  } else if (options.password !== undefined) {
    // Otherwise got will add username and password to url and header
    const auth = Buffer.from(
      `${options.username || ''}:${options.password}`

--- a/lib/util/http/host-rules.ts
+++ b/lib/util/http/host-rules.ts
@@ -15,7 +15,7 @@ export function applyHostRules(url: string, inOptions: GotOptions): GotOptions {
  const { username, password, token, enabled } = foundRules;
  if (options.headers?.authorization || options.password || options.token) {
    logger.trace({ url }, `Authorization already set`);
-  } else if (password) {
+  } else if (password !== undefined) {
    logger.trace({ url }, `Applying Basic authentication`);
    options.username = username;
    options.password = password;