negodiy/openclaw
1
0
Fork 0
Code Issues Pull Requests Actions 1 Packages Projects Releases Wiki Activity

test(guardrails): exclude suite files and harden auth temp identity naming

Browse Source
This commit is contained in:
Peter Steinberger
2026-03-02 18:21:00 +00:00
parent 82f01d6081
commit a8fe8b6bf8
2 changed files with 4 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
src/gateway/server.auth.shared.ts
View File

@@ -1,3 +1,4 @@
import { randomUUID } from "node:crypto";
import os from "node:os";
import path from "node:path";
import { expect } from "vitest";
@@ -288,7 +289,7 @@ async function startRateLimitedTokenServerWithPairedDeviceToken() {
const { server, ws, port, prevToken } = await startServerWithClient();
const deviceIdentityPath = path.join(
os.tmpdir(),
`openclaw-auth-rate-limit-${Date.now()}-${Math.random().toString(36).slice(2)}.json`,
"openclaw-auth-rate-limit-" + randomUUID() + ".json",
);
try {
const initial = await connectReq(ws, { token: "secret", deviceIdentityPath });
@@ -322,7 +323,7 @@ async function ensurePairedDeviceTokenForCurrentIdentity(ws: WebSocket): Promise
const deviceIdentityPath = path.join(
os.tmpdir(),
`openclaw-auth-device-${Date.now()}-${Math.random().toString(36).slice(2)}.json`,
"openclaw-auth-device-" + randomUUID() + ".json",
);
const res = await connectReq(ws, { token: "secret", deviceIdentityPath });